Security

Apple Watch, Apple Pay, and wrist detection: What you need to know

Once you've unlocked your Apple Watch, wrist detection can keep it unlocked for as long as the screen is on or it maintains skin contact.

As security systems go, wrist detection is clever: It lets you have the convenience of accessing your Apple Watch without having to continually re-enter your passcode or password, but provides enough security to protect your data, including Apple Pay credentials under normal circumstances. In that way it's similar to Touch ID, which can unlock your iPhone or iPad based on your fingerprint.

More →

12
8
61
0

Regarding Apple Watch and Activation Lock

Unlike the iPhone, the Apple Watch doesn't yet feature Activation Lock.

A theft deterrent system that requires your iCloud password to be disabled, Apple added Activation Lock to iOS in 2013 The Apple Watch, which runs a variant of iOS called Watch OS, doesn't yet secure the device beyond the default passcode/password intercept on the clock face. This was first noticed by @enMTW immediately following the Watch launch in April, but gained wider attention today following a story on iDownloadblog. So, what does it all mean?

More →

23
16
87
0

Apple's FaceTime is end-to-end encrypted. Google Hangouts... isn't

Lack of end-to-end-encryption means that conversations on Hangouts, if subject to a legal order, can be wiretapped or otherwise surveilled.

Google hadn't disclosed this information until a recent Reddit AMA (ask me anything) and a Vice follow-up that resulted. It's not clear whether Google has been asked to provide access to Hangouts, but the potential is there.

More →

12
72
141
0

Regarding web ads redirecting to the App Store

You land on a web page in mobile Safari and all of a sudden you're torn away and dumped into some game on the Apple Store.

We've gotten complaints about this — and experienced it ourselves — for what feels like a couple years. Something causes a web page, when opened, to immediately redirect you to the App Store, almost always to the listing for a popular game. Maybe the perpetrators are hoping you're so enticed by the game you download it even after being hijacked, so they'll get some revenue, direct or affiliate. But it deplorable and, even after a couple of years, it's unclear how and why it keeps happening.

More →

5
10
51
0

Apple issues security update for OS X 10.10.2

Apple has released a security update for OS X Yosemite 10.10.2.

Apple did not specify the content update, saying only that it is recommended for all users, and improves OS X security.

More →

2
17
65
0

Here's why you should turn on two-factor authentication

These days, simple passwords aren't good enough to secure your data. Hackers are too good, and security systems flawed. Longer complicated passwords created by generators like 1Password and Safari's iCloud Keychain can help, but the best way to lock down your accounts is to add extra authentication options.

More →

25
100
170
0

USB-C and BadUSB attacks: What you need to know

Apple announced the new MacBook with USB-C connector last Monday and already headlines are appearing linking it to known security issues, like BadUSB.

BadUSB is an attack that uses the way computers interface with the universal serial bus (USB) standard to try and load malware onto the machine. It's a longstanding issue with USB in general, and nothing specific to Apple or the MacBook's implementation of USB-C. Throwing Apple and a hot new product under the headline bus is a great way to get attention, but what's really going on?

More →

14
28
112
0

How secure is the Apple Watch?

That was a question posed by MarketWatch today. It's also an important question. Unfortunately, MarketWatch didn't treat the question that way. And that's a profound disservice to its readers.

The Apple Watch is, by Apple's own admission the most personal, most intimate device the company has ever released. It tracks health, it handles communications, it can control our homes, it can pay for our purchases. Security on the Apple Watch is something that's going to matter to everyone who uses it. The response to the sensational headline used by MarketWatch, is that they don't know. And the follow up is pure fear, uncertainty, and doubt. That's not only bad journalism, it's an actively harmful attack.

More →

20
26
366
0

CIA program sought to compromise security of Apple devices

More information has come to light on government surveillance, with new information revealing a campaign by the CIA to break through the security of Apple devices.

More →

4
12
36
0

How to manage two-factor authentication on your iPhone, iPad, and Mac with Authy

Passwords are weak and often cracked. Two-factor authentication, which uses your phone number to send a secondary code you have to enter, is much stronger.

I know first-hand how scary password hacks can be, but I still put off two-factor authentication for years — relying instead on a strong multi-digit 1Password-generated password — because it felt clunky and hard to set up. What if I lost access to my phone number because I was restoring my iPhone? What if I couldn't get network access for my two-factor code? Too much hassle, I thought.

Authy changed my opinion on two-factor authentication: The app makes it far less terrifying to deal with; it also lives on both my Mac and iOS devices, so I don't have to worry about losing access to my accounts while my phone is restoring.

More →

15
16
68
0

Pages