WhatsApp found a critical vulnerability and officially called for users to update immediately

About 1.5 billion users worldwide install WhatsApp programs to communicate with people on their mobile phones. WhatsApp recently confirmed that a hacker organization exploited a vulnerability in the WhatsApp program to install a monitor on particular users’ phone. According to foreign media reports, the intrusion program was developed by an Israeli network intelligence company. The intruder will try to call the target user via WhatsApp. As long as it successfully connects to target’s WhatsApp, it will use vulnerability to install the monitoring software into the phone, regardless of whether the user has answered it or not. WhatsApp says that the intruder is targeted at specific users, but it has not yet been confirmed how many users are affected. WhatsApp has fixed the vulnerability and called on all users to update the program as soon as possible, to make sure they are protected.

Windows 10 users may need to remove external storage to get the latest major updates

Windows 10 is a long-term development system that provides users with majar system updates approximately every six months. The latest update will be available to users for download and use in May. However, this update has a place that requires special attention. Microsoft recently released a new Support instructions, indicating that there was a problem in the May major update. If this update is made while an external storage device such as a USB external hard drive or SD card is connected, it may cause the system to incorrectly arrange the storage drives. In view of this, Microsoft will check if the computer is connected to an external device before updating. If an external storage device is found, the system will not update until the device is successfully removed. Microsoft said the issue will be resolved in future update. What Windows 10 users can do now is to follow Microsoft’s …

W3C announces the formal inclusion of the passwordless login mechanism “WebAuthn” into the web standard

Many users of network services have encountered problems due to passwords. And because of the advancement of the times, the security of passwords is becoming unreliable. In recent years, the online world has been constantly seeking a new and non-password-based user authentication method, and now it seems that there is finally a formal answer. The W3C, which is responsible for the Internet standard, recently announced that they have determined all the standards for Web Authentication (WebAuthn) and officially incorporated WebAuthn into the web standard. Under this new standard, users can use their fingerprints or their mobile phones to log in to a supported website without entering any password. Because W3C has started to recommend browsers and websites to support WebAuthn in the past year, some websites have already add login methods using WebAuthn. Now WebAuthn has officially become the network authentication standard. I believe that more websites will support WebAuthn’s …

The number of “fake apps” is on the rise

People often come into contact with mobile apps, but do you pay attention to whether the apps you are using come from trusted sources? Computer security company McAfee recently released the previous year’s mobile threat report. The report said that in the second half of 2018, the number of fake apps detected by the company has increased several times over the first half of the year. Popular apps can easily become mock targets for fake apps. The report uses the “Fortnite” game as an example. The Android version of the game could only be downloaded on a specific platform at the beginning of the beta period. As a result, criminals took the opportunity to make fake apps and put them online to wait for eager users to be fooled. Recently some companies put their app’s installation file onto their own platform for download, instead of putting the app to official …

Google wants to make it harder for sites to detect that you’re using Chrome’s Incognito Mode

Many people turn on the Incognito mode for their privacy and don’t let Google Chrome record your activity for private browsing. However, the implementation of the Incognitos mode does not completely make you “invisible”. According to Google Chrome, the following parties may still see your event: websites that you visit, your employer or school, your Internet service provider. Now, Google wants to make you safer, so that the websites you connect to don’t know if you are in Incognito mode.