WikiLeaks to share CIA hacking tools with Apple, other firms after security fixes are complete

Posted by:
Date: Friday, March 10th, 2017, 05:36
Category: Hack, iOS, News, privacy, security, Software

Following WikiLeaks’ release of more than 8,000 documents from inside the CIA’s Center for Cyber Intelligence, Apple followed up, saying it had already fixed most of the exploits the agency had found to hack into iPhones.

WikiLeaks founder Julian Assange said Thursday he will share the code, which was withheld from the published documents, with tech companies like Apple.

Per Assange:

“We have decided to work with [tech companies] to give them exclusive access to the additional technological details we have so that fixes can be developed and pushed out,” Assange said in a live-streamed press conference from the Ecuadorian Embassy in London, where he lives. “Once this material is effectively disarmed by us we will publish additional details.”

(more…)

Apple responds to WikiLeaks’ release of CIA-based documents, states that ‘many’ of the iOS-related exploits have already been patched

Posted by:
Date: Wednesday, March 8th, 2017, 05:47
Category: Hack, iOS, News, privacy, security, Software

With any luck, this’ll provide some consolation.

Following up on the revelation that WikiLeaks had intercepted and released what might amount to 8,700+ documents from the CIA’s Center for Cyber Intelligence unit – part of which is devoted to obtaining zero-day exploits for iOS devices – and that the CIA had lost control of the majority of its hacking arsenal, Apple went on record to state that “many of the issues leaked today were already patched” in the most recent version of iOS.

The company offered the following comment:

(more…)

WikiLeaks releases 8,700+ CIA-related documents, show agency efforts towards hacking Android systems, iPhones, operating systems and smart TVs

Posted by:
Date: Wednesday, March 8th, 2017, 05:43
Category: Android, Google, Hack, Hardware, iOS, iPhone, macOS, News, privacy, Samsung, security

This is pretty much one for the ages.

WikiLeaks has released more than 8,700 documents that have apparently originated from the CIA’s Center for Cyber Intelligence, with some of the leaks saying the agency had 24 “weaponized” and previously undisclosed exploits for the Android operating system as of 2016.

Some of the Android-specific exploits were developed by the CIA, while others hailed from the U.S. National Security Agency, U.K. intelligence agency GCHQ, and cyber arms dealers.

Among the smartphone-related tools developed by the CIA were assets that allow the agency to bypass encryption found in WhatsApp, Confide and other applications known to use encryption. These tools, according to WikiLeaks analysis, capture audio and message traffic before encryption has a chance to be applied.

(more…)

Meitu selfie app apparently collecting, transmitting user data back to Chinese source

Posted by:
Date: Monday, January 23rd, 2017, 05:11
Category: Android, iOS, iPhone, News, privacy, security, Software

The good news is that the Meitu app adds some cool selfie editing tools, allowing you to pretty much transform your selfie pictures into nifty anime characters.

The bad news is that the app is apparently sending back as much private information as it can to a Chinese source.

The MeituPic app, launched in 2013, soared to the top of the Chinese app charts. It was rebranded as “Meitu” in 2016 and works by taking a selfie, smoothing a person’s skin, adding virtual makeup and a number of other effects.

(more…)

iPhones secretly storing call data in iCloud, allows later access for law enforcement (Updated)

Posted by:
Date: Friday, November 18th, 2016, 05:43
Category: iOS, iPhone, privacy, security, Software

applelogo1

This definitely qualifies as a mess between privacy, security and law enforcement.

While Apple emerged as a guardian of privacy earlier this year, fighting the FBI’s demands to help crack San Bernadino shooter Syed Farouk’s iPhone, implementing improved encryption for all its handsets and refusing to undermine that encryption, it appears that private data is being sent to the iCloud without user consent.

Russian digital forensics firm Elcomsoft has found that Apple’s mobile devices automatically send a user’s call history to the company’s servers if iCloud is enabled — but the data gets uploaded in many instances without user choice or notification.

“You only need to have iCloud itself enabled” for the data to be sent, said Vladimir Katalov, CEO of Elcomsoft.

(more…)

Leaked document explains how Apple tracks communication via, shares information with law enforcement

Posted by:
Date: Thursday, September 29th, 2016, 05:01
Category: iOS, iPhone, Legal, News, privacy, security

imessage-logo

In the complicated balancing act between privacy and security, it looks like Apple has been handing the phone number you’ve called over to the police.

Following this year’s FBI investigation and Apple’s vows of privacy protection, it appears that Apple in fact keeps a log of everyone you try to contact using iMessage, according to a leaked document found by The Intercept. These logs contain personal contact information, including phone numbers, and are stored in Apple’s servers for 30 days before being deleted. Furthermore, Apple has shared these server logs with police after being compelled by a court order.

(more…)

Pokemon Go updated, adds experimental new Tracker feature among changes

Posted by:
Date: Tuesday, August 9th, 2016, 07:18
Category: iOS, News, privacy, security, Software

Pokemon-GO-Icon

The good news is that Pokemon Go just received a hefty update and is now up to version 1.3.0.

The bad news is that this game seems to be tracking its players in impressive new ways.

A series of leaked screenshots from the new experimental “Tracker” program seems to be showing Pokemon Go players near specific PokeStops.

(more…)

iOS researcher finds WhatsApp leaves traces of conversations behind

Posted by:
Date: Friday, July 29th, 2016, 16:05
Category: iOS, News, privacy, security, Software

whatsappicon

Well, at least the world of tech security isn’t boring.

Upon examining disk images taken from the most recent version of the app, iOS researcher Jonathan Zdiarski discovered that the software retains and stores a forensic trace of the chat logs even after the chats have been deleted, creating a potential treasure trove of information for anyone with physical access to the device. The same data could also be recoverable through any remote backup systems in place.

In most cases, the data is marked as deleted by the app itself — but because it has not been overwritten, it is still recoverable through forensic tools. Zdziarski attributed the problem to the SQLite library used in coding the app, which does not overwrite by default.

(more…)

FBI director Comey says purchased hack tool will only unlock iPhone 5c units running iOS 9

Posted by:
Date: Thursday, April 7th, 2016, 08:07
Category: iPhone, Legal, News, privacy, security, Software

lockediphone5c

The tool the FBI bought to crack the San Bernadino shooter’s iPhone 5c can only be used on an iPhone 5c running iOS 9.

According to FBI director James Comey, the tool will not work on the iPhone 5s or 6 series, a statement Comey offered during a speech late Wednesday at Kenyon College.

The government is considering whether it should disclose to Apple the flaw that aided the hack: “We just haven’t decided yet,” he said at the Ohio college’s Center for the Study of American Democracy.

(more…)

Apple cites that it’s “impossible” to unlock iPhones running iOS 8 or later for authorities

Posted by:
Date: Friday, October 23rd, 2015, 13:41
Category: iOS, iPhone, Legal, News, privacy, security, Software

applelogo_silver

The legal/encryption squabble continues.

On Wednesday, Apple, representing itself in a New York court, took sides regarding backdoor access to iPhone encryption and stated that the company could not unlock iPhones running iOS 8 or higher even if it wanted to.

Apple called the request to access an encrypted iPhone “impossible to perform” on more than 90 percent of devices running iOS 8 and up.

(more…)