Apple clears through almost 350 security vulnerabilities with of iOS, macOS, watchOS and tvOS updates

Posted by:
Date: Wednesday, March 29th, 2017, 05:54
Category: Hack, iOS, macOS, News, security, Software, TvOS, watchOS

Apple cleaned house via a slew of operating system updates on Monday, pinning down nearly 350 known vulnerabilities between its changes to iOS, macOS, watchOS and tvOS.

Starting with iOS 10.3, Apple’s latest version includes Find My AirPods, Apple’s new file system, CarPlay, and a few other small visual tweaks. With nearly every update Apple does, they also include a handful of security fixes that easily go unnoticed by the user. iOS 10.3 is no exception with over 85 different common vulnerabilities and exposures (CVEs) listed.

In one case, the iOS 10.3 update patched a security hole that allowed attackers to spam Safari with a ‘Cannot Open Page’ dialog. Lookout, a cybersecurity company, learned of the attack after one of their users complained of losing control over their browsing experience. The dialog was meant to trick users into eventually paying money to “unlock” their Safari browser.

(more…)

Trump administration looks to carry out electronics travel ban from six Muslim-majority countries

Posted by:
Date: Thursday, March 23rd, 2017, 05:14
Category: Hardware, iPad, News, security

The travel ban now applies to some devices coming into the U.S. from some flights.

The Trump administration has banned devices larger than a smartphone in the passenger cabin of flights coming to the U.S. from several airports in Muslim-dominant countries. The ban restricts iPads and other tablets, Kindle ebook readers, notebooks, and other larger electronic devices to checked luggage over terrorism concerns.

The policy was announced earlier this week and covers direct flights to the U.S. from Cairo, Istanbul, Kuwait City, Doha, Casablanca, Amman, Riyadh, Jeddah, Dubai, and Abu Dhabi. Specific airlines includes in the ban include Royal Jordanian Airlines, Egypt Air, Turkish Airlines, Saudi Arabian Airlines, Kuwait Airways, Royal Air Maroc, Qatar Airways, Emirates, and Etihad Airways.

At present, the airlines have until Friday to comply with the electronics ban.

No specific terrorist threat has been cited by the Trump administration, although it’s been thought that militants may want to disguise bombs in electronic devices. Representatives from the administration have stated that the electronics ban isn’t related to the controversial travel ban being pushed forward regarding the six nations with Muslim-majority populations. These countries presently include Iran, Libya, Syria, Somalia, Sudan, and Yemen.

It’s also been noted that a similar electronics ban being carried out in the U.K. was triggered from intelligence gathered during a U.S. raid in Yemen earlier this year.

Stay tuned for additional details as they become available.

Via The Mac Observer and Reuters

Justice Department files charges against Russian hackers following Yahoo email breaches

Posted by:
Date: Thursday, March 16th, 2017, 05:56
Category: Hack, News, security

They found the people who hacked into more than half a billion Yahoo email accounts.

The Justice Department announced charges Wednesday against two Russian spies and two hackers behind the infamous 2014 hacks, which have been identified as among the most significant digital security breaks in American history.

The four men together face 47 criminal charges, including conspiracy, computer fraud, economic espionage, theft of trade secrets and aggravated identity theft, the Justice Department said in a news release.

(more…)

Apple joins Google, other tech companies in resisting ‘troubling’ FBI search warrant

Posted by:
Date: Wednesday, March 15th, 2017, 05:32
Category: Amazon, Apple, Google, iOS, Legal, Microsoft, News, security

Apple has joined Amazon and Microsoft in a court filing which supports Google’s decision to resist an FBI warrant demanding that it hand over emails stored outside the USA. The tech companies argue that this would set a ‘troubling’ precedent.

As reported, the FBI served search warrants ordering Google to surrender emails belonging to suspects in a criminal investigation. The emails themselves were stored on a server outside the USA. Google, in turn, refused, arguing that a domestic search warrant could not apply to data stored in a foreign country.

A Pennsylvania court both disagreed and instructed Google to comply with the warrant. Google has since appealed the ruling, with Apple, Amazon and Microsoft jointly filing an amicus brief in support of Google.

(more…)

WikiLeaks to share CIA hacking tools with Apple, other firms after security fixes are complete

Posted by:
Date: Friday, March 10th, 2017, 05:36
Category: Hack, iOS, News, privacy, security, Software

Following WikiLeaks’ release of more than 8,000 documents from inside the CIA’s Center for Cyber Intelligence, Apple followed up, saying it had already fixed most of the exploits the agency had found to hack into iPhones.

WikiLeaks founder Julian Assange said Thursday he will share the code, which was withheld from the published documents, with tech companies like Apple.

Per Assange:

“We have decided to work with [tech companies] to give them exclusive access to the additional technological details we have so that fixes can be developed and pushed out,” Assange said in a live-streamed press conference from the Ecuadorian Embassy in London, where he lives. “Once this material is effectively disarmed by us we will publish additional details.”

(more…)

Apple responds to WikiLeaks’ release of CIA-based documents, states that ‘many’ of the iOS-related exploits have already been patched

Posted by:
Date: Wednesday, March 8th, 2017, 05:47
Category: Hack, iOS, News, privacy, security, Software

With any luck, this’ll provide some consolation.

Following up on the revelation that WikiLeaks had intercepted and released what might amount to 8,700+ documents from the CIA’s Center for Cyber Intelligence unit – part of which is devoted to obtaining zero-day exploits for iOS devices – and that the CIA had lost control of the majority of its hacking arsenal, Apple went on record to state that “many of the issues leaked today were already patched” in the most recent version of iOS.

The company offered the following comment:

(more…)

WikiLeaks releases 8,700+ CIA-related documents, show agency efforts towards hacking Android systems, iPhones, operating systems and smart TVs

Posted by:
Date: Wednesday, March 8th, 2017, 05:43
Category: Android, Google, Hack, Hardware, iOS, iPhone, macOS, News, privacy, Samsung, security

This is pretty much one for the ages.

WikiLeaks has released more than 8,700 documents that have apparently originated from the CIA’s Center for Cyber Intelligence, with some of the leaks saying the agency had 24 “weaponized” and previously undisclosed exploits for the Android operating system as of 2016.

Some of the Android-specific exploits were developed by the CIA, while others hailed from the U.S. National Security Agency, U.K. intelligence agency GCHQ, and cyber arms dealers.

Among the smartphone-related tools developed by the CIA were assets that allow the agency to bypass encryption found in WhatsApp, Confide and other applications known to use encryption. These tools, according to WikiLeaks analysis, capture audio and message traffic before encryption has a chance to be applied.

(more…)

Yahoo discloses third data breach in six months

Posted by:
Date: Thursday, March 2nd, 2017, 05:39
Category: Hack, News, security

The hits just keep on coming.

Yahoo today revealed a third major hack, wherein some 32 million accounts have been accessed by intruders over the past two years. These accounts are in addition to the accounts affected by the two data breaches the company had previously disclosed.

The accounts were apparently compromised via forged cookie files. Yahoo has stated that the accounts were accessed by the “same state-sponsored actor beloved to be responsible for the 2014 hack.” The 2014 hack was the one that affected at least 500 million accounts.

(more…)

1Password for Mac updated to 6.6.1, includes improved Touch Bar support, new subscription model

Posted by:
Date: Tuesday, February 28th, 2017, 05:28
Category: MacBook Pro, News, security, Software, Touch Bar

It’s a nifty program and it just got a little bit better.

1Password for Mac has just been updated to version 6.1.1. The new version includes enhanced Touch Bar support for the MacBook Pro as well as a new payment model that centers around subscriptions.

The software, which generally listed around $65, is being priced towards a more affordable number and now features free trials via the Mac App Store.

(more…)

Analyst predicts Apple will switch from Touch ID to facial recognition technology for next-gen iPhone

Posted by:
Date: Monday, February 20th, 2017, 05:40
Category: Hardware, iPhone, Rumor, security, Touch ID

It’s rumored that the next-gen iPhone will feature a front-facing 3D laser scanner for facial recognition according to JPMorgan analyst Rod Hall.

Hall has stated that the scanner will replace the Touch ID on the next-gen iPhone, as Apple is apparently looking to replace the Home button to allow for an edge-to-edge display. Hall’s note cites that the iPhone 7s and iPhone 7s Plus could also have a 3D laser scanner based on increased volume of the module within Apple’s supply chain.

The scanner component is said to add about $10 to $15 to the next-gen iPhone’s bill of materials, which coupled with the OLED display, glass casing, and other increased production costs, could make its retail price up to $100 more expensive than it would be without those features, if Apple looks to maintain a similar profit margin.

(more…)