Thursday 17 December 2015
FIVE WOMEN WHO CHANGED MODERN TECHNOLOGY AND SCIENCE
Wednesday 16 December 2015
Meet the world’s first smartphone which is fully washable with soap
Apple Launches iPhone Battery Case For Extra 25 Hours Of Battery
Nokia Makes World’s First Professional Virtual Reality Camera OZO
360-degree view:
Mount and rotate:
360 X 360 surround sound:
Integrated power and Memory:
Lightweight and compact:
Monday 2 November 2015
How A 17-Year-Old Impressed Zuckerberg to Become One of Facebook’s Youngest Employees
- Club Penguin Cheats app
- 4 Snaps
- Super Stickman Jump
- PokeGear
- Bubble Bounce
- GuideZilla
- The Impossible
- Doodle Town
Why Android N is Going to Be the Biggest Change in Android’s History
Thursday 1 October 2015
A Low Price Smartwatch
It is a great invention of the twenty first century. The watch comes in a variety of colours and you have the opportunity to select your favourite colour. The colours range from black, white, beige and many others.
The ZGPAX S79 Bluetooth smartwatch is more than a watch. Some of its main amazing features include:-Bluetooth phone call
The watch has a dialer where you can make a call or answer call using the watch. With this incredible watch, you do not have to remove your phone from the pocket every time you want to make or receive a call. It is very easy to answer and make a call using your low price Smartwatch, ZGPAX S79 Bluetooth smartwatch.
Phone book, messaging and music player
The low price Smart watch enables you to send a message without having to type on your smart phone. You can also play the music in your smart phone by operating the wrist watch. With the watch, you can have fun with your favourite music any time and anywhere.
Inbuilt camera
The Smart watch has an excellent camera that takes very clear photos. The camera is also able to record high quality video. The videos and the photos taken using the low price Smartwatch are easily synchronized in your smart phone.
Skarp: laser operated razor!!!!
The normal method for removing hair for the most part includes sharp steel edges, a layer of shaving cream, and water to flush. In spite of the fact that this technique has worked for eras, the colleagues behind the Skarp Razor trust it’s conceivable that the same should be possible with laser operated razor . They guarantee that the Skarp can give close and smooth shaves without the scratches, cuts or skin bristliness that peril our customary shaving schedules.
Models of the Skarp are developed out of 6061 aluminium with the natural look of shaving razors. Be that as it may, rather than an edge of steel, the Skarp utilizes a solitary fibre optic wielding a low-power, class 1 laser. Morgan Gustavsson, who is knowledgeable about the field of restorative and corrective lasers, expresses that his research has prompted the disclosure of a chromophore in human hair that can be trimmed/broken when hit with a specific wavelength of light. The Skarp Razor is intended to focus on those particular particles upon contact, securely uprooting the hair without a powerful laser yield or any enduring impacts.
Not at all like some different routines for laser hair removal, the Skarp Razor not warm up or soften hair, dispensing with blazes or hostile scents. It should work like a sharp edge, trimming any shade of hair against all skin sorts and colours, paying little heed to age, sexual orientation, or race. Furthermore, given how the Skarp could be prepared and fuelled by a solitary rechargeable AAA battery, it can significantly diminish the waste connected with dispensable razors, sharp edge cartridges, and shaving cream canisters. Skarp is the first of its kind laser operated razor .
ASUS Waveface Concept
Thursday 30 April 2015
Hacking WordPress Website with Just a Single Comment
Most of the time, we have reported about WordPress vulnerabilities involving vulnerable plugins, but this time a Finnish security researcher has discovered acritical zero-day vulnerability in the core engine of the WordPress content management system.
Yes, you heard it right. The WordPress CMS used by Millions of website is vulnerable to a zero-day flaw that could allow hackers to remote code execution on the Web server in order to take full control of it.
The vulnerability, found by Jouko Pynnönen of Finland-based security firm Klikki Oy, is a Cross-Site Scripting (XSS) flaw buried deep into the WordPress’ comments system.
The vulnerability affects the WordPress versions 3.9.3, 4.1.1, 4.1.2, and the latest WordPress version 4.2.
Pynnönen disclosed the details of the zero-day flaw, along with a video and a proof-of-concept code for an exploit of the bug, on his blog post on Sunday before the WordPress team could manage to release a patch.
Why the researcher made the 0-Day Public?
A similar cross-site-scripting (XSS) vulnerability was patched this week by WordPress developers, which was nearly 14 months after the bug was reported to the team.
Due to fear of delay in fixing this hole, Pynnönen went public with the details of critical zero-day vulnerability in WordPress 4.2 and below, so that the users of the popular content management system could be warned beforehand.
Moreover, Pynnonen reported the vulnerability to the WordPress team but they " refused all communication attempts" he made since November 2014.
The exploitation of the 0-Day vulnerability:
The vulnerability allows a hacker to inject malicious JavaScript code into the comments section that appears at the bottom of Millions of WordPress blogs or article posts worldwide. However, this action should be blocked under ordinary circumstances.
This could allow hackers to change passwords, add new administrators, or take other actions that could only be performed by the legitimate administrator of the website. This is what we call a cross-site scripting attack.
Video Demonstration of the attack:
You can watch the video demonstration below which shows an attack in action:
Pynnonen described the 0-day flaw as below:
"If triggered by a logged-in administrator, under default settings the attacker can leverage the vulnerability to execute arbitrary code on the server via the plugin and theme editors," Pynnönen wrote in a blog post published Sunday evening.
"Alternatively the attacker could change the administrator's password, create new administrator accounts, or do whatever else the currently logged-in administrator can do on the target system."
How the 0-Day exploit works?
The zero-day exploit provided by the researcher works by posting a simple JavaScript code as a comment and then adding as long as 66,000 characters or over 64 KB in size.
When the comment is processed by someone with WordPress admin rights to the website, the malicious code will be executed without giving any indication to the admin.
By default, WordPress does not automatically publish a user's comment to a post until and unless the user has been approved by the administrator of the site.
Hackers can bypass this limitation by fooling the administrator with their benign first comment, which once approved would enable any further malicious comments from that person to be automatically approved and published to the same post.
WordPress patches the 0-Day flaw:
In order to fix the security hole, administrators should upgrade their CMS to Wordpress 4.2.1, which was released few hours ago.
"This is a critical security release for all previous versions and we strongly encourage you to update your sites immediately," the WordPress team said of the latest version.
WordPress version 4.2.1 reportedly fixes the zero-day vulnerability reported by Pynnonen. So if you own a WordPress website, make sure that you run an updated version of the CMS with all the plugins up-to-date.