Get the Lowest Prices anywhere on Macs, iPads and Apple Watches: Apple Price Guides updated October 18th
 

Topic: Security

Alleged 'KRACK Attack' vulnerability threatens to lay bare Wi-Fi WPA-2 security

10/16/2017, 09:10 am

A set of six collegiate researchers are set to unveil details on a Key Reinstallation Attack (KRACK Attack) for WPA-2 Wi-Fi security, which if legitimate can allow attackers to undermine encryption on any wi-fi connection utilizing the security method -- including Apple hardware connecting to Airport Extreme and Airport Express routers. AppleInsider explains what it is, and how to cut down on the potential for attack until patches are rolled out.

29 comments

OnePlus' OxygenOS found to be linking device IDs to collected analytics data

10/11/2017, 12:10 pm

Smartphone maker OnePlus, a competitor against Apple's iPhone, is both collecting a lot of analytics data from users and linking it to personally identifiable information, according to one security researcher.

10 comments

Proof of concept phishing attack mimics iOS popups to steal user passwords

10/10/2017, 07:10 pm

Demonstrating a potentially glaring iOS security hole, developer Felix Krause created a proof of concept phishing attack that takes advantage of system popups, and the way users interact with these messages, to steal Apple ID credentials.

23 comments

Apple Supplemental Update for macOS High Sierra fixed Disk Utility, Keychain vulnerabilities

10/06/2017, 01:10 pm

Apple has released more details about its macOS High Sierra 10.13 Supplemental Update released on Thursday, advising it fixed two security issues relating to APFS volume encryption and a potential hack that could allow an attacker to extract a user's keychain passwords.

8 comments

Yahoo says all 3B accounts impacted by 2013 data breach

10/03/2017, 05:10 pm

Yahoo in a statement on Tuesday said further investigation into a massive 2013 data breach suggests all 3 billion its user accounts were impacted from the incident, tripling the internet firm's initial estimates.

10 comments

Security study finds old or improperly updated Macs in limited danger from EFI attack vectors

09/29/2017, 10:09 am

A new study postulates that Apple's lack of transparency about firmware updates could be lulling users and system administrators into a false sense of security -- but the situation on Windows computers is far worse, and an attack focusing on EFI modification needs to be highly focused and specifically targeted.

8 comments

Apple sees dramatic surge in US national security requests, no declassified letters

09/28/2017, 04:09 pm

Between January and the end of June Apple received somewhere between 13,250 and 13,499 national security requests from the U.S. government, including orders under the Foreign Intelligence Surveillance (FISA) Court and national security letters, Apple revealed this week in its latest transparency report.

1 comments

Apple revamps 'Privacy' site to sell customers on benefits of tech like encryption & differential privacy

09/27/2017, 03:09 pm

Apple on Wednesday updated its "Privacy" minisite, reorganizing it to better communicate what the company does to safeguard personal data on its various hardware and software platforms.

2 comments

macOS's Keychain vulnerability reported earlier in Sept., Apple patch likely coming soon

09/26/2017, 09:09 am

The Keychain password vulnerability affecting multiple versions of macOS -- including High Sierra -- was reported to Apple on Sept. 7, and will likely be patched by the company in the near future, according to the security researcher who first publicized the issue.

5 comments

macOS High Sierra vulnerability may let unsigned apps steal Keychain logins in plaintext

09/25/2017, 04:09 pm

Apple's macOS High Sierra contains a vulnerability that lets apps discover Keychain passwords in plaintext, though it requires victims to intentionally override built-in security, a researcher noted on Monday.

23 comments

Apple's 'differential privacy' still collects too much specific data, study says

09/15/2017, 05:09 pm

Apple's use of "differential privacy" -- a method that inserts random noise into data as it's collected en masse -- doesn't go far enough to protect personal information, a study suggested this week.

31 comments

Up to 143M US consumers exposed in Equifax hack, could impact iPhone buyers

09/08/2017, 11:09 am

U.S. credit scoring agency Equifax has admitted that hackers gained access to the data of 143 million Americans earlier this year, something that could be particularly relevant to people in Apple's iPhone Upgrade Program.

85 comments

Small $500 device shown to brute force hack iPhone 7 lock screen passcodes, but could take days to work [u]

08/18/2017, 10:08 am

A unique new exploit is said to take advantage of just Apple's iPhone 7 and iPhone 7 Plus running recent firmware, utilizing a small device to brute force hack and bypass the iOS lock screen passcode of up to three handsets at a time.

39 comments

European emergency agency requests Apple enable AML location tracking in iPhone for first responders

08/10/2017, 10:08 am

The European Emergency Number Association is asking that Apple go beyond it's Apple Watch emergency location sending feature, and requests that Advanced Mobile Location be integrated into iOS and the iPhone to assist in locating people in an emergency.

26 comments

Apple concept would let users customize display viewing angles for privacy

08/03/2017, 03:08 pm

Apple is working on a way to allow users to control when they want a narrow field of view on an iPhone, iPad, or Mac screen to maintain privacy and limit the amount of users who can see what's being presented.

13 comments

Amazon Echo vulnerability allows hackers to eavesdrop with always-on microphone

08/02/2017, 08:08 pm

A security researcher has shown off the potential danger of internet connected speakers being used to listen in on private conversations by publishing details of how to hack earlier models of the Amazon Echo via a hardware-based vulnerability that cannot be fixed with a software patch.

31 comments

Tim Cook says Apple followed Chinese law in removing VPN apps from App Store

08/01/2017, 08:08 pm

Responding to criticism surrounding Apple's recent removal of VPN apps from the Chinese iOS App Store, CEO Tim Cook on Tuesday said the company was simply following new government regulations, as it would for any country in which it operates.

21 comments

Russia approves VPN ban likely to kick apps out of Apple's App Store

07/31/2017, 11:07 am

Russian President Vladimir Putin has signed off on a new law that will ban virtual private networks (VPNs) and other technologies enabling anonymous access to the Web, likely signaling an impending wave of removals from Apple's regional App Store.

21 comments

Apple pulls VPN apps from Chinese App Store in compliance with government crackdown

07/29/2017, 05:07 pm

Apple has removed virtual private network (VPN) apps from the Chinese App Store, apparently complying with a broader government crackdown on VPN technology.

54 comments

New TSA rules will require airline travelers to remove Apple iPads, MacBooks from bags

07/26/2017, 02:07 pm

In the coming weeks and months, travelers will no longer be able to keep iPads or small MacBook models in their bag when passing through security screenings, and will instead have to place them in a separate bin to be X-rayed, the U.S. Transportation Security Administration announced on Wednesday.

33 comments