Adobe releases Flash Player 11.1.102.62

Posted by:
Date: Thursday, February 16th, 2012, 07:11
Category: News, Software

adobelogo

Late Wednesday, Adobe released Flash Player 11.1.102.62 for Mac OS X, a 14.1 megabyte download via MacUpdate. The new version includes the following fixes and changes:

- Security enhancements.

Flash Player requires Mac OS X 10.6 or later to install and run.

If you’ve tried the new version and have any feedback, please feel free to hurl your two cents in via the comments.

Apple releases Security Update 2012-001 for Snow Leopard, Snow Leopard Server operating systems

Posted by:
Date: Thursday, February 2nd, 2012, 05:53
Category: News, Software

snowleopard

With Mac OS X 10.7.3 going live yesterday, one has to wonder what changed for Mac OS X 10.6.x (Snow Leopard) users?

Not that much.

Per AppleInsider, Apple’s legacy Snow Leopard and Snow Leopard Server operating systems saw only minor security patches, though it is recommended that users install the latest software.

The Snow Leopard downloads, which can be found through Software Update or at Apple’s support page, offer Security Update 2012-001 (Snow Leopard) and Security Update 2012-001 (Snow Leopard Server), these updates weighing in at 192.73 MB for the Client version and 212.09 MB for Snow Leopard Server, with both requiring Mac OS X 10.6.8 to install and run.

If you’ve tried any of these updates and have feedback to offer, please let us know in the comments.

Apple releases Mac OS X 10.7.3 update

Posted by:
Date: Thursday, February 2nd, 2012, 05:10
Category: News, Software

You’ve been wanting it for a while and now it’s here.

Late Wednesday night, Apple released its Mac OS X 10.7.3 update. The update, a 997 megabyte download, offers the following fixes and changes:

- Add Catalan, Croatian, Greek, Hebrew, Romanian, Slovak, Thai, and Ukrainian language support.

- Address issues when using smart cards to log into OS X.

- Resolve issues authenticating with directory services.

- Address compatibility issues with Windows file sharing.

For detailed information on this update, please visit here.

For information on the security content of this update, please visit here.

If necessary, the full 1.2 gigabyte combo updater can be downloaded here.

The Mac OS X 10.7.3 updater requires an Intel-based Mac running Mac OS x 10.7 or later.

If you’ve tried the new operating system and have any feedback to offer, please let us know in the comments.

Twitter acquires security firm Dasient

Posted by:
Date: Tuesday, January 24th, 2012, 11:48
Category: News, security

It never hurts to be a bit more secure.

Per Macworld, Twitter has announced that the company acquired Internet security firm Dasient.

Dasient, which describes itself as a cloud-based Web antimalware technology company, introduced in 2010 a service to protect advertisement networks and publishers from malicious ads. The company announced the acquisition via its blog on Monday.

Before that in 2009, the company launched its web antimalware platform, capable of scanning URLs (uniform resource locators) and websites for the presence of harmful content.

The acquisition fits with Twitter’s plans to expand revenue from advertising including promoted Twitter messages and accounts.

By joining Twitter, Dasient will be able to apply its technology and team to the world’s largest real-time information network, Daswani said. The Dasient team is joining Twitter’s “revenue engineering” team, he said.

Twitter said in a message that “Dasient is joining the flock!”, and referred to Daswani’s blog post. Financial details were not disclosed. Twitter did not immediately respond to a request for information on how it plans to use Dasient’s technology and services.

As part of the merger, Dasient is winding down its business and is no longer able to accept new customers. The company, which was founded in 2008, was funded by Google Ventures among others.

Twitter acquired earlier this month Summify, a startup that summarizes content in people’s Google, Facebook and Twitter feeds and delivers a daily digest through email, on a website or to a user’s iPhone.

Stay tuned for additional details as they become available.

Adobe Reader, Adobe Reader Pro updated to 10.1.2

Posted by:
Date: Wednesday, January 11th, 2012, 07:59
Category: News, Software

On Wednesday, Adobe released version 10.1.2 of its Adobe Reader application. The update, which can also be snagged through the Adobe Update Utility, adds the following fixes and changes:

- On printing a PDF file to a PCL printer via Acrobat or Reader, the italic output in the printout is not correct.

- Mouseover events in interactive PDF form fields do not work properly (Applicable only to Acrobat/Reader10.1.1).

- 3D PDFs may crash when viewed in VMWare.

- Policy protected file keeps incrementing *.DAT file in …Acrobat10.0Security and results in Reader X crashing when closing the file.

- When converting a webpage having a scrollable inline frame only the visible content is converted and content seen on scrolling down is dropped.

- Form submission performance is slow with ZCI on Reader 10.1.

- Product view generated in Catia hides some elements when converted to prw/pdf.

- Repeatedly opening and closing PDFs in one browser session may cause a freeze or crash.

- Form goes into unresponsive state when signing form.

- Fixed critical security vulnerabilities in Versions 10.1.1 and earlier.

- Improved stability.

- Support for Mac OS X 10.7.2.

- Web Capture for Firefox 7 and later.

Acrobat Reader 10.1.2 and Acrobat Pro requires an Intel-based processor and Mac OS X 10.5.8 or later to install and run.

If you’ve tried the new versions and noticed any differences, please let us know what you think.

Microsoft Office 2008 updated to 12.3.2

Posted by:
Date: Thursday, December 15th, 2011, 07:10
Category: News, Software

microsoftlogo.jpg

Microsoft has posted an update to version 12.3.1 for Office 2008 for Mac. The update, a 285 megabyte download, offers the following fixes and changes:

- This update improves security. This update includes fixes for vulnerabilities that an attacker can use to overwrite the contents of your computer’s memory with malicious code.

Microsoft Office 2008 12.3.2 requires Mac OS X 10.4.9 or later to install and run.

If you’ve tried the update and have anything to report back, let us know.

Microsoft Office 2011 updated to 14.1.4

Posted by:
Date: Tuesday, December 13th, 2011, 13:03
Category: News, Software

It’s still not the sexiest update in the world, but it might help a bit.

On Tuesday, Microsoft released its Microsoft Office 2011 14.1.4 update. The update, a 112 megabyte download, adds the following fixes and features:

- This update fixes critical issues and also helps to improve security.

- It includes fixes for vulnerabilities that an attacker can use to overwrite the contents of your computer’s memory with malicious code.

Microsoft Office 2011 requires an Intel-based Mac running Mac OS X 10.5.8 or later to install and run.

If you’ve tried the new version and have any feedback to offer, please let us know in the comments.

Apple releases Java updates for Mac OS X 10.6, 10.7 operating systems

Posted by:
Date: Wednesday, November 9th, 2011, 04:27
Category: News, Software

applelogo_silver

The fixes, they tend to help.

Late Tuesday, Apple released Java update for Mac OS X 10.6 brings Java SE 5 to 1.6.0_29, providing “improved compatibility, security, and reliability.” The 75.45MB download requires Mac OS X 10.6.4 to install and run.

The company also released Java for OS X Lion Update 1, which updates Java SE 6 to 1.6.0_29 with improved compatibility security and reliability. The download comes in at 62.53MB and requires OS X 10.7 or later to install and run.

Apple has said that the version of Java “that is ported by Apple, and that ships with Mac OS X,” is deprecated. As Apple phases out support, Oracle is expected to step in to maintain Java, which it obtained when it acquired Sun.

The updates can be located, downloaded and installed via Mac OS X’s Software Update feature. If you’ve tried the new versions and have any feedback to offer, please let us know in the comments.

Security researcher Charlie Miller outs iOS code signing flaw, security hole

Posted by:
Date: Tuesday, November 8th, 2011, 05:46
Category: iOS, News, security, Software

It’s hard to say if it’s discouraging to see the iOS get spotted on assorted security failures or reassuring to see that security experts manage to notice these and bring them to the public’s attention.

According to Forbes, Mac hacker and researcher Charlie Miller has reportedly found a way to sneak malware into the App Store and subsequently onto any iOS device by exploiting a flaw in Apple’s restrictions on code signing, allowing the malware to steal user data and take control of certain iOS functions.

Miller explains that code signing restrictions allow only Apple’s approved commands to run in an iOS device’s memory, and submitted apps that violate these rules are not allowed on the App Store. However, he has found a method to bypass Apple’s security by exploiting a bug in iOS code signing that allows an app to download new unapproved commands from a remote computer.

“Now you could have a program in the App Store like Angry Birds that can run new code on your phone that Apple never had a chance to check,” Miller said. “With this bug, you can’t be assured of anything you download from the App Store behaving nicely.”

The flaw was introduced when Apple released iOS 4.3, which increased browser speed by allowing javascript code from the internet to run on a much deeper level in a device’s memory than in previous iterations of the OS. Miller realized that in exchange for speed, Apple created a new exception for the web browser to run unapproved code. The researcher soon found a bug that allowed him to expand the flawed code beyond the browser, integrating it into apps downloaded from the App Store.

Miller created a proof-of-concept app called “Instastock” to showcase the vulnerability, which was submitted to and approved by Apple to be distributed via the App Store. The simple program appears to be an innocuous stock ticker, but it can leverage the code signing bug to communicate with Miller’s server to pull unauthorized commands onto the affected device. From there the program has the ability to send back user data including address book contacts, photos and other files, as well as initiate certain iOS functions like vibrating alerts.

The app has since been pulled and according to his Twitter account, Miller has reportedly been banned from the App Store and kicked out of the iOS Developer Program.

Miller, a former NSA analyst who now works for computer security firm Accuvant, is a prominent Apple researcher who previously exposed the MacBook battery vulnerability and a security hole in the mobile version of Safari.

The researcher has refused to publicly reveal the exploit, reportedly giving Apple time to come up with a fix, though he will announce the specifics at the SysCan conference in Taiwan next week.

Stay tuned for additional details as they become available.

Apple releases second beta of iOS 5.0.1 to developer community, focuses on iPhone 4S battery fix

Posted by:
Date: Friday, November 4th, 2011, 11:16
Category: iPhone, News

The fix, it’s in the works…

Now it’s time for the developers to help out a bit.

Per AppleInsider, Apple is apparently working quickly to publicly release iOS 5.0.1, as evidenced by the company’s second beta in two days released on Friday.

Sources familiar with the latest build made available to iOS developers said it is known as “9A404.” It is available as a download from Apple’s developer site, or as an over-the-air update for those already running the first iOS 5.0.1 beta.

The first iOS 5.0.1 beta was issued on Wednesday with a few hiccups, as some developers said they were unable to activate their devices when updating to the pre-release software. Some developers were incorrectly given the message: “This device is not registered as part of the iPhone Developer Program.”

Apple is working quickly to issue iOS 5.0.1 publicly after the company acknowledged this week that flaws iOS 5 have cause battery life issues for some users. The company said that “a small number of customers” were experiencing the issue, which would be patched through the forthcoming software update.

The first beta of iOS 5.0.1 was labeled build “9A402.” It included a number of improvements listed by Apple:

- Fixes bugs affecting battery life.

- Resolves bugs with Documents in the Cloud.

- Improves voice recognition for Australian users during dictation.

- Contains security improvements.

- iOS 5.0.1 beta introduces a new way for developers to specify files that should remain on device, even in low storage situations.”

Stay tuned for additional details as they become available and if you’ve had a chance to play with the beta on your end, please let us know in the comments.