Get the Lowest Prices anywhere on Macs, iPads and Apple Watches: Apple Price Guides updated August 24th

Topic: Security

Apple announces opposition to cybersecurity bill ahead of Senate vote

10/20/2015, 09:10 pm

Apple, one of the staunchest opponents of U.S. government efforts to conduct digital surveillance on its public, on Tuesday publicly denounced the efficacy of the Cybersecurity Information Sharing Act, or CISA, just days before the bill goes up for vote in the Senate.

23 comments

China's ad firm Youmi apologizes for data-harvesting APIs used in pulled iOS apps

10/20/2015, 09:10 am

Chinese mobile advertiser Youmi on Tuesday offered "sincere apologies" for supplying an SDK to developers that contained data-collecting private APIs in violation of App Store rules.

27 comments

Hackers use radio waves to silently control Apple's Siri, Android's Google Now

10/14/2015, 09:10 am

A newly spotlighted hack utilizes an iPhone or Android handset -- with headphones plugged in -- to remotely and silently access the smartphone's built-in voice controls, potentially unbeknownst to the user.

62 comments

OS X El Capitan still exposed to vulnerabilities in Gatekeeper & Keychain, researchers say

09/30/2015, 03:09 pm

OS X El Capitan, launched earlier on Wednesday, still contains serious vulnerabilities in its Gatekeeper and Keychain features, according to security researchers.

6 comments

Apple lists top 25 apps affected by XcodeGhost malware infiltration

09/24/2015, 05:09 am

Apple has published a list of the top 25 iOS apps impacted by China's XcodeGhost hack, the next step in a continued effort to rid infected devices of tainted software distributed through the iOS App Store.

17 comments

Apple to officially host Xcode on Chinese servers in wake of malware issue

09/23/2015, 08:09 am

Downloads of Xcode should become faster for Chinese developers after Apple begins hosting its development software on local servers within the country, the company revealed in an interview with local media this week.

35 comments

After China malware infiltration, Apple helps developers ensure their Xcode install is legitimate

09/22/2015, 12:09 pm

Apple on Tuesday issued a notice to developers, informing them how they can make sure their copy of Xcode is legitimate --a precaution necessitated by the appearance of malware on the iOS App Store in China.

25 comments

iOS 9, OS X El Capitan close serious AirDrop vulnerability allowing malware infections

09/17/2015, 11:09 am

iOS 9 and the forthcoming OS X El Capitan address a vulnerability in Apple's AirDrop feature that could allow malware infections and the theft of sensitive data, according to a security researcher.

10 comments

New adware scripts mouse clicks to access OS X Keychain, could lead to password theft

09/02/2015, 12:09 pm

A new version of the long-running Genieo adware has brought with it a new technique for accessing the OS X Keychain without user intervention, a security gray area that could be used by other malicious actors to make off with sensitive data stored in the Mac credential manager.

20 comments

'KeyRaider' malware harvests 225,000 Apple IDs from jailbroken iOS devices

08/31/2015, 01:08 pm

A new form of iOS malware making its way around the jailbreak scene has resulted in the theft of credentials linked to at least 225,000 Apple IDs, resulting in fraudulent app purchases and in some cases ransom demands.

48 comments

With iOS 8.4.1, Apple patches app sandbox vulnerability that could lead to enterprise data theft

08/20/2015, 12:08 pm

Last week's release of iOS 8.4.1 brought more than just Apple Music fixes -- it also patched a previously undisclosed hole in the app sandbox that made it possible for iOS devices operating in managed environments to unknowingly leak configuration and credential data to other third-party apps.

5 comments

New privilege escalation exploit discovered in OS X Yosemite, also affects just-released 10.10.5

08/16/2015, 06:08 am

Just days after patching the DYLD_PRINT_TO_FILE vulnerability with a new OS X point release, Apple's desktop operating system has been hit with yet another zero-day exploit that would allow an attacker to gain root access without using a password.

92 comments

Google's initial Android Stagefright patch inadequate, forced to issue second fix

08/14/2015, 10:08 am

The first software patch designed to mitigate the high-profile Stagefright vulnerability in Google's Android mobile operating system was insufficient, one security researcher discovered, leading to the issuance of yet another update.

57 comments

Prosecutors press on with 'think of the children' campaign against encryption in iOS, Android

08/12/2015, 09:08 am

Law enforcement officials have continued to make their caseagainst the new, heftier encryption introduced last year by Apple and Google for their respective mobile operating systems, charging once again that the changes are standing in the way of capturing murderers, pedophiles, sex traffickers, and terrorists.

69 comments

Apple to patch actively exploited privilege escalation bug in OS X 10.10.5 - report

08/05/2015, 09:08 am

A recently-discovered flaw in Apple's desktop operating system that allows attackers to gain root-level access without requiring users' passwords will be reportedly be fixed in the final release of OS X 10.10.5, which is already in beta.

16 comments

Active OS X 10.10 zero-day exploit installs malware without need for system passwords

08/03/2015, 09:08 pm

A week after researchers discovered a new privilege escalation zero-day vulnerability in Apple's latest version of OS X 10.10.4, an exploit has appeared allowing nefarious hackers to install adware and malware onto a target Mac without requiring system passwords.

47 comments

Macs vulnerable to same remote firmware exploits as Windows PCs, researchers find

08/03/2015, 02:08 pm

Macs can still be successfully attacked using some of the same firmware vulnerabilities affecting many Windows PCs, a new proof-of-concept worm is said to demonstrate.

19 comments

Latest Android security exploit could leave more than half of current devices 'dead' & unusable

07/30/2015, 09:07 am

Yet another serious Android security issue was publicized this week, with the latest exploit rendering devices "lifeless," and said to affect more than half of units currently on the market.

31 comments

'Stagefright' vulnerability compromises Android phones with 1 text message, may affect 950M devices

07/28/2015, 03:07 pm

A newly discovered security issue in the Android mobile operating system dubbed "Stagefright" has been called one of the worst vulnerabilities to date, and could present a critical issue for some 95 percent of devices in users' hands.

175 comments

Mozilla adds every version of Flash to default Firefox blocklist

07/14/2015, 01:07 pm

Firefox users awoke Tuesday to an update that blocks every version of Adobe's Flash Player from running in the popular open-source browser, a victory for information security efforts following the unprecedented disclosure of numerous critical Flash vulnerabilities.

38 comments