1 844.742.7448 
Email Us
Remote Support 
Contact
However, ethical hackers with the research group vpnMentor recently disclosed their discovery that over 99,000 V Shred clients and personal trainers have had personal information exposed through an un…
Posts tagged "after"
Netgear router security flaws finally patched after six months
Netgear has issued patches to fix security vulnerabilities in two of its routers which can be exploited by an attacker to take full control of the devices remotely.
The two devices that have received patches are the R6400v2 and R6700v3. However, 77 of Netgear's other routers reportedly still remain vulnerable to a zero-day vulnerability that was reported to the company back in January of this year.
The vulnerability, which lies in the HTTPD daemon used to manage the routers, was discovered independently by both Grimm's Adam Nichols and d4rkn3ss from Vietnam's VNPT ISC through the Zero Day Initiative (ZDI).
- Netgear Nighthawk M5 Mobile Router brings 5G to your workplace
- Where to buy a router: work remotely without interruption
- Need additional security? These are the best secure routers
ZDI has released a report that includes some information about the vulnerability while Nichols has written a lengthy blog post describing it in detail, a Proof of Concept (PoC) exploit and even scripts to find vulnerable routers online.
Zero-day vulnerability
Based on the reports about the vulnerability, affected router models have an HTTPD daemon which does not adequately check the length of data supplied by a user and this allows an attacker to create a buffer overflow when data is copied to a fixed-length variable.
To exploit the flaw in Netgear's routers, an attacker would need to create a specially crafted string capable of executing commands on the device without having to authenticate first. In his blog post, Nichols explained that while stack cookies would normally be able to mitigate this vulnerability, many of Netgear's routers don't use them, saying:
“In most modern software, this vulnerability would be unexploitable. Modern software typically contains stack cookies which would prevent exploitation. However, the R7000 does not use stack cookies. In fact, of all of the Netgear products which share a common codebase, only the D8500 firmware version 1.0.3.29 and the R6300v2 firmware versions 1.0.4.12-1.0.4.20 use stack cookies. However, later versions of the D8500 and R6300v2 stopped using stack cookies, making this vulnerability once again exploitable.”
By default, the HTTPD Daemon these routers is only accessible via LAN, although router admins can enable it so it can be accessed remotely over the internet. However, attackers can still create malicious websites using JavaScript to perform DNS rebinding attacks which would allow them to execute commands remotely on routers that are not accessible over the internet.
If you have Netgear's R6400v2 or R6700v3 router you can download hot-fixes for the vulnerability now but if you have one of the 77 other affected routers, you're out of luck until the company releases patches for them.
- We've also highlighted the best small business routers
Via BleepingComputer
Okadoc sees adoption of telemedicine in UAE to gain traction even after Covid-19
Dubai-based healthcare start-up Okadoc said that telemedicine is here to stay even after the Covid-19 pandemic.
“It was gaining traction even before the pandemic but due to Covid-19, the adoption has accelerated for instant appointments as we are living in unprecedented times and there’s a greater sense of urgency for patients and doctors to be connected,” Fodhil Benturquia, Founder and CEO of Okadoc, told TechRadar Pro Middle East.
At a time where most providers are experiencing a tremendous shortfall in patients’ visits, he said that Okadoc utilises technology to connect patients with doctors quickly on a 24/7 basis, helping transform the existing healthcare model in the region by connecting patients, doctors and healthcare providers seamlessly, removing any barriers.
Moreover, he said that the platform has allowed providers to continue the spectrum of care and keep businesses running and reduce the waiting time.
With remote working and remote learning, he said that people have got used to video conferencing, so telemedicine will be there for immediate needs and rather than going to an emergency, the patient can now talk to a doctor instantly.
“When you are sick, driving can be a risk apart from the traffic and the hassle of finding parking and wasting time. When you are diabetic, you may need to visit a doctor once or twice every week and it is a burden.
“Due to Covid-19, most of the clinics and hospitals were not ready for a telemedicine service and was trying to use other video communications tools to solve the problem. In the future, I think that the government may ask every provider to have a telehealth service as a regulatory need and as a backup if another pandemic arises in the future,” he said.
Telemedicine is a complementary product and he said that about 80% of the consultation with the same doctor can be replaced by the app.
- Okadoc becomes largest ‘Series A’ fundraiser in health tech sector in Mena
- Okadoc wants to disrupt the healthcare space
- Abu Dhabi’s Hub71 launches region’s first Microsoft Reactor Program
“…In the future, I think that the government may ask every provider to have a telehealth service as a regulatory need and as a backup if another pandemic arises in the future,” Fodhil Benturquia, Founder and CEO of Okadoc, said.
TRA approved apps
Okadoc is one of the telehealth providers and facilitators besides NextGen Healthcare, VSee, Doxy.me, GetBee and Mind Mina Telemedicine to be approved by the Telecommunications Regulatory Authority (TRA) for use in the UAE.
Claiming to be the largest telehealth provider in the UAE, Benturquia said that they have accelerated the launch of the virtual video meeting with the doctor due to the growing demand.
The start-up, which started as a doctor booking facility at Dubai Healthcare City, was supposed to launch the service in the third quarter of this year.
Benturquia said that they have 204 doctors in 43 specialties from 38 healthcare providers live and more than 200 doctors are expected to join soon. They have already done more than hundreds of consultations.
“Patients can book an appointment with their own doctor or a doctor of their choice within minutes. Users can have a video consultation and chat electronically, transfer and receive documents such as prescriptions or medical records and pay for their consultations based on their insurance coverage,” he said.
Humeira Badsha, a rheumatologist consultant at Dr. Humeira Badsha Medical Centre, said that it has been a stressful time for our patients, especially with chronic diseases, last month but Okadoc has stepped in quite fast to provide the platform.
“We wanted a platform that is encrypted to maintain the confidentiality of our patients. We have managed to see more than 50 patients on telehealth last month and really surprised to see how satisfied the patients are.
“I am seeing patients from their homes with their families and in different settings in a casual mode. Dubai is a medical tourism hub and we do see a lot of patients, who can’t get to see us now due to the lockdown, from Baku and the GCC region,” she said.
Big focus on security and privacy
Using end-to-end encryption with the cloud data hosted on Alibaba Cloud and Microsoft Azure in the UAE, Benturquia said that regarding scalability, encryption and security, the platform is compliant with the UAE and international regulations which mean that doctors working from home can have instant and safe access to the platform at a time where they are not able to be present in hospitals or clinics.
Okadoc is the only regional solution that is directly integrated into a provider’s hospital information system; he said and added that the platform is end-to-end encrypted.
Even if the data is hacked, he said that it cannot be decrypted and the audio and video is not recorded.
Benturquia said that they plan to add prescription reminders on the app for the patients and looking to launch a telemedicine app for the doctors this year.
Right now, the mobile app is only for patients and desktop websites for doctors and hospitals.
After backlash, Zoom ditches snooping Facebook code from iOS app
Following the revelation by Motherboard on Friday (March 27) that video calling platform Zoom was sharing user information with Facebook via its iOS app, the popular video conferencing service has rolled out an update for iOS users.
Zoom has removed the data-sharing code from the app, telling Motherboard in a statement that the 'Login with Facebook' feature was implemented "in order to provide our users with another convenient way to access our platform".
That login feature – found on several apps – is applied by using a Facebook SDK (software development kit) that connects users of the app to Facebook's Graph API (Application Programming Interface) when the app is launched. The SDK can then share information with third parties, even if a user doesn't have a social media account with Facebook.
Facebook requires app makers to share this information with users in privacy policies, however Zoom's made no explicit mention that the social media company would have access to user data if there was no linked account.
- The best video conferencing software
- How to video chat with friends and family on your phone
- How to hide your background during video conferencing
Stay updated
Zoom says it was "recently made aware that the Facebook SDK was collecting unnecessary device data" and has since removed the code and an updated version of the iOS app is now available on the App Store.
According to Zoom's statement to Motherboard, the app did not share any sensitive information, like user names, emails and phone numbers, but "included data about users’ devices such as the mobile OS type and version, the device time zone, device OS, device model and carrier, screen size, processor cores, and disk space". This coincides with Motherboard's findings from last week.
Motherboard has since tried out the updated iOS app and found that Zoom has, indeed, stopped sending data to Facebook when the app is launched.
In the 'What's New' section of the app, Zoom says that, despite the Facebook SDK being removed, users will still be able to log in with their Facebook accounts if they have one. Users have been recommended to update the app to enable the changes.
Zoom has issued an apology for the "oversight" and the company says it "takes its users’ privacy extremely seriously".
The laptop with the world’s biggest screen is still on sale, two years after launch
There’s a good reason most companies never launched a laptop with a curved screen as often, you need ample space to appreciate the curvature of the display, which a laptop often simply can't provide.
However, this didn’t prevent Acer releasing the world's first notebook to feature a curved display – the Predator 21 X.
If you want to get your hands on one, US retailer Insight still sells it at the time of writing for a staggering $ 9,935, which is actually more than the suggested retail price at launch.
- These are the best business laptops on the market
- Check out our list of the best rugged laptops
- We curated a list of the best business tablets right now
A whopper of a laptop
The Predator 21 X is the first and only laptop ever to ship with a curved display – but that's not all it has to offer.
It has a proper mechanical keyboard, a four-speaker/dual-woofer setup, three fans and two (yes, two) 330W power supply units that feed an 8-cell battery.
The rest of the tech is somewhat long in the tooth; a desktop-grade Intel Core i7-7820HK, 64GB of RAM, two SSDs in SATA-mode, with a backup 1TB hard disk drive, and two Nvidia Geforce GTX 1080 in SLI with 16GB GDDR5 RAM.
Not surprisingly, the Predator 21 X weighs a lot – more than 10Kg including the PSUs. It is also very big (22.4 x 12.4 x 3.3in) and has a horrendously short battery life under load, meaning that whilst the Predator launched as a gaming laptop, it can also be used as a mobile workstation at a push.
- Sadly, the Predator laptop didn't make it into our list of the best video editing laptops