Apple is one of a larger number of big companies that has been inadvertently leaking sensitive data through Box, the cloud storage service.
Security researchers found that staff were exposing data by sharing public links to files and documents that can be easily discovered. It’s thought more than 90 companies, including Box itself, are affected.
Google’s Project Zero team has discovered a “high severity” flaw in the macOS kernel.
The issue, which potentially allows attackers to perform malicious actions on a mounted filesystem, was reported to Apple more than 90 days ago. No fix has been made available yet, but Apple has acknowledged the issue and is working with Project Zero on a patch.
A security researcher has decided to provide Apple with details — and a patch — for a serious Keychain flaw in macOS Mojave that allows anyone to access your saved usernames and passwords.
Linus Henze previously withheld the information in protest of Apple’s decision not to offer a macOS bug bounty program. He now believes the problem is too serious for the company to ignore.
What’s the very first app you should download onto a brand new iPhone?
The first app you get should be Dashlane, a rock-solid, easy-to-use password manager that is Cult of Mac’s official security app.
When you start from scratch, you face a big problem — passwords! Dashlane solves that.
Apple’s fix for the huge FaceTime flaw that allowed people to eavesdrop on other iPhone and iPad users is finally here.
iOS 12.1.4 was released to the public this morning, bringing a crucial fix for the bug found by a 14-year-old boy who tried to contact Apple for 10 days before the company eventually clued in on the huge flaw.
Facebook CEO Mark Zuckerberg has confirmed plans to merge WhatsApp, Instagram, and Facebook Messenger — but says it probably won’t happen until 2020 at the earliest.
In a fourth-quarter earnings call this week, Zuckerberg also explained the reasons behind the plan, such as increased security with end-to-end encryption. Many questions still remain unanswered, however.
You know the Apple FaceTime bug that everyone’s going crazy about? It’s a huge screwup, for sure, but at least we know it’s just a bug. Being able to call someone and eavesdrop on their conversations without them knowing is clearly a privacy nightmare, which is why Apple disabled Group FaceTime until it can issue a proper fix.
Amazon, on the other hand, offers silent eavesdropping as a feature for its Echo speakers. It’s called Drop In, and if you’ve enabled it, you should probably turn it off.
Apple was made aware of a serious flaw in FaceTime over a week ago and ignored it, one user claims.
The bug, which allows callers to see and hear you before you’ve answered a Group FaceTime call, has forced Apple to disable the feature this week. But why wasn’t it recognized earlier?
Whenever you click a link in a Google search, it replaces the URL of the site with a tracking URL. If you hover over a link with your mouse before you click it, Safari will show you the full URL of that link. It’s a great way to check where you’re about to get sent. Google plays along with this, showing you the proper URL for the link in question.
Only when you actually click on it, it swaps out that link, replacing it with its own tracking link.
Fortunately, there’s a way to block this sneaky, underhanded and totally unsurprising behavior.
You know how iOS’ accessibility features often prove handy for all users? Like Live Listen, which lets you turn your AirPods into remote listening devices? Or a combo of settings that resurrects an iPhone with a broken screen?
The same is true for Screen Time. This feature tracks how long you spend using apps every day, and can help you limit that time. But you can also use Screen Time to password-protect any app on your iPhone or iPad.
