security - page 11

Apple’s top lawyer is set to appear before the House Judiciary Committee today to discuss balancing Americans’ security and privacy, in light of the company’s ongoing battle with the FBI, which has demanded the company unlock the San Bernardino terrorist’s iPhone.

Apple gave us a glimpse of general counsel Bruce Sewell’s opening remarks yesterday. Apple’s lawyer will ask congressional representatives some tough questions on privacy, but we won’t know what the committee thinks until the hearing gets underway later this morning. A livestream of the event will be available on YouTube when the hearing starts at 10 a.m. Pacific.

You can watch it below:

Did your Mac’s Ethernet port mysteriously stop working recently? If so, you could have fallen afoul of a nasty bug that was introduced in a recent OS X security update. Here’s how to fix it.

Apple has officially asked a judge to dismiss a court order requiring the company to unlock a terrorist’s iPhone at the FBI’s request.

We knew the legal filing was coming, but now we have the actual defenses Apple is using to defend its refusal to create what it calls a “GovtOS” that would let officials potentially bypass the security measures of millions of iPhones. The 65-page document released today details Apple’s history of assistance in the case — and the reasons it believes the original order is both bothersome and possibly illegal.

The FBI’s demand that Apple build a backdoor into a terrorist’s iPhone has done the seemingly impossible by getting Microsoft, Google and Apple all on the same team.

Many of the country’s top tech firms have revealed that they will file friend-of-the court briefs in defense of Apple’s position that no company should be compelled by the government to break its own security and thus put the public safety of millions of users at risk.

The U.S. House Judiciary Committee announced both FBI director James Comey and Apple’s general counsel Bruce Sewell are testifying at a congressional hearing on encryption March 1. The saga is far from over, since both will state their cases on the matter of whether the government should have access to users’ iPhone data.

The congressional hearing ultimately revolves around a single question: how can the FBI efficiently do what’s necessary to combat threats without invading users’ privacy and potentially making iOS a more vulnerable operating system? Right now there are two polar opposite positions.

Apple fans rallied behind their privacy savior in more than 50 cities across the United States today to protest the FBI’s demands that Apple unlock the San Bernardino shooter’s iPhone and compromise the security of millions of users’ data in the process.

Grassroots protests broke out from Albuquerque to Washington, D.C., aiming to raise public awareness about the privacy battle Apple is fighting. The protesters had some harsh words for the FBI.

Tim Cook sparked an internet controversy when he penned his open letter to Apple customers about why the tech giant was pushing back against a court order to create an FBI-friendly version of its iOS software.

Find out more about Apple’s epic battle over iPhone encryption, along with how to unlock your iPhones secret emoticons, 10 hard drive space-saving tips, the best news and RSS apps for your iOS devices, and a bit about John McAfee’s bid to hack the iPhone for the FBI.

All that and much more in this week’s Cult of Mac Magazine. Here are the top stories this week.

The battle for phone encryption is hitting the streets, as iPhone owners are going to gather at the Apple Store in San Francisco tonight in a show of solidarity for the company’s refusal to budge on security.

The bulk of protests will occur next Tuesday, February 23, exactly one week after a court ordered the device maker to allow the FBI access to an iPhone 5c belonging to one of the San Bernardino shooters. But digital-rights group Fight for the Future is stepping up the timetable and hosting its first rally in less than an hour, at 5:00 p.m. PT.

Internet privacy activist and former NSA contractor Edward Snowden has come out in favor of Tim Cook’s decision to deny a federal court judge’s request that Apple help the FBI hack the San Bernardino terrorist’s iPhone 5c.

Snowden is calling Apple’s battle over security the most important tech case in a decade, and has called out Google for not coming to the public’s side on the issue. In a series of tweets expounding on the issues, Snowden said the FBI’s efforts to force Apple to give them a key bypasses citizen’s ability to defend their rights.

The case involving San Bernardino shooter Syed Rizwan Farook’s iPhone 5c and whether Apple should help unlock it has brought the company’s stance regarding strong encryption to the forefront.

Since this privacy-versus-security debate isn’t going away anytime soon, here’s what you need to know about it so far — and why it’s a much, much bigger issue than just one legal case.

In a court letter today, Apple is insisting that the legal system make up its mind on mobile encryption.

This is a bit of a surprise, and it’s hardly necessary anymore for the case at hand. The defendant has entered a guilty plea since the question of whether law enforcement could induce Apple to access encrypted information on its devices first arose. But in its two-page letter, Apple wants a decision anyway for “efficiency and judicial economy.”

It might also clear up a bunch of its own headaches.

Best List: CFH-V15 Video Monitor by Kodak

This new 350-degree pan and tilt home security camera from Kodak is the most amazing video monitor I’ve used, ever.

I’ve helped friends set up a few security cameras over the years, usually to keep an eye on their kids or pets, and the CFH-V15 blows all of them away with its ease of use, simple setup, and high-end video quality.

I sure wish I had one of these when my kids were young.

We all know Apple’s are much safer than Windows PCs at keeping out the malware, right?

Researcher Patrick Wardle has been trying to make sure of that for months now as he pokes holes in Apple’s current protection scheme, Gatekeeper.

In fact, he’s gotten past Apple’s latest patch to its software security system in literally five minutes.

BlackBerry CEO John Chen has waded in on the the question of whether or not Apple is right to refuse to help the government access smartphone data for security purposes.

“For years, government officials have pleaded to the technology industry for help,” Chen wrote in a recent blogpost. “Yet [the requests] have been met with disdain.”

Chen’s position is simple: that, “We are indeed in a dark place when companies put their reputations above the greater good.”

Security firms Symantec and FireEye say that 2016 is set to usher in an increase in the number of attacks on Apple systems — following a rise in the quantity of threats to Mac computers, and the more-than-doubling of iOS malware in 2015.

If you’re an Apple ID owner, you know that two-step verification is the best way to make sure that only you have access to your personal credit card details along with your app, music, and video purchases.

Until a couple of weeks ago, Amazon–another company that probably has private financial information from you–didn’t have a way to do the same thing. That way, even if someone figures out your password, they’ll only have half the info needed to make changes to or access your account.

Now that the Seattle-based books-and-everything-else company allows for it, it’s time to zip up your personal details. Here’s how.

While you may chat about state secrets while on your Mac at work, you might not want your chats to get out there or be archived. The answer is to use encryption so no one can intercept your messages and figure out you’re really angry at your boss.

The Tor Project aims to make anonymous, off-the-record chats simple with a new instant messenger app you can run on your Mac or Windows PC. Simply run the app (now in beta), log in to your preferred instant messaging service or services, and talk about whatever you want, secure in the knowledge that your chats are safe from your boss’ prying eyes.

The maker of Telegram, a popular messaging app, has had his creation blocked in Iran on the grounds that he refused to help authorities to spy on their own citizens.

Creator Pavel Durov said that Iran’s Ministry of Information and Communications Technology asked him to provide them with “spying and censorship tools” for the service. When he refused, Telegram was quickly given the boot.

Apple banned over 250 apps from the App Store that were using software to access users’ personal information. These apps managed to get through the App Store approval process with private APIs, which are against the rules. Apple took action shortly after news broke this morning that a security firm discovered these apps.

A security firm claims to have discovered 256 apps that illicitly gather user email addresses, lists of installed apps, serial numbers and other identifying information.

Apple may be obsessed with user privacy, but these apps — which violate App Store policy and have been downloaded by an estimated 1 million people — somehow got by Cupertino’s gatekeepers.

Apple’s Gatekeeper feature was designed to keep even the most advanced users from accidentally installing malicious software on their computers, but a super-simple exploit lets hackers sneak malware onto your Mac.

The exploit was discovered by Patrick Wardle, director of research at security firm Synack. Wardle found that the exploit is made possible thanks to a key design shortcoming in Gatekeeper that lets an attacker use a binary file already trusted by Apple to execute malicious files.

Here’s how it works:

Logitech wants to help keep your home safe — and push devices like the Nest Cam out of it.

Its new Circle smart camera, which is being launched under the new Logi brand, delivers real-time HD video that lets you monitor your home remotely from an Android or iOS device.

The App Store suffered its worst security breach in history over the weekend, when it was discovered that hundreds of Chinese apps have a malicious program dubbed ‘XcodeGhost’ embedded in their software.

The huge security lapse made its way into legitimate apps thanks to Chinese developers who used a counterfeit version of Apple’s Xcode software that was uploaded to file sharing service Baidu. By using XcodeGhost to compile their apps, developers accidentally allowed the malicious code to be distributed through the App Store.

Apple has pulled infected apps off the store to stop stop the spread, but users still need to delete XcodeGhost apps off their devices manually. Most of the apps infected are mostly used in China, however some big name apps like WeChat, Angry Birds 2, and Didi Chuxing (Uber’s biggest rival in China) were also hit.

Here’s a full list of infected apps:

Hackers have just given iPhone and iPad users a big reason to upgrade to iOS 9 due out later today: it fixes a serious AirDrop security vulnerability.

Mark Dowd, an Australian security researcher with Azimuth Security, revealed this morning that iOS 8.4.1 contains a critic security flaw in AirDrop that could allow an attacker to install malware on any device within range. Worst of all, even if a victim tried to reject the incoming AirDrop file, the bug lets attackers tweak the iOS settings so the exploit will still work.

Check out the lethal bug in action:

We’ve all been using a passcode to secure our iPhones and iPads since forever, right? You’ve had the option to use an alphanumeric passcode since iOS 7, but if you chose to use a simple numeric code, you were limited to four digits.

Not anymore! Apple added the ability to use a six-digit passcode in iOS 9, and this quick settings tweak will make your iPhone or iPad far more secure.