Apple
iPhone users who frequently use the AirDrop feature to share images, videos, or other files may unwittingly be broadcasting their phone numbers to people nearby. According to a recent Ars Technica report, a hacker would need to have a laptop and a “wireless packet sniffer” dongle to exploit the vulnerability. Armed with those components, a security researcher testing the proof-of-concept software designed to exploit the vulnerability was able to see “details of more than a dozen iPhones and Apple Watches that were within radio range” and use this information to …
August 24, 2019 •
3 min read
Apple
This week on the Checklist podcast, we’ll talk about how to deal with security risks that come from those closest to you (literally). We’ll take you through some bad iOS news from the past week, and also discuss how it relates to a larger issue related to mobile security. And finally, we revisit a familiar topic—passwords—and tell you about some newly released Google research that probably means we’ll have to keep talking about passwords for the foreseeable future. Here’s our weekly Checklist:
Protecting your data from the people – literally – …
August 22, 2019 •
12 min read
Apple
At this year’s Worldwide Developers Conference, Apple announced several forthcoming changes aimed at improving privacy and security for its users. Perhaps the most important of these was “Sign in with Apple”, slated for widespread release later this year.
In this post, we’ll talk about what Sign in with Apple is, why it matters…and whether or not it’s all it’s cracked up to be.
What is Sign in with Apple?
Many apps ask users to sign-in with a social media account, ostensibly in order to offer a more personalized experience. You’ve probably seen or …
August 14, 2019 •
4 min read
Apple
The 22nd annual Black Hat USA conference was held this week in Las Vegas. Black Hat is one of the most important events in cybersecurity, bringing together researchers, developers, and hackers from all over the world for a week of training sessions and briefings. As such, it’s often the stage for major announcements affecting security professionals as well as the general public.
This year’s Black Hat did not disappoint, and featured significant new developments that will interest both macOS and iOS users.
Read on for our roundup of Black Hat 2019…
The macOS …
August 9, 2019 •
4 min read
Apple
Bluetooth is one of the most common wireless protocols in the world, allowing a vast range of devices to connect together for shared functionality. From playing music in your car to controlling the temperature of your flatiron, Bluetooth enables us to do many things — and as a result, Bluetooth protocols are standard on iPhones, in MacBooks, and in many other products, too. According to a new study published by researchers from Boston University, though, almost all those devices currently contain a Bluetooth flaw that can erase a user’s privacy.
Bluetooth’s …
August 2, 2019 •
3 min read
Apple
In response to the discovery of a new critical bug in one of Apple’s own apps, the company has disabled some functionality in Apple Watches to protect users.
The issue lies with the Walkie-Talkie app, a default app on the Apple Watch designed to let users connect with one of their friends directly for “push to talk” chatting. Once a staple feature on older cell phones, Apple included Walkie-Talkie as a fun addition — yet it seems to have come with a not so fun side-effect of its own. Details are …
July 12, 2019 •
2 min read
Apple
Security researcher Jonathan Leitschuh has discovered a major vulnerability in the popular Zoom video conferencing app that could allow malicious actors to turn on your Mac’s camera without your permission.
July 10, 2019 •
4 min read
Apple
Security researchers at Intego have discovered a new form of Mac malware—one that shows some surprisingly sneaky behaviour aimed at evading detection by antivirus software and human malware hunters alike.
July 8, 2019 •
4 min read
Apple
Among the most fundamental security features on Macs, Gatekeeper is near the top of the list. A first line of defense against malicious software, Gatekeeper’s job is to verify code signatures, which ensures that the software you’re running is genuine and hasn’t been tampered with by outside forces. Gatekeeper also helps to keep unauthorized software from running without your permission and provides help to users through warning messages letting you know when something might not be safe. Recently, though, a security researcher named Filippo Cavallarin unveiled a flaw in Gatekeeper …
July 3, 2019 •
3 min read
Apple
Do you rely on an Apple AirPort for your home Wi-Fi needs, or an AirPort Time Capsule to keep your Mac always backed up? If so, you’ll want to make sure you’ve updated your device to the latest version. On May 30th, Apple released a substantial firmware update for these devices, comprised of several high-priority security fixes. Upgrading will ensure your network remains secure while allowing you to continue enjoying the devices with plenty of peace of mind.
The new software version, 7.9.1, includes eight security fixes in total. Of these, …
June 10, 2019 •
2 min read
Apple
On Monday morning, Apple’s 2019 Worldwide Developers Conference kicked off in San Jose. As is tradition, WWDC began with a keynote presentation from Apple highlighting long-awaited updates, important announcements, and a vision of the road ahead.
Here’s our roundup of the biggest news from the keynote, along with a few comments on what this means for Mac security as well.
macOS
As expected, macOS 10.15 is here. Named “Catalina”, the newest version of macOS features a few important changes and a bittersweet farewell.
Goodbye iTunes
Maybe the biggest news—and something that’s been a long time …
June 4, 2019 •
8 min read
Apple
Following on the heels of Apple’s most recent raft of updates, which included macOS Mojave 10.14.5, the company has released another smaller update targeting specific MacBook Pro users. Apple suggests that all macOS users download and install the new supplemental update in order to take advantage of the latest security protections.
What’s in this latest update? The details aren’t quite clear; after nearly a week since the patch was released, Apple has not updated its online security page with any details. Instead, the company merely said that the update corrects “firmware …
May 31, 2019 •
2 min read