07/28/2015, 03:07 pm
A newly discovered security issue in the Android mobile operating system dubbed "Stagefright" has been called one of the worst vulnerabilities to date, and could present a critical issue for some 95 percent of devices in users' hands.
07/14/2015, 01:07 pm
Firefox users awoke Tuesday to an update that blocks every version of Adobe's Flash Player from running in the popular open-source browser, a victory for information security efforts following the unprecedented disclosure of numerous critical Flash vulnerabilities.
07/13/2015, 09:07 am
The recent tidal wave of critical vulnerabilities in Adobe's Flash Player has prompted many security professionals to call for the much-maligned software's demise, and we agree. AppleInsider shows you how to uninstall Flash from your Mac, and what to do if you can't live without it.
07/08/2015, 08:07 pm
Apple on Wednesday confirmed that the removal of a pesky Recovery Key security mechanism will be one of the changes coming to its two-factor authentication solution when iOS 9 and OS X 10.11 El Capitan are released this fall.
07/08/2015, 09:07 am
Later on Wednesday, two key U.S. law enforcement officials will testify in front of the Senate Judiciary Committee to argue in support of backdoors in various consumer encryption platforms, a report said.
06/24/2015, 01:06 pm
As part of a continued focus on protecting user privacy, Apple is reportedly planning to change a policy on third-party applications and prevent them from finding out what other apps are installed on an iPhone or iPad.
06/24/2015, 09:06 am
Yet another severe flaw in Adobe's much-maligned Flash Player has been discovered and is being "actively exploited," the company said on Tuesday, and users with Flash installed are being urged to upgrade to the latest version as soon as possible.
06/19/2015, 07:06 pm
Apple on Friday commented on the discovery of so-called cross-app resource access (XARA) exploits, saying it rolled out a server-side security update earlier this week and is currently working with researchers on additional fixes.
06/17/2015, 09:06 am
Three serious vulnerabilities in cross-app resource sharing protocols on Apple's desktop and mobile platforms have been discovered and used successfully to steal data -- like passwords and secret authentication keys -- including one that lays Keychain open to attackers.
06/05/2015, 10:06 am
Whistleblower and former National Security Agency contractor Edward Snowden lauded Apple for enabling measures like default full-disk encryption in iOS 8, in a rare editorial published on Friday.
05/07/2015, 11:05 am
The National Security Agency's controversial metadata collection program -- which indiscriminately siphons up billions of phone records -- was not authorized by the Patriot Act, a federal appeals court ruled Thursday, though the court stopped short of ordering the program to be suspended.
04/22/2015, 10:04 am
A bug in iOS's secure sockets layer (SSL) library could allow an attacker to force apps -- or in some cases, the entire device -- to crash if users connect to a malicious Wi-Fi hotspot, security researchers demonstrated this week.
04/21/2015, 10:04 am
Approximately 1,500 iOS apps are exposed to a vulnerability that could let a hacker bypass HTTPS security and steal passwords and other sensitive data, according to research released on Monday.
Update your Mac: Apple fixes major flaw in OS X Yosemite, but won't patch Lion, Mountain Lion or Mavericks
04/09/2015, 03:04 pm
A serious vulnerability present in every iteration of Apple's desktop operating system since OS X 10.7 -- one which allows any user process to gain root privileges -- was disclosed to the public on Thursday following the release of OS X 10.10.3, which addresses the issue, and users are urged to update as older OS X versions will remain susceptible to attack.
04/07/2015, 03:04 pm
Apple has found itself in the midst of an unexpected controversy this week after it was revealed that the iPhone maker bars laborers with recent felony convictions from working on its new corporate campus, a practice that may be unusual among private companies, but is not without precedent.
03/25/2015, 07:03 pm
A number of powerful tech companies sent an open letter to Congress, President Barack Obama and other government agencies on Wednesday, arguing for drastic change in the nation's surveillance laws that currently allow for bulk consumer data collection.
03/20/2015, 02:03 pm
Safari, Chrome, Firefox, and Internet Explorer were all successfully exploited during the second day of the annual Pwn2Own hacking contest in Vancouver.
New 'IP Box' tool bypasses 10-try limit for PINs on older iOS versions, automates brute force attacks
03/18/2015, 09:03 am
A relatively new $300 device could allow attackers to crack the PIN codes on out-of-date iPhones or iPads, taking advantage of a flaw in iOS versions older than 8.1.1 that allows unlimited attempts at PIN entry, even when users enable Apple's 10-try limit.
03/10/2015, 07:03 am
Classified documents released by whistleblower Edward Snowden reveal that the Central Intelligence Agency has been engaged in a multi-year coordinated effort to crack the security of Apple's iOS platform, which powers and protects the iPhone and iPad.
03/03/2015, 03:03 pm
A newly-discovered flaw in some implementations of cryptographic protocols SSL and TLS -- including those used by Apple's Safari and Google's Android AOSP browsers -- could allow an attacker to force clients to use older, weaker encryption that would make it significantly easier to intercept secure communications.