Black Friday Is Here. Get the Lowest Prices ANYWHERE on Macs, iPads and Apple Watches: Apple Price Guides updated Nov 27th

Topic: Security

Another security manual recommends using Apple iMessage: this time, ISIS

11/21/2015, 05:11 pm

An operations security manual developed to advise journalists and political activists on how to protect their identities is now being distributed by supporters of Islamic State terrorists. One of its recommendations is to use Apple's securely encrypted iMessage service.


Half of data connections by top 500 Android apps are 'covert' with no effect on user experience

11/19/2015, 10:11 am

Researchers at the Massachusetts Institute of Technology have discovered that half of the communications connections established by the top free Android apps are hidden to the user, and much of the data is being transmitted for unknown purposes.


Paris attack stokes the flames in fight over US data encryption

11/16/2015, 09:11 pm

Last week's terrorist attack on Paris sounded a call to arms for hawkish U.S. officials seeking broad oversight of encrypted digital communications, some of whom used the opportunity to rekindle discussions with Silicon Valley technology companies.


Tim Cook slams UK spy bill that could require breakable encryption

11/10/2015, 09:11 am

Apple chief executive Tim Cook on Monday voiced staunch opposition to the UK's proposed Investigatory Powers Bill, a measure that would force companies to retain customer data and may require them to install backdoors in any encrypted systems.


ACLU: Google is embarrassed by Android security, isn't protecting vulnerable users like Apple's iOS

11/04/2015, 03:11 pm

The difference between encryption and security on iOS and Android isn't just a technical issue but a "digital security divide," according to the principal technologist for the American Civil Liberties Union. That's because Apple secures its devices while Google leaves Android open to data collection and surveillance.


Appeals court refuses immediate ban on NSA metadata collection, allows phase-out to continue

10/29/2015, 12:10 pm

The National Security Agency's collection of phone metadata will be allowed to continue during the 180-day wind-down period authorized by Congress in June, a U.S. appeals court ruled on Thursday.


Controversial cybersecurity bill passed with resounding Senate support

10/27/2015, 09:10 pm

The Cybersecurity Information Sharing Act cleared the U.S. Senate floor on Tuesday with a 74 to 21 vote in support, moving the controversial bill critics contend will grant the government unfettered access to private data one step closer to the president's desk.


Judge draws parallels between iPhone search request and lethal injection drugs

10/27/2015, 01:10 pm

Ordering Apple to unlock an iPhone's data against its will is akin to ordering a drug company to supply drugs for a lethal injection, a judge commented in the ongoing dispute over a Justice Department request.


Apple announces opposition to cybersecurity bill ahead of Senate vote

10/20/2015, 09:10 pm

Apple, one of the staunchest opponents of U.S. government efforts to conduct digital surveillance on its public, on Tuesday publicly denounced the efficacy of the Cybersecurity Information Sharing Act, or CISA, just days before the bill goes up for vote in the Senate.


China's ad firm Youmi apologizes for data-harvesting APIs used in pulled iOS apps

10/20/2015, 09:10 am

Chinese mobile advertiser Youmi on Tuesday offered "sincere apologies" for supplying an SDK to developers that contained data-collecting private APIs in violation of App Store rules.


Hackers use radio waves to silently control Apple's Siri, Android's Google Now

10/14/2015, 09:10 am

A newly spotlighted hack utilizes an iPhone or Android handset -- with headphones plugged in -- to remotely and silently access the smartphone's built-in voice controls, potentially unbeknownst to the user.


OS X El Capitan still exposed to vulnerabilities in Gatekeeper & Keychain, researchers say

09/30/2015, 03:09 pm

OS X El Capitan, launched earlier on Wednesday, still contains serious vulnerabilities in its Gatekeeper and Keychain features, according to security researchers.


Apple lists top 25 apps affected by XcodeGhost malware infiltration

09/24/2015, 05:09 am

Apple has published a list of the top 25 iOS apps impacted by China's XcodeGhost hack, the next step in a continued effort to rid infected devices of tainted software distributed through the iOS App Store.


Apple to officially host Xcode on Chinese servers in wake of malware issue

09/23/2015, 08:09 am

Downloads of Xcode should become faster for Chinese developers after Apple begins hosting its development software on local servers within the country, the company revealed in an interview with local media this week.


After China malware infiltration, Apple helps developers ensure their Xcode install is legitimate

09/22/2015, 12:09 pm

Apple on Tuesday issued a notice to developers, informing them how they can make sure their copy of Xcode is legitimate --a precaution necessitated by the appearance of malware on the iOS App Store in China.


iOS 9, OS X El Capitan close serious AirDrop vulnerability allowing malware infections

09/17/2015, 11:09 am

iOS 9 and the forthcoming OS X El Capitan address a vulnerability in Apple's AirDrop feature that could allow malware infections and the theft of sensitive data, according to a security researcher.


New adware scripts mouse clicks to access OS X Keychain, could lead to password theft

09/02/2015, 12:09 pm

A new version of the long-running Genieo adware has brought with it a new technique for accessing the OS X Keychain without user intervention, a security gray area that could be used by other malicious actors to make off with sensitive data stored in the Mac credential manager.


'KeyRaider' malware harvests 225,000 Apple IDs from jailbroken iOS devices

08/31/2015, 01:08 pm

A new form of iOS malware making its way around the jailbreak scene has resulted in the theft of credentials linked to at least 225,000 Apple IDs, resulting in fraudulent app purchases and in some cases ransom demands.


With iOS 8.4.1, Apple patches app sandbox vulnerability that could lead to enterprise data theft

08/20/2015, 12:08 pm

Last week's release of iOS 8.4.1 brought more than just Apple Music fixes -- it also patched a previously undisclosed hole in the app sandbox that made it possible for iOS devices operating in managed environments to unknowingly leak configuration and credential data to other third-party apps.


New privilege escalation exploit discovered in OS X Yosemite, also affects just-released 10.10.5

08/16/2015, 06:08 am

Just days after patching the DYLD_PRINT_TO_FILE vulnerability with a new OS X point release, Apple's desktop operating system has been hit with yet another zero-day exploit that would allow an attacker to gain root access without using a password.