Security News
Advertising presented to you on this service can be based on limited data, such as the website or app you are using, your non-precise location, your device type or which content you are interacting with. Your profile can be used to present content that appears more relevant based on your possible interests, such as by adapting the order in which content is shown to you, so that it is even easier for you to find content that matches your interests.
Bitdefender researchers have uncovered four vulnerabilities in webOS, the operating system running on LG smart TVs, which may offer attackers unrestricted access to the devices. The number of potentially exploitable internet-connected devices is likely smaller, as LG has patched the vulnerabilities on March 22, 2023, and some of the users have either applied the updates or have set their TVs to perform updates automatically.
Multiple security vulnerabilities have been disclosed in LG webOS running on its smart televisions that could be exploited to bypass authorization and gain root access on the devices.The findings come from Romanian cybersecurity firm Bitdefender, which discovered and reported the flaws in November 2023. The issues were fixed by LG as part of updates released on March 22, 2024.
Security researchers at Bitdefender have discovered four vulnerabilities impacting multiple versions of WebOS, the operating system used in LG smart TVs. The flaws enable varying degrees of unauthorized access and control over affected models, including authorization bypasses, privilege escalation, and command injection. The potential attacks hinge on the ability to create arbitrary accounts on the device using a service that runs on ports 3000/3001, which is available for smartphone connectivity, using a PIN. Bitdefender explains that although the vulnerable LG WebOS service is supposed to be used only in local area networks settings, Shodan internet scans show 91,000 exposed devices that are potentially vulnerable to the flaws.
Multiple platform certificates used by Android OEM device vendors to digitally sign core system applications were utilized by threat actors to sign apps containing malware. OEM Android device manufacturers use platform certificates, or platform keys, to sign devices' core ROM images containing the Android operating system and associated apps.
Cloudera announced that LG Uplus has chosen Cloudera's data platform for improving its 5G network service quality and optimizing the customer experience. With the real-time data processing capability of NRAP, LG Uplus has been able to achieve business benefits such as improving the customer center's customer quality response time and pushing the service-based network quality monitoring level to near real-time, thereby improving customer satisfaction and reducing the overall amount of fieldwork.
South Korean tech giant LG this week announced that it will continue to provide operating system updates to users of its premium Android smartphones, for up to three years. On Thursday, the company announced that it will continue to provide platform updates for all premium LG smartphones that are currently in use.
LG Innotek has developed the world's first automotive Wi-Fi 6E module with next-generation Wi-Fi technology. This breakthrough will allow LG Innotek to occupy a vantage position in the vehicle communication module market, which has been led by Japan until now.
Maze ransomware masterminds claim to have stolen source code from LG after hacking into the electronics giant. "Soon you'll be able to know how the LG company lost the source code of its products for one very big telecommunications company, working worldwide," the crooks warned in an announcement on their site this week.
The cybercriminals behind the ransomware known as Maze claim to have breached the systems of LG Electronics and obtained highly sensitive information. The operators of the Maze ransomware are known for targeting major organizations and not only encrypting their files, but also stealing files and threatening to make them public unless a ransom is paid.