Select Page

Month: July 2015

Major Security Bug In Aptean’s Customer Response System Puts User Data At Risk

A bug discovered by security researchers Eric Taylor and Blake Welsh can change a standard customer feedback system called Aptean SupportSoft into a method for hackers to grab passwords, credit card information, and usernames. Taylor and Welsh have also been able to inject code into chat sessions that makes small windows appear when a customer service chat session is initiated. The exploit allows a hacker to add a bit of code to the end of a customer support URL ("http://VICTIM.com/sdcxuser/asp/frameset.asp?mainframe=//blog.cinder.com") that will then load another URL into the main “frame” of the website where the customer support chat screen usually appears. They have run the exploit on a number of sites including Comcast, Time Warner Cable, Sage, CGI, and Cognizant. The exploit, called a cross-site scripting attack, has been tested on each of these sites. The bug can be innocuous. For example, Taylor and Walsh were able make their own blog appear on Time Warner’s customer support page. However, hackers could use the same technique to grab user data. Here they have injected a fake login page hosted on their own server: Into Xfinity’s customer support page: Finally, they were able to create a dangerous phishing exploit by masquerading as a page served by Comcast’s secure servers. “We successfully replicated Comcast’s login page on our test site,” said Taylor. “We then injected this test page into the Comcast XSS...

Read More

JustTheBell Is Just The Bell

Sleeping with a cellphone in your room is, according to scientists who aren’t real, akin to sleeping with a radioactivity-emitting sleeplessness machine. That’s why artist and designer Ignasi Giro made JustTheBell. This box is quite literally just a bell. You set your alarms on via Bluetooth, leave your cellphone in another room, and go to bed. The box rings to wake you up and you shake it to snooze or turn it off, much like the alarm clocks of yore. In short, it’s just the bell. This is not the first quirky project by Giro. His Timeless Box was a simple box that opened at a preset time and he has made a number of other clever projects. He currently lives in Paris and works for TBWA. “I can’t stand it anymore: my girl and I chatting and mailing minutes before turning the light off, then waking up in the morning and 1st thing is turning the alarm OFF… and then wifi ON… and then jumping into mails and sms-es and whatsapps even before leaving the bed,” wrote Giro breathlessly. “It’s too much. Does not feel that cool anymore And that’s a feeling we share with many members of the team here in Paris.” The product is available for pre-order here and is handmade in France of solid beechwood. Early birds can grab it for a mere €50 and...

Read More

Apple To Release New Apple TV In September, Report Says

Rumor has it that Apple should soon release a new version of its set-top box as well as a new streaming service for TV content. According to a new report by Buzzfeed, Apple was supposed to announce the new Apple TV at WWDC, but it was delayed for a September launch The current Apple TV was released in 2012 and runs an underclocked A5 chip, which was originally developed for the iPhone 4S. This time, the Apple TV should use a much more recent chip, such as the iPhone 6’s A8 chip. A slimmer design and more internal storage wouldn’t be a surprise as well. Yet, two big questions remain on the user interface and Apple’s content strategy. The current interface of the Apple TV is cumbersome and the company knows that it has to do something to fix it. Using Siri for voice queries would be a first step as both Google and Amazon provide a similar feature with the Nexus Player and Fire TV. Recent patent applications have also indicated that Apple has been working on some sort of touch interface for the Apple TV. It’s unclear whether Apple will take advantage of your iPhone or create a brand new remote with a touch screen. On the content front, the Apple TV service has been rumored for years and it seems that it’s not quite ready yet....

Read More

Brad Hall Reviews the Air Jordan 1.5 on Live TV

Brad Hall became an instant internet sensation when he posted his first sneaker unboxing onto his Youtube channel back in April. The now “Legendary” sneaker unboxer amassed several hundred thousand views over six videos (and counting) with his unconventional and quirky reviews, which eventually led to an Sports Illustrated interview in which he delved into the filming process and his style of analysis among other things. If you thought the 33-year-old reached the pinnacle of his fame, think again. Hall recently made an appearance on Chicago-based WGN TV, with his take on the Air Jordan 1.5, proving once and for all, this guy is the real deal. Check out the clip above. Article source:...

Read More