ESET Cyber Security Pro fortifies your Mac’s built-in defenses, protecting against Mac and Windows-based threats, hackers and other attacks all while shielding your kids from inappropriate web content.
On February 21st, Apple released iOS 7.0.6, a small software update that provided “a fix for SSL connection verification.” The same SSL fix was also released for older iOS 6 devices and the Apple TV. Apple pushes out smaller bug fixes from time to time, so at first glance 7.0.6 seemed like a pretty normal update.
But in reality, Apple patched a major security flaw that has potentially compromised millions of peoples’ data for years. Nicknamed “gotofail,” the bug has been flying under the radar for quite some time, and it still hasn’t been patched in OS X.
The security expert quoted in the piece, Kyle Wilhoit, has just written a blog post that calls out the report, essentially saying that the hacks shown in the video can happen anywhere, and require some risky user behavior to even happen.
That’s a long way from “if [tourists] fire up their phones at baggage claim, it’s probably too late to save the integrity of their electronics,” as Brian Williams claims in the clip above.
To be honest, you could probably leave your new Mac Pro on the floor next to your desk and any office burglars would just mistake it for a rather small trash can. But if you want a little more security, you might consider adding something Apple didn’t provide for: a Kensington-style lock. A new security bracket from MacLocks features a design as clever as that of the computer it protects.
Last week, a speech recognition developer found a potential exploit in the Chrome web browser that could possibly let malicious web sites activate your Mac’s microphone and listen in on any sounds your mic might pick up around you. Even if you’re not actively using your computer, the mic could be active and conversations, meetings, and phone calls could potentially be recorded or listened in on.
Luckily, there’s a way to keep this from happening, because–however remote the possibility–it’s always a good idea to keep your private information, including real-world conversations, private.
Of course, if you don’t use the Chrome browser at all, this won’t apply to you.
In this era of heightened security fears, when headlines routinely shout about hackers stealing millions of personal records in a single digital heist on some of the nation’s biggest companies, you should never be handing your Apple ID and password over to anyone who isn’t Apple. Yet that’s just the permission that the new Sunrise calendaring app asks when you first load it up, and not only is there no rule against apps doing so in Apple’s internal guidelines, but Cupertino’s actually awarded Sunrise with a coveted spot in the “Featured” section of the App Store.
Java is kind of a pain in the butt, if you ask me, but there are many sites that use it.
A friend of mine contacted me this weekend looking for help in getting her Java up and running so she could upload photos to her photography business website. See, she’d upgraded to Java 7 and when she went to use the upload function on her website, she got the security warnings above.
After a bunch of googling and messing about on the internets, we figured it out.
Following yesterday’s report that the official iOS Starbucks app was storing users’ credentials, passwords and GPS location in plain text — a big security no-no — the Seattle coffee maker has quickly pushed an update that seemingly resolves the issue. Or does it?
If you’re particularly concerned about the security of your passwords, you might want to stay away from Starbucks’ official iOS app: the Seattle-based coffee maker has just confirmed that passwords, credentials and location in the company’s app are stored in plain text, and are not hashed or encrypted at all.
When you browse the web with mobile Safari, you’ll come across sites that ask you to create a login, and that usually requires a password.
You can save your passwords in mobile Safari automatically, but there are some sites that request passwords not be saved. There’s a workaround, though, if you feel like you should be able to save whatever passwords you darn well please, and it’s buried in the Settings app.