Security

Another lockscreen bug found in iOS 7 but here's how you can avoid it

Over the course of the existence of iOS there has been several lockscreen bugs found and ultimately fixed by Apple. With the release of iOS 7 even though there was a ton of security improvements, yet another has been found as reported by Forbes

This one is essentially the same as several others found in the past wherein a not so nice individual can gain access to your devices photos app, email, social networks and more through the Control Centre.

More →

7
loading...
0
loading...
39
loading...
0
loading...

Apple details security fixes in iOS 7. And there's a ton of them!

Apple has distributed a list of security fixes in the just-released iOS 7 software update. And it's as long and encompassing as you'd imagine any major platform update would be. I haven't seen them online yet, so I'm reproducing it here for anyone who's urgently interested. When/if Apple posts it to their knowledge base, we'll update and link out.

More →

3
loading...
19
loading...
63
loading...
0
loading...

Security and identity as a service, and how Apple could lead the way

As rumors keep swirling about the finger print scanner Apple will be introducing with the iPhone 5s, the subjects of mobile security and identity keep getting raised. Passwords are an absolute pain in the ass on mobile, and identity is a problem that not only hasn't been solved, but that some companies either lack interest in solving, or lack the trust necessary for us to want them to solve. Industry analyst Ben Bajarin - listen to him on the latest Vector podcast - think that leaves the door wide open for Apple. From Tech.pinions:

More →

13
loading...
15
loading...
41
loading...
0
loading...

Apple discloses bug that was likely responsible for developer center downtime

Apple recently updated their Web Server notifications page with several new acknowledgements to people who discovered and reported security vulnerabilities in Apple's servers. Among the discoveries acknowledged seems to be the vulnerability that was responsible for Apple's Developer Portal's eight-day outage. The notifications page shows a remote code execution vulnerability being reported on July 18th, the same day that Apple took the developer site down.

More →

2
loading...
3
loading...
46
loading...
0
loading...

Jekyll apps: How they attack iOS security and what you need to know about them

Today researchers Tielei Wang, Kangjie Lu, Long Lu, Simon Chung, and Wenke Lee from Georgia Tech gave a talk at the 22nd USENIX Security Symposium and revealed the details of how they got a so-called "Jekyll app" through the App Store approval process and into a position where it could perform malicious tasks. Their methods highlight several challenges to the effectiveness of the Apple's App Store review process as well as security in iOS. The researchers immediately pulled their app from the App Store after downloading it to their test devices, but demonstrated techniques that could be used by others to also sneak malware past Apple's reviewers.

The details of Apple's app review process are not publicly known, but aside from a few notable exceptions it has been largely successful in keeping malware away from iOS devices. The basic premise of a Jekyll app is to submit a seemingly harmless app to Apple for approval that, once published to the App Store, can be exploited to exhibit malicious behavior. The concept is fairly straightforward, but let's dig in to the details.

More →

14
loading...
41
loading...
125
loading...
0
loading...

How to quickly lock your Mac to keep your Chrome passwords safe!

In the wake of finding out that Google Chrome doesn't securely store passwords, lots of people may be wondering what they can do to prevent users that have physical access to their computer from stumbling across their login information. If you have a Mac running OS X, you can quickly and easily lock the screen on it to prevent anyone that doesn't know you're desktop password from gaining access.

Here's how:

More →

24
loading...
1
loading...
35
loading...
0
loading...

Internet realizes Chrome doesn't keep passwords secure, should also realize we have apps for that!

The internet is in a tizzy today because reporters realized Chrome on the desktop doesn't securely store passwords, and they realized most people probably don't realize that either. What this means is that anyone who has physical access to your Mac or Windows PC, and knows where to look, can see your logins in plain text. For those familiar with Chrome's security model, that's nothing new. The same things was true last week, last month, and last year. It's a reflection of Google's philosophy, which is different than Apple's - Safari requires a login to show passwords.) The reason for the recent internet angst is Elliot Kember:

More →

2
loading...
0
loading...
30
loading...
0
loading...

Researchers sneak 'Jekyll app' malware into App Store, exploit their own code

Tielei Wang and his team of researchers at Georgia Tech have discovered a method for getting malicious iOS apps past Apple's App Store review process. The team created a "Jekyll app" that seemed harmless at first, but after making it into the App Store and onto devices, is able to have its code rearranged in order to perform potentially malicious tasks.

More →

13
loading...
2
loading...
27
loading...
0
loading...

Top 5 simple security tips: How to increase data protection and privacy!

Security is one of the most important, yet oft-neglected facets of modern mobile life. Whether you're using an iPhone, iPod touch, or iPad, your entire life, and a lot of your friends', families', and associates' lives, are right there on your device. From contact information to location data, messages to photos and video, website logins to payment methods, if someone gains access to your device, and your stuff, it can make that life, those lives, annoying at best, catastrophic at worst. Adding security does require more time and effort than going without, but nowhere nearly as much time and effort as it takes to recover after your stuff is spied, stolen, or otherwise violated. It's security week on Talk Mobile, so while you probably already know the basics, we're going to share the very best of the tough stuff!

More →

27
loading...
78
loading...
102
loading...
0
loading...

How we handle security at iMore: Our apps and approaches to keeping our data safe!

All this week on Talk Mobile we've been discussing security - how we keep our information, and the information of others safe. Each of us here at iMore have different approaches, different go-to apps and authentication methods, and generally different levels of paranoia we try to balance with the realities of time and convenience. So what do we do? What security apps and authentication approaches make up our personal arsenals? Here we go...

More →

6
loading...
12
loading...
31
loading...
0
loading...

Pages