Facebook knows a lot about you, your likes and dislikes—it’s no surprise.

But do you know, if you have installed Facebook Messenger app on your Android device, there are chances that the company had been collecting your contacts, SMS, and call history data at least until late last year.

A tweet from Dylan McKay, a New Zealand-based programmer, which received more than 38,000 retweets (at the time of writing), showed how he found his year-old data—including complete logs of incoming and outgoing calls and SMS messages—in an archive he downloaded (as a ZIP file) from Facebook.

Read the full article by clicking the link below.

images from Hacker News

Apple have just released the latest edition of iOS, version 11.3. This fixes quite a few issues within iOS and also brings the beta version of the battery toggle button which allows you to pick between battery life or performance. If you haven’t downloaded it yet then make sure you do.

Watch the video below or click the button to bring up websites that have done an in-depth review of the latest offering from Apple.

According to an article published by Hacker News, a new vulnerability has been disclosed in iOS Camera App that could be exploited to redirect users to a malicious website without their knowledge.

The vulnerability affects Apple’s latest iOS 11 mobile operating system for iPhone, iPad, and iPod touch devices and resides in the built-in QR code reader.

With iOS 11, Apple introduced a new feature that gives users ability to automatically read QR codes using their iPhone’s native camera app without requiring any third-party QR code reader app.

Read more by clicking the button below.

images from Hacker News

According to an article published by Hacker News, a severe programming bug has been found in APFS file system for macOS High Sierra operating system that exposes passwords of encrypted external drives in plain text.

Introduced two years ago, APFS (Apple File System) is an optimised file system for flash and SSD-based storage solutions running MacOS, iOS, tvOS or WatchOS, and promises strong encryption and better performance.

If you’re running MacOS High Sierra then make sure you’ve updated to the latest release as Apple seem to have patched it.

Read the full article by clicking the button below.

images from Hacker News

If you are unaware, the security standard HTTP Strict Transport Security (HSTS) can be abused as a ‘supercookie’ to surreptitiously track users of almost every modern web browser online without their knowledge even when they use “private browsing.”

Apple has now added mitigations to its open-source browser infrastructure WebKit that underpins its Safari web browser to prevent HSTS abuse after discovering that theoretical attacks demonstrated in 2015 were recently deployed in the wild against Safari users.

Information courtesy of Hacker News