Connect with us

“Hole” in State Services: the vulnerability made it possible to access and change data simply by a phone number

Published

on

Postuf, a cybersecurity company, has discovered a dangerous vulnerability in the Moscow State Services mobile application for Android.

The vulnerability allowed access to the personal account of any user using a phone number. It is noted that at the time of publication this “hole” had already been closed in the application.

Using this vulnerability, attackers could obtain all the information specified by the user on the Moscow services website. Including, last name, first name and patronymic, e-mail address, year of birth, OMS and SNILS policy number, list of movable and immovable property, information about the presence of a passport, about children, students in schools, and so on.

At the same time, having in hand the OMS policy number and year of birth, you can get access to medical information through the UMIAS system. For example, which doctors the person visits, the prescriptions prescribed for him and the history of attachment to clinics.

Access to the personal account also allowed changing user data. As a demonstration, a Postuf representative entered information about a non-existent car into the profile of a RBC correspondent, and it almost immediately appeared on the user’s page.

Click to comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Phones

Here’s what can happen when using an iPhone 13 with a cheap, non-genuine cable. The phone began to beep and get very hot

Published

on

Gizchina reports that one iPhone 13 user used a new smartphone with a very cheap 30 cents charging cable and nearly burned his phone.

The user confirms that when charging with this cable, the smartphone began to beep and became very hot. It’s good that the owner of the smartphone immediately drew attention to this. Otherwise, it could lead, at best, to a cable failure or to a smartphone fire. This often happens when using cheap charging adapters and cables.

Apple warns that it is dangerous to use non-MFi-rated, non-MFi-certified accessories with its products, with the blame resting on the user.

On e-commerce platforms, you can find a huge range of chargers with a Lightning connector starting at less than a dollar. However, there are many accessories among them without MFi certification. This certification ensures that Apple has approved the use of the cable or charger with its devices.

Usually, the iPhone warns users when using a faulty accessory, in which case it is better not to risk it so as not to lose an expensive device.

Continue Reading

Phones

Xiaomi 12 with Snapdragon 898 will be released in December, but even before that the company will present a powerful smartphone with Snapdragon 870

Published

on

There is no exact data regarding the date of the announcement of the flagship smartphone Xiaomi 12, but more and more sources agree that it will be released in December this year. So this time, a Chinese source writes about the December debut of the device. But at the same time, Xiaomi 12 will be the only representative of the series, which will be released before the end of the year.

Xiaomi 12 Pro and Xiaomi 12 Ultra will appear a few months later – closer to March 2022. That is, the situation will be repeated with the models of the current Mi 11 line. But even before the premiere of Xiaomi 12, a new smartphone from the Chinese company with an almost flagship status will be released – it will be built on SoC Qualcomm Snapdragon 870. What kind of model it will be, the source does not specify.

According to rumors, Xiaomi 12 will receive a curved screen Samsung AMOLED E5 with an embedded front camera and a 5000 mAh battery. What kind of camera it will have is not reported, but Xiaomi 12 Ultra is credited with a triple camera with sensors with a resolution of 50 megapixels.

Continue Reading

Phones

Google will try to transfer some of the new features from the Pixel 6 to older smartphones

Published

on

Google has introduced many new features for its new Pixel 6 and Pixel 6 Pro smartphones. Especially camera related. One would think that these features will not come to the previous generations of Pixel, since the new products are based on special Tensor SoCs, and the old models rely on Qualcomm solutions. However, this is not the case.

Some of the new features will still appear on older Pixel generations.

As with all Pixel features, we strive to provide as many of these as possible for older Pixels where technically possible – although it may take some time to implement. Some technologies will require additional technical investments, such as the Live Translate feature, since our language models on new smartphones are designed to run on the proprietary Tensor SoC (which is not available on older Pixel models). We do not currently have an exact rollout date on older Pixel versions, but stay tuned for more news in the future.

As such, Google will continue to adhere to its strategy of expanding the availability of new features.

Continue Reading

Most Popular