我在任何設備上都沒有FB的Messenger,這只是眾多原因之一...
揭示:據報Facebook在給予Android手機的Messenger應用程序中修補了一個錯漏,
該錯漏使黑客能夠致電毫無戒心的目標,並且即使在他們拿起電話接聽之前已可先聽到他們的情況...
Facebook 信差的“ 錯漏”讓黑客竊聽目標電話
Facebook Messenger 'Bug' Let Hackers Eavesdrop on Their Target's Phone
2020年11月23日
The Hacker News reports that Facebook has fixed a bug in its Messenger app for Android that allowed hackers to call targets and listen in on them before they even picked up the call. Natalie Silvanovich of Google’s Project Zero bug-hunting team reported the issue to Facebook last month on October 6.
The vulnerability could have granted an attacker who is logged into the Messenger app the ability to simultaneously initiate a call and send a specific message to a target who is signed into both the app as well as another Messenger client like a web browser. Facebook’s Security Engineering Manager Dan Gurfinkel explained: “It would then trigger a scenario where, while the device is ringing, the caller would begin receiving audio either until the person being called answers or the call times out.”
more:
沒有留言:
發佈留言