Security

Investigating iMessage security and privacy claims

How secure and how private is iMessage, Apple's SMS/MMS-like communications platform? Earlier this month, after news broke about the NSA's electronic surveillance program, codenamed PRISM, Apple released a statement detailing some specifics on the number of requests they receive from government agencies for customer records. As part of the statement, Apple claimed that iMessage conversations use end-to-end encryption and therefore cannot be decrypted by Apple:

More →

4
loading...
0
loading...
47
loading...
0
loading...

Facebook blogs, emails people about potential bug that allows access to contact information

Facebook just disclosed that that their White Hat program has discovered a potential bug that could allow contact information, including email and phone numbers, to be accessed by other uses who have some type of existing connection. You can see a copy of the email above. In a blog post, though buried after several paragraphs of mitigation, Facebook said:

More →

3
loading...
15
loading...
28
loading...
0
loading...

iOS Personal Hotspot passwords vulnerable to brute force attacks

Researchers at the University of Erlangen-Nuremberg have discovered weaknesses in the Personal Hotspot feature in iOS. The weak, and somewhat predictable password generation -- used in all current versions of iOS up through iOS 6 -- means people are susceptible to brute force attacks when using the personal hotspot feature on their iPhone or cellular iPad.

More →

3
loading...
0
loading...
52
loading...
0
loading...

How to reset your Mac desktop password with your Apple ID in OS X Mountain Lion

In the unfortunate event that you ever forget or lose the password to log in to your Mac running OS X Mountain Lion, hope does not have to be lost. Instead of fiddling around with recovery mode and terminal, you can easily reset it using your Apple ID as long as you've enabled your user profile to use that option.

Follow along and we'll show you how.

More →

3
loading...
0
loading...
41
loading...
0
loading...

iOS 7 preview: New security features

Apple's iOS 7, announced earlier this week, brings a lot of changes to all areas of the operating system, and security is no exception. iOS 7, at least as much of it as has been publicly disclosed by Apple to date, includes a number of security-related enhancements, seeking not just to make your data more secure, but also make security more convenient.

More →

12
loading...
18
loading...
95
loading...
0
loading...

iOS malware injecting charger to be presented at Black Hat

Three researchers from the Georgia Institute of Technology are scheduled to give a talk at the 2013 Black Hat security conference on iOS malware injection using malicious chargers. While the full details of the exploit won’t be revealed until the talk this July, the researchers have said that their method works on the latest version of iOS and does not require a jailbreak.

More →

6
loading...
13
loading...
37
loading...
0
loading...

Security Researcher Raises Concerns over Apple's Two-Step Authentication

CEO Vladimir Katalov of the security software company Elcomsoft has published a post on CrackPassword outlining where he believes Apple’s two-step authentication comes up short. While he admits that the authentication works as advertised and it’s a good idea for people to enable it, he has also identified some areas that he thinks could use some improvement.

More →

5
loading...
0
loading...
37
loading...
0
loading...

Apple neglects to secure streaming album previews

Periodically, albums become available for live streaming on iTunes prior to their official release date. The hope is that not only do consumers get a chance to hear the album before buying it, but also that by offering a free and legal way to listen to the album before it’s available, there will be less motivation for eager fans to pirate leaked albums. With unreleased albums from Daft Punk and The National currently streaming on iTunes, 9to5Mac has discovered that the streams are being left completely unprotected, offering an easy way for pirates to get high-quality cuts of the albums before they’re officially released.

More →

4
loading...
5
loading...
33
loading...
0
loading...

Multiple Vulnerabilities Found in File Lite and File Pro iOS Apps

Bad news this week for any users of the iOS file management apps File Lite and File Pro. Researchers over at Vulnerability Laboratory have published details for three vulnerabilities that they discovered in the latest versions of both apps.

More →

3
loading...
6
loading...
45
loading...
0
loading...

iTunes 11.0.3 brings a number of important security fixes

Apple recently released iTunes 11.0.3 with a number of cosmetic improvements including an updated MiniPlayer and songs view. However, this release is more than just a pretty face, bringing a number of security patches which address a wide range of vulnerabilities. Even users not interested in the visual treatments will want to grab this update.

More →

4
loading...
4
loading...
34
loading...
0
loading...

Pages