Author: Admin

Image: Bits and Splits/Adobe Stock Knowing the state of the entire software system is of the utmost importance if business organizations are to operate with zero tolerance for security vulnerabilities. Although it may be challenging to maintain 100% secure software architecture, an insight into the security posture of your computer systems is possible when you conduct penetration testing with the best tools. Due to the high number of penetration testing tools available to security professionals,…

Social media giant Meta has announced it will start testing end-to-end encryption (E2EE) as the default option on its Facebook Messenger platform. The company made the announcement in a blog post on August 11, where it explained the feature will be initially available only to selected users. “If you’re in the test group, some of your most frequent chats may be automatically end-to-end encrypted, which means you won’t have to opt into the feature,” reads…

Vulnerabilities in Xiaomi’s mobile payment could lead to an attacker stealing private keys used to sign Wechat Pay control and payment packages. The flaws were found by Check Point Research (CPR) in Xiaomi’s trusted execution environment (TEE), the system element responsible for storing and managing sensitive information such as keys and passwords. “We discovered a set of vulnerabilities that could allow forging of payment packages or disabling the payment system directly, from an unprivileged Android…

By Noam Shaar, Co-Founder & CEO, Wing Security For years organizations were leveraging more and more Software-as-a-Service applications to help team members collaborate, improve efficiency, and manage other on-the-job tasks. As the pandemic took hold and more employees started working remotely, the reliance on these applications has only increased. While these applications helped improve productivity, they have also expanded organizations’ attack surfaces, limiting visibility and control. While these solutions remove some of the burden associated…