Apple takes steps to avoid a repeat of XcodeGhost debacle


Double-check that you're using the right version of Xcode to build apps.
Apple will provide Chinese users with a local official version of Xcode to download.
Photo: Johan Larrson/Flickr

Apple is taking steps to avoid a repeat of this week’s serious XcodeGhost incident — in which hundreds of App Store apps were discovered to include malware in the form of a counterfeit version of Xcode, the platform used by developers to build their apps.

A great reason not to jailbreak your iPhone


More and more jailbreak software, such as Pangu, has come from China.
Screenshot: John Brownlee/Cult of Mac

If you enjoy customizing your iPhone, jailbreaking can be a positive thing — although that doesn’t mean it comes without risks.

According to a new report, around 225,000 Apple accounts have been stolen by malware on jailbroken iPhones, in what is claimed to be “one of the largest known thefts of its kind.” In some cases, this data was then used to make unauthorized purchases.


Some iPhone jailbreakers are in for a nasty surprise


Photo: Jim Merithew/Cult of Mac

More than a quarter-million Apple users from 18 different countries had accounts stolen after they made themselves vulnerable by jailbreaking their devices, researchers announced today.

The theft represents the largest known theft of Apple accounts caused by malware, according to Palo Alto Networks, adding further caution to Apple users to avoid installing programs not meant for iPhones and iPads.

Are Android security scares really as bad as they seem?


It's that time of the week again!
It's that time of the week again!
Photo: Ste Smith/Cult of Mac

After the discovery of several dangerous flaws in a few short weeks, Android’s security — or lack thereof — has been big news. Google has acted quickly to eliminate the Stagefright flaw that left 95% of Android devices vulnerable to attack, but others have since wormed their way out of the woodwork.

Friday-Night-Fights-bug-2Now fans are asking how these flaws made their way into public Android releases, compromising the security of more than 1 billion users worldwide. Could Google be doing more to prevent it? And are its hardware partners doing all they can to patch holes in their own software?

Join us in this week’s Friday Night Fight between Cult of Android and Cult of Mac as we fight it out over these questions and more!