Me and my friend Philippe spent some time looking at Android authenticator apps to see how they protect their secrets for our thesis work. One of the apps we looked at was privacyIDEA Authenticator 4.3.0, and we found that it was possible to hook into one of its functions to observe the app’s crypto routines and read decrypted OTP seeds directly from memory. What is hooking?Hooking is a technique that… Läs mer: CVE-2025-61482 – pulling OTP secrets from privacyIDEA Authenticator

When I was testing a CRS326-24G-2S+ running RouterOS 7.14.2, I noticed that it doesn’t use HTTPS by default. The management interface, WebFig, loads entirely over plain HTTP even after a factory reset. I did a few quick tests and confirmed it with a packet capture. Every request, including the login credentials, is visible on the wire. The client script even stores the username and password in sessionStorage before navigation, so… Läs mer: CVE-2025-61481 – MikroTik / SwOS