Yesterday, Apple released Safari 3.2 for both Windows and Mac (Tiger and Leopard). As usual, Apple’s normal update announcements are a little short on details.
This update is recommended for all Safari users and features protection from fraudulent phishing websites and better identification of online businesses. This update also includes the latest security updates. For detailed […]
Despite being an avid OS X user, there are deficiencies in this great OS of ours and many of the ones I focus on center — unsurprisingly — around security.
In the plethora of accurate claims of superiority in Apple’s “I’m a Mac” ads, one counter-example is the ability within Windows to encrypt individual folders. While […]
Microsoft released three updates yesterday which fix bugs and address security concerns in their Office family of products and utilities.
The first is for the Open XML File Format Converter, which bumps the version to 1.0.1 and fixes a remote code execution (rated by Microsoft as “important”) associated with security bulleting MS08-057. The Open XML Converter […]
The Mozilla crew have updated Firefox 3 and Firefox 2 to address security vulnerabilities and (in the case of version 3) bugs & usability issues, including fixes for Mac-specific bugs.
Firefox 3 had five security issues including two critical ones that could lead to either memory corruption or privilege escalation. Firefox 2 fixed nine security vulnerabilities, […]
Ryan Naraine reported over at ZDNet Zero Day on a new iPhone vulnerability which lets anyone have full access to the majority of iPhone functionality despite your clever 4-digit passcode lock.
As mentioned by “greenmymac” and covered by The Register, full access to contacts (and, hence, browser, e-mail, SMS…) is as simple as a press of […]
snydeq writes “Private information stored in Apple’s iPhone and protected by a lock code can be accessed by anyone with just a few button presses. Pressing the emergency call button at the unlock screen, followed by two taps on the home button, takes you to the iPhone’s private ‘favorites’ page without the need to enter the unlock code, MacRumors user greenmymac has found. If the owner of the phone has favorite entries in their address book containing URLs, e-mail addresses or mobile phone numbers, then those entries can be used to launch the browser, mail application or SMS software, and gain access to private Web favorites, e-mail messages, and text messages stored in the phone, again without entering the unlock code.”
Read more of this story at Slashdot.
snydeq writes “Private information stored in Apple’s iPhone and protected by a lock code can be accessed by anyone with just a few button presses. Pressing the emergency call button at the unlock screen, followed by two taps on the home button, takes you to the iPhone’s private ‘favorites’ page without the need to enter the unlock code, MacRumors user greenmymac has found. If the owner of the phone has favorite entries in their address book containing URLs, e-mail addresses or mobile phone numbers, then those entries can be used to launch the browser, mail application or SMS software, and gain access to private Web favorites, e-mail messages, and text messages stored in the phone, again without entering the unlock code.”
Read more of this story at Slashdot.
snydeq writes “Private information stored in Apple’s iPhone and protected by a lock code can be accessed by anyone with just a few button presses. Pressing the emergency call button at the unlock screen, followed by two taps on the home button, takes you to the iPhone’s private ‘favorites’ page without the need to enter the unlock code, MacRumors user greenmymac has found. If the owner of the phone has favorite entries in their address book containing URLs, e-mail addresses or mobile phone numbers, then those entries can be used to launch the browser, mail application or SMS software, and gain access to private Web favorites, e-mail messages, and text messages stored in the phone, again without entering the unlock code.”
Read more of this story at Slashdot.
Despite Apple’s enterprise nod with the iPhone OS 2.0 feature set there are two fairly glaring omissions that make it difficult to use the iPhone in a corporate setting: the lack of encryption of the file system as a whole (or even just the message store) and the lack of available on-board virus scanners for […]
The UK security consulting firm Corsaire has just published a new whitepaper on securing Mac OS X Leopard (you may remember them from their similar Tiger whitepaper). Written by Corsaire’s head of training – Daniel Cuthbert (whom you may remember as being in a fairly public and silly court case a few years back and […]