The Latest in IT Security

Amazon Awards $18,000 for Exploit Allowing Kindle E-Reader Takeover

21
Jan
2021
Amazon Awards $18,000 for Exploit Allowing Kindle E-Reader Takeover

image credit: unsplash

The attack, dubbed KindleDrip, was discovered in October 2020 by Yogev Bar-On, a researcher at Israel-based cybersecurity consulting firm Realmode Labs. KindleDrip involved the exploitation of three different security holes, all of which were addressed by Amazon.

The first vulnerability in the exploit chain was related to the “Send to Kindle” feature, which allows users to send an e-book in MOBI format to their Kindle device via email as an attachment. Amazon generates an @kindle.com email address where a user can send e-books as an attachment from a list of email addresses approved by the user.

Related posts:
  1. Amazon Alexa ‘One-Click’ Attack Can Divulge Personal Data
  2. Flaws in Philips Patient Monitoring Products Can Lead to Patient Data Exposure
  3. Google Chrome Bugs Open Browsers to Attack
  4. Microsoft’s Zerologon vulnerability fix: What admins need to know
  5. 5 top vulnerability management tools and how they help prioritize threats

Read More

Tags:  
Written by Feedproxy
0 Comments
Comments are closed.

Categories

MONDAY, MARCH 10, 2025
WHITE PAPERS

Mission-Critical Broadband – Why Governments Should Partner with Commercial Operators:
Many governments embrace mobile network operator (MNO) networks as ...

ARA at Scale: How to Choose a Solution That Grows With Your Needs:
Application release automation (ARA) tools enable best practices in...

The Multi-Model Database:
Part of the “new normal” where data and cloud applications are ...

Featured

Archives

Latest Comments