iPhones secretly storing call data in iCloud, allows later access for law enforcement (Updated)

Posted by:
Date: Friday, November 18th, 2016, 05:43
Category: iOS, iPhone, privacy, security, Software

applelogo1

This definitely qualifies as a mess between privacy, security and law enforcement.

While Apple emerged as a guardian of privacy earlier this year, fighting the FBI’s demands to help crack San Bernadino shooter Syed Farouk’s iPhone, implementing improved encryption for all its handsets and refusing to undermine that encryption, it appears that private data is being sent to the iCloud without user consent.

Russian digital forensics firm Elcomsoft has found that Apple’s mobile devices automatically send a user’s call history to the company’s servers if iCloud is enabled — but the data gets uploaded in many instances without user choice or notification.

“You only need to have iCloud itself enabled” for the data to be sent, said Vladimir Katalov, CEO of Elcomsoft.

(more…)

Some newer MacBook Pro units arriving with System Integrity Protection feature disabled

Posted by:
Date: Friday, November 18th, 2016, 05:06
Category: MacBook Pro, macOS, News, OS X, security, Software

macbook_pro_sip_off

This is kind of strange.

Since the days of OS X El Capitan, Apple has activated a protection feature called System Integrity Protection, which is designed to keep your Mac safe from malware by restricting the permissions of the root user account and preventing unauthorized access to protected files and folders.

The program runs behind the scenes and is generally enabled by default in Mac running OS X El Capitan. Developer Jonathan Wight noticed that the System Integrity Protection feature has been disabled on newer Macs, prompting developer Steven Troughton-Smith to do an informal Twitter survey asking users about the status of their new machines.

(more…)