THAT UN-PATCHABLE FLAW in the Nintendo Switch ? Yeah , the Japanese gaming firm has only gone and fixed Vulnerability-related.PatchVulnerability it , according to console hacker Michael . Michael , who goes by the Twitter handle @ SciresM , tweeted that it 's bad news for console hackers and Nintendo is pushing out Vulnerability-related.PatchVulnerability new console models with a fix that stops tech-savvy folks from messing around with the software that the hybrid games console can boot with . The flaw was thought to be un-patchable as it affected Vulnerability-related.DiscoverVulnerability the Nvidia Tegra X1 chip that sits at the heart of the console . But Nintendo hates piracy more than most games firms , and as such , will release new versions of the Switch that do n't have the silicon-level flaw in them . The patch involves using a system called ‘ iPatches ' which updates Vulnerability-related.PatchVulnerability parts of the code applying to the Tegra X1 's fuses which plugs Vulnerability-related.PatchVulnerability the boot hacking exploit . Current consoles out in the wild will still be vulnerable Vulnerability-related.DiscoverVulnerability due to the patch needing to be applied Vulnerability-related.PatchVulnerability at a hardware level , but new models wo n't be susceptible to the hack . But there 's a bit of an odd situation here , as the new consoles will come running 4.1.0 versions of the Switch firmware ; the latest Switch firmware is 5.1.0 . So while the new Switchers will come off the production line immune to the Tegra X1 exploit , they will still be vulnerable Vulnerability-related.DiscoverVulnerability to other hacking techniques . With this in mind , Michael advises that people keen to crack into their Switch consoles should not apply Vulnerability-related.PatchVulnerability any updates , as the older version of the console 's firmware is the easier it 's to hack . So while the un-patchable flaw may have been fixed Vulnerability-related.PatchVulnerability the current iteration of the Switch is still no un-hackable . Not that hacking the Switch is a good idea if you want to run pirated games , as Nintendo takes a very dim view of that and cracks down so hard on pirates that it 'll permanently ban any console caught with bootlegged software from its online network . With The Legend of Zelda : Breath of the Wild and Mario Odyssey alone there are tens of hours of gaming to be had on the Switch . let along all the stuff that 's incoming and the suite of indie titles the console supports . So if you desperately need to hack the Switch to play more games , perhaps it 's time to take a break from gaming and go out into the sun ; we hear the UK is lovely at the moment .

EOS has tweeted to confirm that it has patched Vulnerability-related.PatchVulnerability “ most ” of the reported bugs and is “ working hard ” on the remainder . It expects the mainnet launch to stay on schedule . Qihoo 360 , a China-based internet security firm , says it has notified Vulnerability-related.DiscoverVulnerability the EOS blockchain project about “ a series of epic vulnerabilities ” discovered Vulnerability-related.DiscoverVulnerability on its platform . The firm said in a Tuesday report Vulnerability-related.DiscoverVulnerability that loopholes found Vulnerability-related.DiscoverVulnerability in the EOS platform could expose nodes on the network to attackers , giving them the ability to execute code remotely and take “ full control ” of transactions . The firm claims that such an attack could potentially “ decimate ” the entire cryptocurrency network . Qihoo 360 went on to explain that bad actors would be able to attack the network by constructing and publishing smart contracts containing malicious code on the EOS mainnet and have EOS supernodes pack them into new blocks . Subsequently the code would affect all nodes on the network , including those of cryptocurrency wallets and exchanges , letting the attackers gain control of private keys to cryptocurrency transactions . While EOS has not yet made any public comment on the issue , Qihoo 360 said in another blog update that the project ’ s lead developer , Daniel Larimer , was notified Vulnerability-related.DiscoverVulnerability of the issues and that he has since said Vulnerability-related.DiscoverVulnerability the vulnerabilities – identified as issue number 3498 on Github – have been fixed Vulnerability-related.PatchVulnerability . “ If any of these asserts trigger in release it shouldn ’ t pass , but should throw . Allowing the code to continue running in release is a potential security vulnerability and will likely result in crashes elsewhere , ” Larimer wrote on the Github page . Meanwhile , Larimer has today appealed for more external assistance in identifying Vulnerability-related.DiscoverVulnerability critical bugs in the system with the project ’ s mainnet launch just days away .

China ’ s largest Internet security company , Qihoo 360 , has found Vulnerability-related.DiscoverVulnerability several high-risk security vulnerabilities in EOS ’ s blockchain platform . These vulnerabilities would enable remote attacks on all EOS nodes , Qihoo 360 claimed Vulnerability-related.DiscoverVulnerability on Weibo Tuesday , May 29 . Qihoo 360 writes Vulnerability-related.DiscoverVulnerability that they reported Vulnerability-related.DiscoverVulnerability the vulnerability to the EOS team and that the EOS mainnet will not launch until the security problems are resolved Vulnerability-related.PatchVulnerability . Local news outlet Jinse , which noted that EOS asked 360 not to report Vulnerability-related.DiscoverVulnerability the vulnerability , claimed that the vulnerabilities have been fixed Vulnerability-related.PatchVulnerability on the same day , by around 2:00 pm China Standard Time . According to 360 ’ s Weibo post Vulnerability-related.DiscoverVulnerability , the vulnerability would allow an attacker to use a smart contract with malicious code to open a security hole , and then use the supernode to enter the malicious smart contract into a new block , thus putting all network nodes under the attacker ’ s control . Once this action has been completed , the attacker could then control the digital currency on the EOS network , obtain user ’ s private keys and data , launch a cyber attack , or begin mining for other cryptocurrencies . 360 describes Vulnerability-related.DiscoverVulnerability these vulnerabilities as a new “ series of unprecedented security risks ” that could affect other blockchain platforms besides EOS : “ 360 expressed [ hope ] that the discovery and disclosure Vulnerability-related.DiscoverVulnerability of this loophole will cause the blockchain industry and security peers to pay more attention to the security of such issues and jointly enhance the security of the blockchain network. ” EOS , whose mainnet is scheduled to launch on June 2 , is currently down by 2.76 percent over a 24 hour period , trading at around $ 11.70 by press time , according to Coinmarketcap data .

Google has released Vulnerability-related.PatchVulnerability the September 2018 Android security update for the supported Nexus and Pixel devices . The September Android security update fixes Vulnerability-related.PatchVulnerability as many as 59 issues through two different patch levels and comes as the first update for the devices running Android 9.0 Pie that the search giant released Vulnerability-related.PatchVulnerability as its latest Android version last month . It addresses Vulnerability-related.PatchVulnerability vulnerabilities ranging from high to critical . However , Google , as usual , assures that there are no reports of users being affected Vulnerability-related.DiscoverVulnerability by the security issues that have been fixed Vulnerability-related.PatchVulnerability through the new update . The list of compatible devices for the September Android security update includes Pixel 2 ₹ 38,499 , Pixel 2 XL ₹ 36,950 , Pixel , Pixel XL ₹ 66,991 , Pixel C , Nexus 5X , and Nexus 6P . Essential Products has also separately released Vulnerability-related.PatchVulnerability the newest Android security update for the Essential Phone . Detailing the fixes , Google in the latest security bulletin notes that the September Android security patch level dated 2018-09-01 addresses Vulnerability-related.PatchVulnerability 24 issues , while the security patch level dated 2018-09-05 fixes Vulnerability-related.PatchVulnerability 35 issues . The update fixes Vulnerability-related.PatchVulnerability vulnerabilities range from high to critical , and the most severe in the list is a security issue related to the media framework that could let a remote attacker execute arbitrary code using a specially crafted file . Also , it fixes Vulnerability-related.PatchVulnerability issues within the Android runtime , framework , and library . Google has assured that there are no reports of any active customer exploitation or abuse through the reported issues . As per the dedicated bulletin for Google devices , the September Android security update includes 15 security fixes and three functional updates . The update improves Vulnerability-related.PatchVulnerability software version reporting and audio quality over car speakers on all Pixel devices .

Virgin Media has – perhaps rather belatedly – fixed Vulnerability-related.PatchVulnerability a series of vulnerabilities in its Super Hub 3.0 home broadband router modem , after they were reported Vulnerability-related.DiscoverVulnerability more than 18 months ago . Balazs Bucsay , managing security consultant at NCC Group , says that after receiving one of the devices as a home customer and examining it for a few hours , he was quickly able to find Vulnerability-related.DiscoverVulnerability a remote command execution bug . He uncovered many others during the following days . Eventually , he says , he was able to create a full chain of exploits that made it possible to perform a remote authentication as an administrator on the router . This could potentially allow a hacker to take control of millions of these devices , installing backdoors in a way that would be extremely hard to find and investigate . “ After hacking into my own Super Hub 3.0 , I was able to find Vulnerability-related.DiscoverVulnerability multiple security flaws within the router ’ s firmware and combine these to create an exploit that could have been hidden within webpages and sent to other unsuspecting owners via scam emails or other methods , ” Bucsay tells The Daily Swig . “ If customers had opened the webpages and activated the exploit , hackers could have gained unauthorized access to their modems and other devices on the victim ’ s home network , enabling them to spy on online activity and even execute their own commands on the devices. ” Bucsay reported Vulnerability-related.DiscoverVulnerability the vulnerabilities to Virgin Media in March 2017 , but says they weren't fixed Vulnerability-related.PatchVulnerability until the end of July this year . “ The proposed roll-out date was postponed many times , ” he says . However , a Virgin Media spokeswoman defended the company ’ s actions . “ The online security of our customers is a top priority for Virgin Media and the issues described Vulnerability-related.DiscoverVulnerability by NCC have been fixed Vulnerability-related.PatchVulnerability , ” she told The Daily Swig . “ We have seen no evidence that these advanced technical exploits , carried out by NCC as a proof of concept , were used maliciously to impact customers. ” With the patch rolled out Vulnerability-related.PatchVulnerability in August , Super Hub 3.0 users don ’ t need to do anything extra to protect themselves . “ However , this research should remind consumers that no connected device is inherently secure , and that they should consider additional security measures around their home network , such as using password managers and different passwords for each device and service , ” Bucsay warns . He also urged internet service providers to be more proactive in checking the security of any third-party devices they use .