Is Apple doing anything about iCloud breach?!

Posted by:
Date: Tuesday, May 27th, 2014, 08:16
Category: Apple, Hack, iCloud, iOS, iPhone, security

icloud-iconUnfortunately, Apple has not acknowledged the supposed hack into the iCloud systems, and rarely comments publicly on such matters, so we’ll just have to hope they are working towards protecting users’ accounts. The incursion was claimed by two hackers going by the handles AquaXetine and MerrukTechnolog, who form Team DoulCi (derived by spelling “iCloud” backwards-ish). The hack exploits an iCloud security flaw that allows someone to bypass Apple’s Activation Lock system to unlock a lost or stolen iPhone. By utilizing the DoulCi web site, and making a simple change to a file on your computer, the iPhone can be fooled into thinking DoulCi’s site is actually Apple’s iCloud servers.

(more…)

Apple releases Safari 6.1.4 update

Posted by:
Date: Thursday, May 22nd, 2014, 16:14
Category: News, security, Software

Apple_Safari

On Thursday, Apple released Safari 6.1.4, an update to its web browser for its OS X 10.7 and 10.8 operating systems. The new version, a 52.9 megabyte download (via MacUpdate), includes the following fixes and new features:
- Addresses a significant memory corruption issue in the WebKit engine powering Apple’s browser.

- Addresses an issue with handling of unicode characters that could be exploited.

According to Macworld, it’s also been rumored that Apple is currently working on a significant security update for the iOS version of its Safari web browser, the company having been criticized for patching discrepancies between the iOS and OS X versions of the software.

Safari 6.1.4 requires an Intel-based Mac running OS X 10.7.5 or OS X 10.8.5 or later to install and run and can also be located and downloaded via Mac OS X’s Software Update feature. If you’ve tried the new version and have any feedback to offer, please let us know.

Google Chrome updated to 35.0.1916.114

Posted by:
Date: Wednesday, May 21st, 2014, 15:16
Category: News, security, Software

google-chrome-logo

It’s the updates that tend to help.

On Thursday, Google released version 35.0.1916.114 of its Chrome web browser. The update, a 53.7 megabyte download, adds the following fixes and changes:
- More developer control over touch input.

- New JavaScript features.

- Unprefixed Shadow DOM.

- A number of new apps/extension APIs.

- Lots of under the hood changes for stability and performance.

Security Fixes:
- High CVE-2014-1743: Use-after-free in styles.

- High CVE-2014-1744: Integer overflow in audio.

- High CVE-2014-1745: Use-after-free in SVG.

- Medium CVE-2014-1746: Out-of-bounds read in media filters.

- Medium CVE-2014-1747: UXSS with local MHTML file.

- Medium CVE-2014-1748: UI spoofing with scrollbar.

- CVE-2014-1749: Various fixes from internal audits, fuzzing and other initiatives.

- CVE-2014-3152: Integer underflow in V8 fixed in version 3.25.28.16.

Google Chrome 35.0.1916.114 requires an Intel-based Mac with Mac OS X 10.6 or later to install and run.

If you’ve tried the new version and have any feedback to offer, please let us know in the comments.

Microsoft cuts support, but XP still going strong

Posted by:
Date: Friday, May 2nd, 2014, 09:55
Category: Microsoft, security, Software, Windows

XP-LogoSupport for the aging Windows XP operating system was dropped as of April 8th, but according to web traffic monitoring, the OS still held a little over 25% of the market share. While that number continues to drop, those same stats show XP to be second only to Windows 7 (nearly 50%) among the list of major operating systems.

As part of Microsoft’s discontinuation of support, they will no longer provides bug fixes, security patches, or other updates to XP. This will leave the 13-year-old OS vulnerable to future security threats. Microsoft began announcing the end of XP support nearly seven years ago to give people plenty of opportunity to migrate to a newer version of Windows, but the entrenchment of legacy business software and other factors are making then transition a slow one.

Are you going to stick with XP now that Microsoft support is gone? Let us know in the comments or on the Facebook page.

 

 

California kills smartphone ‘kill switch’ bill

Posted by:
Date: Friday, April 25th, 2014, 09:55
Category: Apple, Hardware, iPhone, Legal, Mobile Phone, News, security, Software

Back in February, State Sen. Mark Leno (D-San Francisco) and San Francisco District Attorney George Gascon introduced a bill that would mandate the inclusion of a “kill switch” in phones sold in the state of California. If approved, the anti-theft feature would have been required to be preloaded and automatically enabled on all smartphones sold after January 1, 2015, leaving the phone inoperable if stolen. In a statement put out by Leno and Gascon at the time of the bill’s introduction, in San Francisco alone, cell phone thefts make up 66 percent of all robberies. Just over the bridge in Oakland, thefts are even higher to over 75 percent. The statement also said that recovering those phones cost consumers in the US more than $30 billion in 2012.

(more…)

Students hack Siri to do more using Googolplex

Posted by:
Date: Friday, April 18th, 2014, 08:33
Category: Apple, Google, Hacks, iOS, iPhone, Services, Siri

Screenshot 2014-04-18 02.38.02

Do you ever feel like Siri is just not living up to its potential? Do you wish there was more that Siri could do? Well, you aren’t alone. Some students at the University of Pennsylvania felt the same way and decided to do something about it, and the result was Googolplex. The four students, Alex Sands, Ajay Patel, Ben Hsu and Gagan Gupta, entered their creation into a hackathon and won third place. So, how does this work? Keep reading and we’ll tell you.

(more…)

Samsung’s fingerprint scanner not immune to hackers

Posted by:
Date: Thursday, April 17th, 2014, 08:17
Category: Android, Hacks, privacy, Samsung, security

 

samsung_galaxy_s5_official_1_fingerprint_scanner-crop

It was only a matter of time before someone found a weakness in the fingerprint scanner found on the new Samsung Galaxy S5. Too bad Samsung didn’t learn anything from Apple’s experiences with fingerprint hacking. The very same hack that was used to bypass the iPhone 5S’s scanner, that we reported on last September, has now been used to get past the one on the Galaxy S5. The security blog SRlabs has posted a video of a fake fingerprint, which was copied from a photo image and reproduced, being used to unlock a Galaxy S5.

(more…)

Apple sends out latest 10.9.3 seed to developers

Posted by:
Date: Wednesday, April 16th, 2014, 16:55
Category: Apple, Developer, Mac, MacBook Pro, Mavericks, News, Software

maverickslogoOn Tuesday, Apple released the latest build of OS X 10.9.3, designated ‘Build 13D43′. For this build, developers are being asked to focus their efforts on testing Graphics Drivers, Audio, Mail, Contacts and Calendar sync over USB in iTunes, and Safari. 10.9.3 also adds support for 4K displays, which offers improved readability and 60Hz output from a Retina display MacBook Pro.

Build releases are appearing closer together now, this one only a week after the previous seed. This is typically a sign that Apple is close to locking the update down in preparation for its release, so be on the lookout for 10.9.3 showing up in the App Store soon. Per usual, we recommend  that you make sure to backup your Macs before applying the update, and running Repair Permissions from Disk Utility before and after the update is a good idea too.

 

 

Heartbleed bug hits the Internet

Posted by:
Date: Friday, April 11th, 2014, 08:25
Category: Announcement, Hacks, privacy, security, Websites

heartbleedA newly announced bug, dubbed “Heartbleed” has got online companies on the run as they race to patch the insecurity. In spite of all the current fervor however, the bug has actually been around for about two years. It may also be the first wide-scale bug to have its own web page and logo (heartbleed.com). Heartbleed is based on a fault in functionality in the widely used OpenSSL library. OpenSSL is the cryptographic software that protects information being transferred from server to server throughout the internet. It is meant to stop hackers from intercepting secure information such as logins, usernames, passwords, credit card numbers, and other personal information.

(more…)

iPhone Tips: Improving Touch ID accuracy

Posted by:
Date: Tuesday, April 8th, 2014, 09:37
Category: Apple, iOS, iPhone, security, Software, Tips

touchid-iphone5s-fingerprint-sensor-cropSince I was in a fingerprint scanning news mood, I thought it would be a good time to share this tip that I learned recently. Courtesy of iOS 7.1, you can now add additional training to your Touch ID settings in order to improve accuracy. In iOS 7.0.x, the only way to try and improve Touch ID was really to start over, and once it told you that the training was finished, you could opt to continue adding more scans of your finger. In 7.1, Apple made it fairly painless.

(more…)