Disclosed – Lifx Security Issue

by @edent | # # # # # | Read ~1,155 times.

I love my Lifx Bulbs. They’re a quick and easy way to retrofit Internet connected goodies into a smart-home. One of the best things about them is their open API. Sure, you can use IFTTT if you want something easy – but us 1337 hax0rs want an API and Lifx provides it. The API is…

Continue reading →

Responsible Disclosure – XSS Flaw at LetsSaveMoney.com

by @edent | # # # # | Read ~341 times.

Another day, another bug! LetsSaveMoney.com is a “money saving” site. It offers discounts on a wide range of products and services, and is financed through affiliate marketing. Links removed, because the site has disappeared. My Trade Union, Prospect, has just launched a white-labelled “Members’ Rewards” based on LetsSaveMoney – that’s how I came across this…

Continue reading →

Google Play Won't Accept PayPal

by @edent | # # # | 19 comments | Read ~47,723 times.

Hey kids! Did you know that the best way to report bugs to Google is via passive-aggressive blog posts? Yup, s’true. They don’t offer support for any of their products*, so your only hope is getting your complaint to the top of Reddit / HackerNews / Cool Site of the Day and hoping that particular…

Continue reading →

How Not To Manage Email Subscriptions – Apple

by @edent | # # # # | 3 comments | Read ~273 times.

As with most tasks in life, there are two paths you can go by – the easy way, or the right way. Sadly, many of us choose the easy way which, in the long run, means more work for us all. Take, for example, the seemingly dull task of email unsubscription. A developer wants to…

Continue reading →

Samsung Lock Screen Security Flaw

by @edent | # # # # | 31 comments | Read ~33,786 times.

Here’s a rather nifty security flaw I discovered on Samsung’s Android 4.1.2. It allows you – in limited circumstances – to run apps and dial numbers even when the device is locked. Video: This attack works against Pattern Lock, PIN, Password, and Face Unlock. There is no way to secure your phone against your home…

Continue reading →

Samsung Copy & Paste Bug (AKA Never Trust Samsung)

by @edent | # # # # | 35 comments | Read ~27,954 times.

Samsung phones crash if you use copy & paste more than 20 times. http://t.co/2OnBwo86Shockingly bad engineering. — Terence Eden (@edent) February 20, 2013 Sounds crazy, doesn’t it? If you copy and paste text more than 20 times, your phone will restart! Some people have reported more severe crashes than that – but for me it…

Continue reading →