Firefox updated to 23.0

Posted by:
Date: Tuesday, August 6th, 2013, 11:29
Category: News, Software

elfirefox

The updates just keep comin’.

On Tuesday, Mozilla.org released version 23.0 of its Firefox web browser. The new version, a 44.3 megabyte download via MacUpdate, adds the following fixes and changes:

- Mixed content blocking enabled to protects users from man-in-the-middle attacks and eavesdroppers on HTTPS pages (learn more).

- Options panel created for Web Developer Toolbox.

- “Enable JavaScript” preference checkbox has been removed and user-set values will be reset to the default.

- Updated Firefox Logo.

- Improved about:memory’s functional UI.

- Simplified interface for notifications of plugin installation.

- Enabled DXVA2 on Windows Vista+ to accelerate H.264 video decoding.

- Users can now switch to a new search provider across the entire browser.

- CSP policies using the standard syntax and semantics will now be enforced rendering improvements (see bug 838675).

- Replace fixed-ratio audio resampler in webrtc.org capture code with Speex resampler and eliminate pseudo-44000Hz rate.

- “Load images automatically” and Always show the tab bar” checkboxes removed from preferences and reset to defaults.

- HTML5 form control implemented.

- Write more accessible pages on touch interfaces with new ARIA role for key buttons.

- Social share functionality.

- Added unprefixed requestAnimationFrame.

- Implemented a global browser console.

- Dropped blink effect from text-decoration: blink; and completely removed element.

- New feature in toolbox: Network Monitor.

- Various security fixes.

Firefox 23.0 requires an Intel-based Mac running Mac OS X 10.6 or later to install and run.

If you’ve tried the new version and have any feedback to offer, please let us know in the comments.

Adobe Flash Player updated to 11.7.700.225

Posted by:
Date: Wednesday, June 12th, 2013, 06:00
Category: News, security, Software

An update’s an update.

On Wednesday, Adobe released Flash Player 11.7.700.225 for Mac OS X, an 18 megabyte download via MacUpdate. The new version adds the following fixes and changes:
- Camera is not working for stageVideo(iOS)(3558247).

- No option to disable hardware acceleration(3560209).

- No option to fallback to WAV audio(3553459).

- Addresses vulnerabilities that could cause a crash and potentially allow an attacker to take control of the affected system.

Adobe Flash Player 11.7.700.225 requires an Intel-based Mac running Mac OS X 10.6 or later to install and run.

If you’ve tried the new Flash Player and have any feedback to offer, please let us know in the comments.

Apple releases Security Update 2013-002 for Mac OS X 10.6, 10.7 operating systems

Posted by:
Date: Wednesday, June 5th, 2013, 06:40
Category: News, security, Software

applelogo_silver

There were security updates yesterday.

And we’re still trying to figure out what was specifically changed.

Per The Mac Observer, Apple released security updates for Snow Leopard (OS X 10.6) and Lion (OS X 10.7) on Tuesday, for both the client and server versions of the OSes.

The patch notes for all four updates say precisely nothing, and Apple’s security update page—where security patch notes get released—has not yet been updated with these releases.

Still, if you’re running Mac OS X 10.6 or later, make sure to run the Software Update feature to snag and install the latest updates.

For those of you who like the direct approach, here are the download links for the updates:
About Security Update 2013-002 (Lion) – 57.68MB

About Security Update 2013-002 Server (Lion) – 105.61MB

About Security Update 2013-002 (Snow Leopard) – 329.85MB

About Security Update 2013-002 Server (Snow Leopard) – 404.83MB

If you’ve tried the security updates and noticed any differences, please let us know in the comments.

How-To: Encrypt volumes on your hard drive

Posted by:
Date: Tuesday, May 28th, 2013, 07:26
Category: How-To, News, security

encryption

It’s understandable that you’d want to keep your personal stuff, well, personal. That being said, CNET’s mighty Topher Kessler has turned out a spiffy step-by-step guide as to how to encrypt certain parts of your Mac’s hard drive while keeping other parts open as needed using OS X’s Disk Utility and Terminal applications.

Take a gander here and if you know of any cool security tricks you’d like to share, please let us know in the comments.

Apple rolls out two-step ID recovery option to additional countries

Posted by:
Date: Monday, May 13th, 2013, 03:58
Category: News, security

applelogo_silver

This might help keep your Apple ID credentials a bit safer.

Per The Unofficial Apple Weblog, Apple recently introduced two-step verification for your Apple ID in certain countries, and the process is now being expanded to the rest of the world. The feature, which requires two different codes for verifying your Apple ID was initially only available in the US, UK, Australia, Ireland and New Zealand. But Apple has now included Canada in on the feature, as well as users in Argentina, Pakistan, Mexico, the Netherlands, Russia, Austria, Brazil, Belgium and Portugal. In other words, two-step authentication is now rolling out to a more or less worldwide release.

The authentication process is still optional — if users don’t think you need it, they can still stick with just their Apple ID passwords as a login. The process does help security, though it’s still not a perfect solution. Apple only implemented this procedure earlier this year due to some security concerns on behalf of users. But it will help against some attacks, and it should work as another step to keep unwanted invaders out of your Apple ID account.

As always, please let us know what you make of this over in the comments section.

Microsoft releases Office 2008 12.3.6 update for Mac

Posted by:
Date: Wednesday, May 8th, 2013, 08:25
Category: News, Software

On Tuesday, Microsoft released its Microsoft Office 2008 12.3.6 update. The update, a 209.7 megabyte download, adds the following fixes and features:

- This update fixes critical issues and also helps to improve security. It includes fixes for vulnerabilities that an attacker can use to overwrite the contents of your computer’s memory with malicious code.

Microsoft Office 2008 12.3.6 requires Mac OS X 10.4.9 or later to install and run.

Firefox updated to 20.0

Posted by:
Date: Tuesday, April 2nd, 2013, 09:12
Category: News, Software

elfirefox

And just a few years ago, they were at version 3.0…

On Tuesday, Mozilla.org released version 20.0 of its Firefox web browser. The new version, a 38.3 megabyte download and adds the following fixes and changes:

New:
- Security fixes.

- Per-window Private Browsing.

- New download experience.

- Ability to close hanging plug-ins, without the browser hanging.

- Continued performance improvements around common browser tasks (page loads, downloads, shutdown, etc.).

- Continued implementation of draft ECMAScript 6 – clear() and Math.imul.

- New JavaScript Profiler tool.

- getUserMedia implemented for web access to the user’s camera and microphone (with user permission).

Various:
- Details button on Crash Reporter.

- Unity plugin doesn’t display in HiDPI mode.

Known Issues:
- If you try to start Firefox using a locked profile, it will crash.

- Some function keys may not work when pressed.

- Browsing and Download history clearing needs unification to avoid confusion on clearing download history.

- Download statusbar add-on continues downloading files from Normal.

- Browsing, when switching to Private Browsing.

- Copy actions are broken on HTML5 videos.

Firefox 20.0 requires an Intel-based Mac running Mac OS X 10.6 or later to install and run.

If you’ve tried the new version and have any feedback to offer, please let us know in the comments.

Apple adds two-step verification, other new features to iCloud security

Posted by:
Date: Friday, March 22nd, 2013, 06:44
Category: News, security, Software

When in doubt, beef up the ol’ security system a bit…

On Thursday, Apple has rolled out a new two-step verification service for iCloud and Apple ID users. This functionality greatly enhances the security of Apple accounts because it requires users to use a trusted device and an extra security code.

Per 9to5Mac, the security code can be sent via SMS or via the Find my iPhone iOS app (if it is installed). Users can now setup two-step authentication on their devices via the Apple ID web site. Users need to access the security tab on this website to conduct the setup process.

During the setup process for two-step verification, users can choose which of their iOS devices they want to be “trusted.” This new service will allow only you to be able to reset your password.

Full details can be located at the Apple ID web site.

New iOS passcode bypass bug discovered one day after iOS 6.1.3 release

Posted by:
Date: Thursday, March 21st, 2013, 07:32
Category: iOS, iPhone, News, security

Well, this is sort of awkward…

Remember how you JUST installed iOS 6.1.3 to get rid of a passcode bypass bug that would allow an unauthorized person to access the Phone app on a locked iPhone? Per iMore and The Next Web, a new bypass bug has been discovered.

The passcode bypass in the previous versions of iOS 6 required a series of well-timed taps and button presses. The result was full access to the Phone app on a locked device without entering the passcode. This new bug (not quite new, it seems to have existed prior to iOS 6.1.3) requires a sequence that’s a little easier to execute as can be seen in this video. For some reason, this bypass seems to to be more difficult to accomplish on newer, Siri-capable devices.



The bypass can be achieved using the iPhone’s Voice Dial feature. By holding the Home button on a device for a few seconds, the Voice Dial feature will come up. Issue a dial command such as “Dial 303-555-1212”, then as the call is being initiated, eject the SIM card. The iPhone detects the SIM has been removed, cancels the call, and displays an alert saying there is no SIM. Behind the alert you will see the Phone app and after dismissing the alert, you will have full access to the Phone app. As before this means you can access contact information as well as all photos on the device.

Initially thought to only be possible on non-Siri phones, reports are now coming in of this bypass being performed on the iPhone 4S and 5 as well, though it doesn’t seem to be as easily reproducible on these devices. Performing the bypass on these devices devices would also require Siri to be disabled and Voice Dial to be enabled.

Unlike the previous bug, this bypass can also easily be prevented by disabling Voice Dial. This can be done in the iPhone’s Settings app, under General > Passcode Lock, by turning the Voice Dial switch to off. With the way Apple has been handling these so far, it would not be surprising to see this fixed in a 6.1.4 update.

Stay tuned for additional details as they become available.

Apple releases iOS 6.1.3 update

Posted by:
Date: Tuesday, March 19th, 2013, 12:59
Category: iOS, iPhone, iPod Touch, News, security, Software

I’ll say this for Apple: it’s getting speedier on its iOS updates.

On Tuesday, Apple released iOS 6.1.3, a 107 megabyte download offering the following fixes for its supported iOS devices:

- Fixes a bug that could allow someone to bypass the passcode and access the Phone app.

- Improvements to Maps in Japan.

iOS 6.1.3 is available via iTunes or Over-The-Air updating and requires an iPhone 3GS, 4, 4S, 5, iPad 2, third or fourth-gen iPad, iPod Touch 4th Gen or iPad Mini to install and run.