Security

Evernote forces password resets after discovering suspicious hacking activity

By Rene Ritchie, Saturday, Mar 2, 2013 a 3:48 pm

Evernote, the popular cross-platform note-taking service, has issued a global password reset for all users following the discovery of suspicious activity described as a coordinated attempt to gain access to their system. In an email sent out by the company, Evernote said:

Second iOS Lock screen bypass discovered, doesn't really expose filesystem

By Nick Arnott, Monday, Feb 25, 2013 a 10:49 pm

A couple of weeks ago a bug was discovered in the iOS 6 lock screen that allowed a person to access the Phone app, make phone calls, and get at a user’s contacts, without entering a passcode. Now a new, similar bug has been found, but it is being reported that this one will actually allow you to read from and write to the device, with unauthorized access to the filesystem. However, this does not appear to actually be the case.

Privacy and security in the age of iPhone mics and cameras

By Nick Arnott, Monday, Feb 25, 2013 a 3:02 pm

iOS has experienced its fair share of privacy fiascos over the last few years. From user locations being tracked , to Address Book data being exposed, to full on malware in the App Store, privacy and security concerns over iOS are very much a reality. Two components often overlooked are your iPhone’s camera and microphone.

Twitter hacked, 250,000 passwords compromised

By Rene Ritchie, Saturday, Feb 2, 2013 a 12:03 pm

Twitter has informed users that their service had been hacked and that 250,000 usernames, email addresses, session tokens, and encrypted/salted passwords had been compromised. According to Twitter's director of information security, Bob Lord, who posted on blog.twitter.com:

Security oversight in some apps could leave you vulnerable to hacking, data theft

By Nick Arnott, Thursday, Jan 10, 2013 a 4:14 pm

Usually when sensitive information is being transferred over a network, the application will open an encrypted connection with the server using SSL (Secure Sockets Layer). iOS ships with a list of Certificate Authorities whose SSL certificates should be trusted, helping to ensure traffic is only sent to trusted servers and not intercepted by a malicious third party using their own self-signed SSL certificate.

SSL security vulnerability reported in Simple banking app

By Rene Ritchie, Thursday, Dec 20, 2012 a 1:30 pm

Security requires eternal vigilance, and we're reminded of that once again today by Nick Arnott who went poking around the Simple banking app for iPhone and discovered what looks to be an SSL vulnerability. Arnott describes the issue on his website, Neglected Potential.

Make home automation simple with Nexia Home and your iPhone - Enter to win a Starter Bundle!

By Adam Zeis, Thursday, Oct 4, 2012 a 11:51 am

382

Nexia Home (formerly Schalge LiNK) has been my go-to system for home automation for quite some time. I first checked it out quite a while ago, and more recently, Georgia got to test the setup for herself. While the Nexia system gave us an indoor camera (both wired and wireless), thermostat, lamp module and door locks -- it was still lacking in the sensor department. All that has changed now however as Nexia has recently released both a door/window sensor and an indoor motion sensor. Both of these really add some great versatility to the whole setup, and with the addition of an outdoor wireless camera, Nexia is staying on top of their game.

12 million iOS unique device identifiers (UDID) reportedly hacked from FBI laptop

By Rene Ritchie, Tuesday, Sep 4, 2012 a 8:12 am

Over 12 million unique device identifiers (UDID), and related, personally-identifiable information, for iPhones, iPod touches, and iPads have reportedly been hacked from an FBI laptop using a Java vulnerability. AntiSec has released 1 million of the UDIDs as proof of the hack. They've also released the following about the hack itself:

How a digital life was recovered using 1Password, Dropbox, and DrivesSavers

By Rene Ritchie, Sunday, Aug 19, 2012 a 12:59 pm

About a week ago Mat Honan shared how is digital life was annihilated thanks to a hacker, and the lackadaisical security policies of Apple and Amazon. Now, Honan has shared how he restored his Dropbox account and security information stored in 1Password, reclaimed his Twitter and Google accounts, and most importantly reclaimed the priceless family photos he had stored on his laptop hard drive and never backed up. The details of how Honan got his digital life back are all up on Wired.com, and include:

Apple and Amazon respond to account security concerns

By Rene Ritchie, Tuesday, Aug 7, 2012 a 11:23 pm

This weekend, Wired's Mat Honan had his internet accounts hacked and iPhone, iPad, and Mac erased, thanks to his own linking of accounts, lack of two-factor authentication, and lack of backups -- but also because of severe problems with both Apple's and Amazon's online security policies and procedures. Basically, with an internet connection and a social engineering attack, anyone could get at least partially into anyone else's stuff.