Apple Safari

(get it in RSS or Atom)

TLS certificate blunder revisited - whither China Internet Network Information Center?

cnnic-250

Just under three weeks ago, we wrote about a TLS certificate blunder by a Root Certificate Authority called CNNIC.

We thought we'd revisit that story today to see how the Big Four browser makers responded to the lapse...

What a lot of patches! 60 Sec Security [VIDEO]

Watch the latest episode of our weekly fun-but-serious security news video.

It only takes a minute!

Apple fixes loads of security holes in OS X, iOS, Apple TV, Safari

OS X gets a brand new photo application called, er, Photos, but the security fixes are the real reason you want these updates.

Monday review - the hot 22 stories of the week

Here are last week's stories in one convenient place so you can catch up on what you missed!

Safari users win right to sue Google over secret cookies

UK Safari users win right to sue Google over secretly leaving cookies

The landmark case could determine if Google can be held accountable in the UK. Safari users have formed a group to seek damages.

"Probably tired and shagged out after a long squawk" - 60 Sec Security [VIDEO]

\

Our weekly witty-but-serious video - news you can use, and it only takes a minute.

Enjoy...

SSCC 191 - Live in Ljubljana [PODCAST]

Chester is on the road again, this time to present at a conference in Slovenia.

So this episode of the Chet Chat comes to you from an al fresco café in downtown Ljubljana...

"Pwn2Own" competition pops Flash, Reader and four browsers, pays out over $550K [POLL]

Pwn2Own has become something of an institution on the North American computer security conference circuit.

Come and vote in our poll to tell us what you think of security contests like this...

Anatomy of a browser dilemma - how HSTS 'supercookies' make you choose between privacy or security

biscuit-250

HTTP Strict Transport Security (HSTS) is supposed to keep you more secure online, but it could be used to track you against your will.

Mark Stockley explains...

SSCC 183 - It's Data Privacy Day! Do something! [PODCAST]

From Apple's latest OS X and iOS updates to Data Privacy Day - listen, learn and enjoy!

SSCC 180 - Surely zero-days come from cybercrooks, not from Silicon Valley? [PODCAST]

Enjoy the first 2015 episode of our popular weekly security podcast.

In this episode: zero-day politics, leaky security features, Bitcoin news, and a shout out to our New Year #sophospuzzle winners!

How to clear out cookies, Flash cookies and local storage

5 minute fix: how to clear out cookies, Flash cookies and local storage

This quick fix will show you how to clear out cookies and the cookie-like things that can be used to track you online.

SSCC 170 - Is the best time to shop at a store right after it has a breach? [PODCAST]

Here's the latest episode of our weekly security podcast.

Join Sophos experts Chester Wisniewski, John Shier and Paul Ducklin as they turn news into advice...

Apple kills the POODLE – also fixes Shellshock in case you forgot

poosdle-osx-250

Apple just shipped OS X 10.10 Yosemite - including a fix for the POODLE vulnerability.

Mavericks and Mountain Lion also got updates to kill the POODLE.

As for Lion, now three releases off the pace...bad news.

SSCC 166 - A sleeping bag and a camping stove to queue for an iPhone? [PODCAST]

For your listening pleasure!

Here's the latest episode in our weekly podcast series...

DuckDuckGoAway: China blocks privacy-oriented search engine

DuckDuckGo

Getting selected as the default private search engine for Apple's Safari browser has been a boon for young search engine DuckDuckGo. But it may well have tainted the search engine in the eyes of the Apple-leery Chinese government.

Apple ships a sevenfold security surprise, including iOS 8 and OS X 10.9.5

apple-upd-250

Apple doesn't have Patch Tuesdays, but it does have Update Surprisedays.

We just had one of them, with brand new and more secure versions of iOS, OS X and Safari.

Why is Google sending insecure browsers back in time?

Why is Google sending insecure browsers back in time?

Google's search page has seemingly gone back in time - but only for users stuck in the last decade. If you're using an internet antique, take Google's hint and upgrade now.

Apple, please provide better protection for iCloud - Secure our Selfies!

iCloud

In the wake of exposed candid celebrity photos Apple recommends using two-step verification. Would this have made a difference? Should Apple strengthen its authentication options?

Apple developer guidelines lead to rogue phone call risks in iOS

ios-call-250

It turns out to be surprisingly easy to trick unsuspecting users into making unwanted phone calls from iOS.

That could cost you premium-rate money, or give away your number to a scammer...