Apple

(get it in RSS or Atom)

Apple fixes 41 iTunes security flaws, some more than a year old

by Chester Wisniewski on May 17, 2013 | 12 Comments

Apple released the latest update to iTunes today, version 11.0.3, fixing 41 vulnerabilities in the Windows version and 1 in the OS X version. Many of these flaws are rated critical and we advise you update as soon as possible.

Pentagon OKs Androids, BlackBerrys for soldiers

by Lisa Vaas on May 7, 2013 | 2 Comments

The US Department of Defense has approved the use of Samsung phones running "Knox," a hardened version of Android.

Monday review - the hot 20 stories of the week

by Anna Brading on May 6, 2013 | Leave a comment

Get up to date with everything we wrote in the past seven days - it's weekly roundup time.

Apple ships jolly uninteresting iOS 6.1.4 update

by Paul Ducklin on May 3, 2013 | 4 Comments

Apple just released iOS 6.1.4 for the iPhone 5.

Apparently, it improves speakerphone calls, but it doesn't fix the lock-screen bug in iOS 6.1.3...

Apple iMessage "censors" mention of Obama: international conspiracy...or software bug?

by Paul Ducklin on April 29, 2013 | 11 Comments

Try sending the message "I could be the next Obama" via the iMessage service from your iPhone or your iPad!

Paul Ducklin takes a look at a humorous bug that teaches us some serious lessons...

Mac malware found in malformed Word documents - is China to blame?

by Graham Cluley on April 25, 2013 | 2 Comments

Minority groups in China appear to have been targeted by a Mac malware attack, delivered via boobytrapped Word documents.

Who could possibly be interested in targeting their computers?

SSCC 107 - Hostgator, Safari, Java, pwning planes with Android, and Facebook Home [PODCAST]

by Paul Ducklin on April 23, 2013 | 2 Comments

Here's the latest episode in the popular "Chet Chat" series.

Join Chet and Duck as they discuss what we can learn from recent security news in this quarter-hour podcast.

Apple updates Safari, gives better control over Java applets

by Paul Ducklin on April 18, 2013 | 1 Comment

Apple has pushed out a Safari update to go along with this week's "Java Tuesday" fix.

It's supposed to give you finer-grained control over Java in your browser.

Paul Ducklin puts it through its paces...

Oracle and Apple ship critical Java updates - get yours today!

by Paul Ducklin on April 17, 2013 | 12 Comments

The security-beleaguered Java ecosystem usually gets updates just once every four months, in February, June and October.

But this year, Oracle has adapted that schedule a number of times, and this is one of them...

Sophos Techknow - Two-factor Authentication [PODCAST]

by Paul Ducklin on April 15, 2013 | 4 Comments

To some of us, two-factor authentication (2FA) is a welcome aspect of online security; to others, token or SMS-based login codes are just extra online hassle we'd rather do without.

Duck and Chet help you evaluate the risks and rewards of 2FA in this enjoyable quarter-hour podcast.

The biggest Mac malware attack of all time - blogger names suspected mastermind

by Graham Cluley on April 3, 2013 | 13 Comments

Suspected mastermind behind biggest Mac malware attack of all time

Award-winning security blogger Brian Krebs has shared details of his investigation into who might have been behind Flashback - which hit more than 600,000 Mac computers in early 2012

Monday review - the hot 13 stories of the week

by Anna Brading on April 1, 2013 | Leave a comment

Monday review - the hot stories of the week

Catch up with everything we've written in the last seven days with this handy weekly roundup

SSCC 105 - HP printers, Google blocks ad blockers, Apple does the 2-step, and more...

by Paul Ducklin on March 27, 2013 | 1 Comment

Have you joined thousands of others, and become a loyal listener to the "Chet Chat" yet?

Here's the latest Naked Security podcast, Sophos Security Chet Chat 105, discussing a range of recent and newsworthy topics from the world of computer security.

Monday review - the hot 21 stories of the week

by Anna Brading on March 25, 2013 | Leave a comment

It's weekly roundup time. Here's all the great stuff we've written in the past seven days.

Apple password reset website - gaping hole found, fixed

by Paul Ducklin on March 23, 2013 | 6 Comments

Apple has had a good-bad-good-bad week of it in the computer security environment.

Its announcement of two-step verification for some users was quickly followed by a report of a password recovery exploit for everyone else...

Apple introduces two-factor verification for Apple IDs

by Paul Ducklin on March 22, 2013 | 13 Comments

After celebrity Web 2.0 journalist Mat Honan had all his iDevices remote-wiped by a cybercrook last year, Apple's login security has been under scrutiny.

Good news! Apple has finally bitten the bullet and started offering two-factor verification for Apple ID users...

iOS 6.1.3 security flaw allows passcode lock bypass... again [VIDEO]

by Graham Cluley on March 21, 2013 | 8 Comments

iOS 6.1.3 has only just been released by Apple, and already a security hole has been followed - allowing anyone to bypass the passcode lock on iPhones, and access private data on the device.

Anyone else getting a sense of Deja Vu?

iOS 6.1.3 released - Apple fixes iPhone/iPad passcode-bypass security loophole

by Graham Cluley on March 19, 2013 | 4 Comments

Apple has just released iOS 6.1.3, an operating system update for iPhones and iPads that is said to fix a high profile flaw that could potentially allow someone to bypass your device's lock screen.

AT&T hacker "Weev" sentenced to 41 months in prison, after obtaining the email addresses of 100,000+ iPad users

by Lisa Vaas on March 19, 2013 | 5 Comments

Andrew Auernheimer has been sentenced for the federal crimes of obtaining the personal data of over 100,000 iPad owners from AT&T's publicly accessible website.

Besides his prison sentence, he's facing 3 years of probation and, together with another convicted hacker, paying restitution of $73,000.