You Are Here: Home » Posts tagged "apple"

Tainted Xcode IDE Tricks Apple Developers to Submit Malicious Apps in App Store

Apple’s App Store has been riddled with malware following a large-scale attack caused by malicious code, dubbed XcodeGhost, embedded in legitimate applications. By tricking legitimate developers to download a tainted version of Apple’s Xcode IDE (integrated development environment) - used to make app development easier - attackers were able to embed their own malicious code in legitimate apps and use them t...

Why jailbreaking your new iPhone might be a bad idea; plus security tips

iPhone users can choose from 1.5 million official apps. But for some, that’s not good enough. To add a personal touch and enjoy their device to the fullest, they alter the OS to bypass standard settings and restrictions. A myriad of apps and configuration tweaks become available through alternative app stores. However, jailbreaking also removes the strict security that Apple built into iOS. Thinking of jail...

Read all about it! Nine security novelties in iOS 9

iOS 9 is finally here, and rolling out several security improvements, under-the-hood refinements and developer-designed features that promise better user privacy and security. In a bid to boost security, iOS 9 stacks up nine useful features. Here is an overview: Improved two-factor authentication Apple improves two-factor authentication by building it directly into iOS. The operating system “uses different...

Nine out of 10 Mac and iOS Apps Are Completely Exposed to Password Theft

Some 88.6% of iOS and OS X apps using resource-sharing mechanisms and IPC channels are completely exposed to unauthorized cross-app resource access, or XARA, attacks, according to a report by university researchers from Indiana University, Georgia Tech and Peking University.  “The consequences of such attacks are devastating, leading to complete disclosure of the most sensitive user information (e.g., passw...

iOS 9 Boosts Security with Six-Digit Passcode and Two-Factor Authentication

Apple’s iOS 9 will oblige users to strengthen the passcode that protects devices and improve two-factor authentication by building it directly into the operating system, making it harder for others to gain unauthorized access to Apple IDs, according to the company. Apple added two-step verification to some types of accounts in March 2013, but users could log in using their Apple ID only and with no second c...

Now Twitter and Snapchat get stung by the iPhone text crash

Over the last few days, pranksters have been having a merry old time annoying the hell out of iPhone users by sending them a specially crafted text message that can cause devices to suddenly crash. The message, which I've decided - in the time-honoured tradition of keeping threats in sane proportion - to call the "iPhone text of doom", involves a sequence of Unicode characters as you can see in the followin...

Spammers are After Apple Credentials, Bitdefender Warns

Emails claiming to come from Apple are being sent to English-speaking users to lure them into giving away their financial data, Bitdefender warns. Attackers ask unsuspecting users to review their billing information in a well-crafted message. Once they click on the “Reset now” link, the login screen asks them to enter their Apple ID and password. Next, users are asked to fill in account information, includi...

Nine of the Most Deceiving Malware Threats of 2014

2014’s cybersecurity events – high-level security breaches, large scale vulnerabilities and endless privacy debates - have reshaped the world’s perception of digital safety. No one feels truly safe anymore. Behind every cyber tragedy lies a malicious piece of code designed to cause as much damage as possible - to steal identities, corporate secrets or simply to prove a point. In hopes of a safer 2015, we’re...

New iOS and OS X Malware Infects Non-Jailbroken Apple Devices

WireLurker is the “biggest in scale” iOS and OS X malware to install “trojanized” apps through USB connections on non-jailbroken iOS devices, according to a report by Palo Alto Networks. “WireLurker is now the only known active, non-jailbroken malware threat putting over 800 million iOS devices at risk,” the report says. In the past six months, the new malware family infected 467 OS X apps on the Maiyadi Ap...

Apple Drops SSL 3.0 for Push Notifications due to Poodle Flaw

Apple is going to drop SSL 3.0 support for their push notification service due to the recently discovered POODLE vulnerability in the SSL protocol, according to Apple's announcement. The company is pulling the plug for SSL 3.0 support on Wednesday, October 29, in favor of the newer and more secure Transport Layer Security (TLS) protocol. "Providers using only SSL 3.0 will need to support TLS as soon as poss...

© 2012 Powered By Bitdefender

Scroll to top