Skip to main content


Showing posts from August, 2020

Why You Should Stop Using Facebook Messenger

If you are a user of Facebook Messenger then now would be a time to think about its alternatives. Recently, Facebook revealed a major security feature for Messenger that allows users to unlock their chat messages by scanning faces (Biometric feature) on iOS . However, the sad truth is that Facebook Messenger is lacking on the security front and that issue Facebook can't easily fix. While announcing its latest security feature update for Messenger, Facebook told that this biometric app lock feature would add an additional layer of security to your private chat messages and prevent other people from accessing those private chat messages. However, unfortunately, this security update is like adding additional locks to the front door of a bank while leaving the vault wide open . There are many alternatives that offer most of the similar functionality without the risks. That's why now it's time to switch. What's The Problem? The problem is — encr

Apple Touch ID Vulnerability Could Have Let Attackers Hack iCloud Accounts

Security researcher of security firm Computest discovered the flaw in Apple's implementation of TouchID (biometric feature) that authenticated users to log in (particularly those that use Apple ID logins) to websites on the Safari browser. The security researcher reported the flaw to Apple and the company addressed the flaw in a server-side update.  Apple Touch ID Authentication Flaw When users try to sign in to any site (require an Apple ID), a prompt is showed to authenticate the login using Touch ID (biometric). After login through Touch ID, it skips the 2FA (Two-Factor Authentication) step.  While during login to Apple sites ( with the standard way with an ID and password , the site embeds an iframe pointing to (Apple's login validation server), that handles the authentication task.  This iframe URL also contains two other parameters : 1. client_id — identifying service 2. redirect_uri  — URI to b