Rumor: FoxConn to take on additional MacBook Pro orders in 2018, no plans for a major update this year

Posted by:
Date: Tuesday, January 16th, 2018, 03:48
Category: Hardware, Intel, MacBook Pro, Processors, Rumor, security

It looks like Apple could be using assembly partner FoxConn for an increased production of its MacBook Pro notebooks.

A current rumor from the upstream supply chain states that while Apple may not be planning a major update to its MacBook Pro notebook line this year, Apple will be shifting a major portion of its MacBook orders to Foxconn in 2018, instead of providing the majority of its orders to Quanta Computer. Foxconn is apparently expected to start fulfilling the new orders with mass MacBook Pro shipments in the second quarter.

While it’s believed Foxconn will see more MacBook orders this year, it’s also believed that Quanta will continue to be Apple’s biggest supplier throughout 2018. DigiTimes’ research indicates that Quanta has shipped four times as many MacBooks as Foxconn over the last five years, with Quanta taking 79.5 percent of orders in 2017 compared to Foxconn’s 20.5 percent.

(more…)

App Store-based password reset vulnerability discovered in macOS High Sierra, appears to be fixed in forthcoming update

Posted by:
Date: Friday, January 12th, 2018, 03:27
Category: High Sierra, macOS, News, security, Software

This is why Apple has a team working on security features.

For the third time in recent month, a vulnerability has been discovered in macOS High Sierra.

Back in September, security researcher Patrick Wardle discovered an exploit to snag plaintext passwords from the Keychain utility. Two months later, software developer Lemi Orhan Ergin realized that gaining root access to High Sierra machines was essentially as easy as inputting the username “root,” no password required.

Now, a bug report on Open Radar from earlier this week—affecting version 10.13.2—allows any user to change the App Store system preferences without a real password via these steps:

(more…)

FBI director Christopher Wray calls for weakened encryption, backdoor access to assist law enforcement efforts

Posted by:
Date: Thursday, January 11th, 2018, 03:11
Category: Legal, News, security, Software

Because apparently several experts telling you something is mathematically impossible doesn’t mean a whole lot.

Newly minted FBI director Christopher Wray has renewed calls to weaken or bypass encryption. Wray, citing more than 7,700 locked devices that have proven inaccessible to the FBI, has stated that encryption can be weakened without putting users at risks.

Among the sources telling him this would be unlikely, if not impossible, include mathematicians, encryption experts, and even the U.S.’s own intelligence services. The mathematicians and encryption experts have stated that backdoors, if available, would be exploited by all. Wray’s comments pick up where previous FBI director James Comey left off.

(more…)

Apple releases Safari 11.0.2 for macOS El Capitan 10.11, macOS Sierra 11.2, looks to address Spectre issue with update

Posted by:
Date: Wednesday, January 10th, 2018, 03:19
Category: macOS, News, security, Sierra, Software

As sick as everyone is of hearing about Spectre and Meltdown, Apple has just released an updated version of Safari that could help with the Spectre vulnerability.

On Monday, the company released Safari 11.0.2, the new version of its web browser.

The update, a 75.6 megabyte download, includes security improvements to mitigate the effects of the Spectre issue, which has become a prevalent concern in the security community and affects several years worth of computers and devices.

(more…)

Apple releases macOS High Sierra 10.13.2, iOS 11.2.2 supplemental updates with Spectre fix for Safari and WebKit

Posted by:
Date: Tuesday, January 9th, 2018, 03:33
Category: High Sierra, iOS, macOS, News, security, Software

As tired as you are of hearing about the Meltdown and Spectre vulnerabilities, Apple has just released something that could help with part of these.

The company has released both a macOS High Sierra 10.13.2 and iOS 11.2.2 supplemental update designed to help prevent Spectre attacks in the current Mac and iOS operating systems. Prior to this, there was still the possibility of exploiting the Spectre vulnerability through Javascript in the Safari browser.

While there’s no absolute fix against the vulnerabilities, this patch, and others like it, can help mitigate the risk and make the bug that much harder to exploit.


The patch repairs Apple’s WKWebView API to display the web content with Apple’s WebKit implementation and thus fixes every app that displays web content on your iOS device and should be installed immediately.

On the macOS end, the macOS High Sierra 10.13.2 supplemental app helps secure Safari and apps that use Apple’s WebKit rendering engine. If you’re a Google Chrome or Firefox user, be sure to update to the latest version of the Chrome browser or Firefox 57.0.4 or later.

An update to the latest version of the Chrome browser with Spectre mitigations is expected in Chrome 64, currently scheduled for release in late January.

Stay tuned for additional details as they become available.

Via Macworld

Apple has partially repaired effects of Intel “KPTI” memory/security bug, will add additional fixed in macOS High Sierra 10.13.3

Posted by:
Date: Thursday, January 4th, 2018, 03:04
Category: High Sierra, macOS, News, Processors, security, Software

Following public disclosure of a security flaw with nearly every Intel processor produced for the last 15 years, concern grew that a fix may take up to 30 percent of the processing power away from a system. But Apple appears to have at least partially fixed the problem with December’s macOS High Sierra 10.13.2 with additional fixes seeming likely appear to be coming in macOS 10.13.3.

A number of anonymous sources within Apple have confirmed that routines exist within macOS High Sierra 10.13.2 that could grant applications access to protected kernel memory data. These measures, alongside existing programming requirements regarding kernel memory that Apple has implemented over the past decade, seem to have mitigated much of the issue.

The fix was further confirmed by developer Alex Ionescu, who called the code regarding the issue the “Double Map.”

(more…)

Face ID unable to approve family purchases, reasons for this unknown

Posted by:
Date: Friday, December 29th, 2017, 03:58
Category: Face ID, iPhone, News, security, Software, Touch ID

This is a bit strange.

A number of iPhone X owners have discovered that Face ID isn’t available as an authentication method for the “Ask to Buy” feature, which allows parents to approve their kids’ iOS purchases and downloads. At present, the parent, or controlling Apple ID account holder, must enter their entire Apple account password to approve each individual purchase attempt.

As a result, users are frustrated given that this equivalent functionality was available on Touch ID devices and seems to have been lost in the transition to the iPhone X. Face ID can be used as an authentication method for other purchases, just like Touch ID before it—but Touch ID also worked for “Ask to Buy,” and Face ID doesn’t.

(more…)

iMac Pro to incorporate T2 chip to handle discrete functions, security functions and secure enclave processes

Posted by:
Date: Wednesday, December 13th, 2017, 03:50
Category: Face ID, Hardware, iMac, News, Processors, security, Touch ID

The upcoming iMac Pro will feature new security hardware in the form of a new custom chip dubbed the T2, serving as a secure enclave for encrypted keys, giving users the ability to lock down their Mac’s boot process and also handling system functions like the camera, audio control, and managing the solid-state hard drive.

Details about the new T2 chip were revealed by Caleb Sasser, cofounder of Panic.

Per Sasser, the T2 chip combines previously discrete functions, such as the system management controller, image signal processor for FaceTime camera, audio control, and SSD control.

(more…)

Apple releases macOS High Sierra 10.13.2 update

Posted by:
Date: Friday, December 8th, 2017, 03:16
Category: High Sierra, macOS, News, security, Software

Late Wednesday night, Apple released macOS High Sierra 10.13.2. The update, a roughly 1.87 gigabyte download, offers the following fixes and changes:

– Improves compatibility with certain third-party USB audio devices.

– Improves VoiceOver navigation when viewing PDF documents in Preview.

(more…)

Apple releases fix for root user bug in macOS 10.13 High Sierra

Posted by:
Date: Thursday, November 30th, 2017, 03:23
Category: iOS, News, security, Software

Apple has released a fix for the now-infamous root bug in macOS High Sierra.

The company released its Apple Security Update 2017-001 update on Wednesday. The update, a 2.1 megabyte download, can be located and installed via the App Store app. Open this program, click on “Updates” and the patch will appear as a security update that can be installed without needing to restart your Mac.

Apple offered the following comment regarding the fix:

(more…)