Apple responds to WikiLeaks’ release of CIA-based documents, states that ‘many’ of the iOS-related exploits have already been patched

Posted by:
Date: Wednesday, March 8th, 2017, 05:47
Category: Hack, iOS, News, privacy, security, Software

With any luck, this’ll provide some consolation.

Following up on the revelation that WikiLeaks had intercepted and released what might amount to 8,700+ documents from the CIA’s Center for Cyber Intelligence unit – part of which is devoted to obtaining zero-day exploits for iOS devices – and that the CIA had lost control of the majority of its hacking arsenal, Apple went on record to state that “many of the issues leaked today were already patched” in the most recent version of iOS.

The company offered the following comment:

(more…)

1Password for Mac updated to 6.6.1, includes improved Touch Bar support, new subscription model

Posted by:
Date: Tuesday, February 28th, 2017, 05:28
Category: MacBook Pro, News, security, Software, Touch Bar

It’s a nifty program and it just got a little bit better.

1Password for Mac has just been updated to version 6.1.1. The new version includes enhanced Touch Bar support for the MacBook Pro as well as a new payment model that centers around subscriptions.

The software, which generally listed around $65, is being priced towards a more affordable number and now features free trials via the Mac App Store.

(more…)

Apple’s iCloud Activation Lock page removed without explanation

Posted by:
Date: Monday, January 30th, 2017, 05:48
Category: iOS, iPad, iPhone, iPod Touch, News, retail, security

Without hint or warning, Apple has removed the iCloud Activation Lock status page, which used to exist at iCloud.com/activationlock, but that URL now leads to a 404 error instead. The utility let anyone type in the IMEI or serial number of an iOS device to find out if Activation Lock had been turned off, something which proved to be useful to verify the authenticity of a seller when buying a used iPhone online.

References to the web page have been removed from Apple’s support documentation, indicating this is not a temporary issue and the page has been intentionally pulled from service.

A previous Apple support document recommended that users check the Activation Lock status of an iOS device before buying it to ensure that the product was ready to use. The text was removed on January 24th and the iCloud.com/activationlock URL stopped working not long afterwards.

(more…)

Tim Cook releases memo to Apple employees, states Trump administration’s immigration-based executive orders “are not a policy we support”

Posted by:
Date: Monday, January 30th, 2017, 05:18
Category: Apple, Legal, News

The Donald has spoken regarding immigration this past weekend.

So has the Tim.

In a message to Apple employees, Apple CEO Tim Cook noted that he was concerned about Donald Trump’s executive orders limiting immigration from seven countries, and that “it is not a policy we support.”

In the memo, Cook noted that there were employees that were affected by the executive orders, and that the company’s human resources, legal, and security teams were in touch to support them. He also noted that the company had reached out to the White House to protest the orders.

Cook noted that he had listened to concerns from assorted employees who were concerned about the executive orders and that he also shared those concerns.

He also released the following memo regarding the situation:

(more…)

Apple releases iOS 10.2.1 update

Posted by:
Date: Tuesday, January 24th, 2017, 05:58
Category: iOS, iPad, iPhone, iPod Touch, News, security, Software

It’s been a day for updates and Apple just released iOS 10.2.1, the current version of its mobile operating system.

The update, which weighs in between 65 megabytes and over a gigabyte depending on whether you download it over the air or via iTunes, offers the following fixes and changes:

Auto Unlock
Impact: Auto Unlock may unlock when Apple Watch is off the user’s wrist.
Desription: A logic issue was addressed through improved state management.

Contacts
Impact: Processing a maliciously crafted contact card may lead to unexpected application termination.
Desription: An input validation issue existed in the parsing of contact cards. This issue was addressed through improved input validation.

(more…)

Meitu selfie app apparently collecting, transmitting user data back to Chinese source

Posted by:
Date: Monday, January 23rd, 2017, 05:11
Category: Android, iOS, iPhone, News, privacy, security, Software

The good news is that the Meitu app adds some cool selfie editing tools, allowing you to pretty much transform your selfie pictures into nifty anime characters.

The bad news is that the app is apparently sending back as much private information as it can to a Chinese source.

The MeituPic app, launched in 2013, soared to the top of the Chinese app charts. It was rebranded as “Meitu” in 2016 and works by taking a selfie, smoothing a person’s skin, adding virtual makeup and a number of other effects.

(more…)

Apple patches “Fruitfly” malware, which relied on pre-OS X system calls

Posted by:
Date: Thursday, January 19th, 2017, 05:30
Category: Developer, News, security, Software

Apple appears to have nixed the “Fruitfly” malware strain.

The malware, which has been patched over, relied on antiquated code predating OS X. Although older, the Fruitfly malware had been used in real-world attacks on biomedical research groups according to security software maker Malwarebytes.

Fruitfly operated by communicating with two command-and-control servers, and can perform actions like typing, webcam and screen captures, and moving and clicking a mouse cursor, Malwarebytes said in a blog post on Wednesday. It also maps other devices on a network and tries to connect to them.

(more…)

Yahoo discloses details of August 2013 hack, says more than one billion accounts compromised in effort

Posted by:
Date: Thursday, December 15th, 2016, 05:32
Category: Hack, Hacks, News, security

yahoomail

It doesn’t look good when half a billion of your company’s email accounts are hacked.

And it looks a bit worse when a cool billion of them in total were hacked.

Yahoo on Wednesday announced that it believes more than one billion Yahoo user accounts were compromised in a hack by an unauthorized third party in August of 2013.

The company disclosed that information stolen from affected accounts includes names, email addresses, telephone numbers, birth dates, hashed passwords, and both encrypted and unencrypted security questions and answers. Clear text passwords, bank account information, and credit/debit card information were not believed to be accessed in the attack.

(more…)

Apple releases iOS 10.2 update

Posted by:
Date: Tuesday, December 13th, 2016, 05:02
Category: iOS, iPad, iPhone, iPod Touch, News, Software

ios10logo

On Monday, Apple released iOS 10.2, the new version of its iOS operating system.

The update, which weighs in between 360.6 megabytes and 2.4 gigabytes (depending on whether you use over-the-air or iTunes to update it), adds the following fixes and changes:

(more…)

Bluetooth 5 spec officially approved, will offer four times the range, twice the speed, other new features

Posted by:
Date: Thursday, December 8th, 2016, 05:21
Category: Bluetooth, Hardware, News, Software

bluetooth

The Bluetooth protocol is about to get a nifty upgrade.

The Bluetooth Special Interest Group today announced that the Bluetooth 5 standard has been officially adopted, which means manufacturers are now able to build it into their devices.

Compared to existing Bluetooth 4.2 protocol, Bluetooth 5 offers four times the range, two times the speed, and eight times the broadcast message capacity, bringing whole home coverage and more reliable connections between connected devices.

(more…)