Apple, Mac, iOS4,...
Follow
Find tag "iOS"
9.0K views | +7 today
Apple, Mac, iOS4, iPad, iPhone and (in)security...
Everything related to the (in)security of Apple products
Curated by Gust MEES
Your new post is loading...
Your new post is loading...
Rescooped by Gust MEES from 21st Century Learning and Teaching
Scoop.it!

How to crash any iPhone or iPad within WiFi range | Apple | Nobody Is Perfect | NO iOS Zone

How to crash any iPhone or iPad within WiFi range | Apple | Nobody Is Perfect | NO iOS Zone | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

"No iOS Zone" denial-of-service vulnerability could lead to your iPhone or iPad constantly crashing.


The researchers say that they first informed Apple of the problem in early October 2014, and that iOS 8.3 appears to resolve some of the issues they uncovered.


Chances are that this won’t be the last time that a serious denial of service flaw is found in iOS. Just last month, Apple released iOS 8.2 which fixed a flaw that allowed hackers to restart iPhones by sending them a maliciously-crafted Flash SMS.


More details of the “No iOS Zone” flaw can be found in the slide deck of the presentation given at the RSA conference.


Gust MEES's insight:

No iOS Zone" denial-of-service vulnerability could lead to your iPhone or iPad constantly crashing.


The researchers say that they first informed Apple of the problem in early October 2014, and that iOS 8.3 appears to resolve some of the issues they uncovered.


Chances are that this won’t be the last time that a serious denial of service flaw is found in iOS. Just last month, Apple released iOS 8.2 which fixed a flaw that allowed hackers to restart iPhones by sending them a maliciously-crafted Flash SMS.


More details of the “No iOS Zone” flaw can be found in the slide deck of the presentation given at the RSA conference.


more...
Gust MEES's curator insight, April 27, 12:51 PM

No iOS Zone" denial-of-service vulnerability could lead to your iPhone or iPad constantly crashing.


The researchers say that they first informed Apple of the problem in early October 2014, and that iOS 8.3 appears to resolve some of the issues they uncovered.


Chances are that this won’t be the last time that a serious denial of service flaw is found in iOS. Just last month, Apple released iOS 8.2 which fixed a flaw that allowed hackers to restart iPhones by sending them a maliciously-crafted Flash SMS.


More details of the “No iOS Zone” flaw can be found in the slide deck of the presentation given at the RSA conference.


Scooped by Gust MEES
Scoop.it!

Critical HTTPS bug may open 25,000 iOS apps to eavesdropping attacks | CyberSecurity

Critical HTTPS bug may open 25,000 iOS apps to eavesdropping attacks | CyberSecurity | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

At least 25,000 iOS apps available in Apple's App Store contain a critical vulnerability that may completely cripple HTTPS protections designed to prevent man-in-the-middle attacks that steal or modify sensitive data, security researchers warned.

1,500 IOS APPS HAVE HTTPS-CRIPPLING BUG. IS ONE OF THEM ON YOUR DEVICE?
Apps downloaded two million times are vulnerable to trivial man-in-the-middle attacks.


As was the case with a separate HTTPS vulnerability reported earlier this week that affected 1,500 iOS apps, the bug resides in AFNetworking, an open-source code library that allows developers to drop networking capabilities into their iOS and OS X apps. Any app that uses a version of AFNetworking prior to the just-released 2.5.3 may expose data that's trivial for hackers to monitor or modify, even when it's protected by the secure sockets layer (SSL) protocol. The vulnerability can be exploited by using any valid SSL certificate for any domain name, as long as the digital credential was issued by a browser-trusted certificate authority (CA).

Gust MEES's insight:

At least 25,000 iOS apps available in Apple's App Store contain a critical vulnerability that may completely cripple HTTPS protections designed to prevent man-in-the-middle attacks that steal or modify sensitive data, security researchers warned.

1,500 IOS APPS HAVE HTTPS-CRIPPLING BUG. IS ONE OF THEM ON YOUR DEVICE?
Apps downloaded two million times are vulnerable to trivial man-in-the-middle attacks.


As was the case with a separate HTTPS vulnerability reported earlier this week that affected 1,500 iOS apps, the bug resides in AFNetworking, an open-source code library that allows developers to drop networking capabilities into their iOS and OS X apps. Any app that uses a version of AFNetworking prior to the just-released 2.5.3 may expose data that's trivial for hackers to monitor or modify, even when it's protected by the secure sockets layer (SSL) protocol. The vulnerability can be exploited by using any valid SSL certificate for any domain name, as long as the digital credential was issued by a browser-trusted certificate authority (CA).

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Five months on and iOS 8 is still riddled with show-stopping bugs

Five months on and iOS 8 is still riddled with show-stopping bugs | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Five months on from the release of iOS 8, and following six rounds of bugfixes, Apple's flagship mobile platform that powers almost three out of four iPhone and iPads is still riddled with bugs.


I'm just going to come out and say it - this is a mess. If we were talking about cosmetic stuff like a badly laid out user interface or poor selection of wallpapers then I could overlook the issues, but they aren't. These are bugs relating to core systems such as Wi-Fi, cellular connectivity, Bluetooth, and stability and performance.

These are show-stopping bugs. These are bugs that quite frankly should have been sorted before iOS 8 was released, and definitely should have been pinned down after the first couple of updates.

But they aren't.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:

Five months on from the release of iOS 8, and following six rounds of bugfixes, Apple's flagship mobile platform that powers almost three out of four iPhone and iPads is still riddled with bugs.


I'm just going to come out and say it - this is a mess. If we were talking about cosmetic stuff like a badly laid out user interface or poor selection of wallpapers then I could overlook the issues, but they aren't. These are bugs relating to core systems such as Wi-Fi, cellular connectivity, Bluetooth, and stability and performance.

These are show-stopping bugs. These are bugs that quite frankly should have been sorted before iOS 8 was released, and definitely should have been pinned down after the first couple of updates.

But they aren't.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Pawn Storm: Trend Micro warnt vor Spionage-Apps für iOS | CyberSecurity | Mobile Security

Pawn Storm: Trend Micro warnt vor Spionage-Apps für iOS | CyberSecurity | Mobile Security | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Die Malware gefährdet auch Geräte ohne Jailbreak. Die Anwendungen sind in der Lage, Gespräche abzuhören und persönliche Informationen zu sammeln.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:
Die Malware gefährdet auch Geräte ohne Jailbreak. Die Anwendungen sind in der Lage, Gespräche abzuhören und persönliche Informationen zu sammeln.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

iOS tombe et Windows Phone résiste lors d’une compétition de hackers

iOS tombe et Windows Phone résiste lors d’une compétition de hackers | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
L’iPhone 5S a été mis à mal par une équipe de Corée du Sud, qui a réussi à profiter d'une combinaison de deux bugs dans Safari pour en prendre le contrôle. Le Samsung Galaxy S5 non plus n'a pas réisté aux assauts des hackers. Deux équipes ont profité de failles dans la gestion du protocole NFC pour en prendre le contrôle. le Nexus 5 a lui aussi été piraté via NFC, grâce à une technique étonnante, qui a consisté à forcer un appairage Bluetooth entre deux appareils.
Gust MEES's insight:
L’iPhone 5S a été mis à mal par une équipe de Corée du Sud, qui a réussi à profiter d'une combinaison de deux bugs dans Safari pour en prendre le contrôle. Le Samsung Galaxy S5 non plus n'a pas réisté aux assauts des hackers. Deux équipes ont profité de failles dans la gestion du protocole NFC pour en prendre le contrôle. le Nexus 5 a lui aussi été piraté via NFC, grâce à une technique étonnante, qui a consisté à forcer un appairage Bluetooth entre deux appareils.


more...
Gust MEES's curator insight, November 15, 2014 3:58 AM

L’iPhone 5S a été mis à mal par une équipe de Corée du Sud, qui a réussi à profiter d'une combinaison de deux bugs dans Safari pour en prendre le contrôle. Le Samsung Galaxy S5 non plus n'a pas réisté aux assauts des hackers. Deux équipes ont profité de failles dans la gestion du protocole NFC pour en prendre le contrôle. le Nexus 5 a lui aussi été piraté via NFC, grâce à une technique étonnante, qui a consisté à forcer un appairage Bluetooth entre deux appareils.

Scooped by Gust MEES
Scoop.it!

Wirelurker:Trojaner infiziert iPhones und iPads über USB-Verbindung

Wirelurker:Trojaner infiziert iPhones und iPads über USB-Verbindung | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Originalmeldung: Der Trojaner Wirelurker hat wohl bereits viele iPhones und iPads angegriffen: Sicherheitsforscher der Firma Palo Alto Networks haben eine iOS-Malware namens Wirelurker entdeckt, die sich über eine App verbreitet und schon hunderttausende User infiziert haben könnten.

Seinen Ursprung hat der Trojaner wohl in China, die Entdecker berichten, dass anfangs über 400 Apps im Maiyadi App Store, einem alternativen Appstore für OS X, infiziert wurden. Diese Anwendungen greifen dann die iPhones und iPads der Opfer an. Da die betroffenen Apps bislang über 350.000 Mal heruntergeladen wurden, ist die Zahl der theoretisch infizierten Apple-Geräte entsprechend groß.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security?q=wirelurker



Gust MEES's insight:

Originalmeldung: Der Trojaner Wirelurker hat wohl bereits viele iPhones und iPads angegriffen: Sicherheitsforscher der Firma Palo Alto Networks haben eine iOS-Malware namens Wirelurker entdeckt, die sich über eine App verbreitet und schon hunderttausende User infiziert haben könnten.

Seinen Ursprung hat der Trojaner wohl in China, die Entdecker berichten, dass anfangs über 400 Apps im Maiyadi App Store, einem alternativen Appstore für OS X, infiziert wurden. Diese Anwendungen greifen dann die iPhones und iPads der Opfer an. Da die betroffenen Apps bislang über 350.000 Mal heruntergeladen wurden, ist die Zahl der theoretisch infizierten Apple-Geräte entsprechend groß.

Learn more:

- http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


- http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security?q=wirelurker


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Un nouveau malware cible les systèmes OS X et iOS | Cyber Security

Un nouveau malware cible les systèmes OS X et iOS | Cyber Security | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Des chercheurs en sécurité affirment avoir découvert une nouvelle famille de malwares, lesquels peuvent mettre à mal les appareils d'Apple.
[S5091662W200]]


Afin d'éviter toute propagation de virus ou chevaux de Troie, Apple contrôle très strictement ses systèmes d'exploitation et plus précisément les applications publiées au sein de leurs plateformes de téléchargement respectives. Toutefois le cabinet Palo Alto Networks affirme avoir repéré une nouvelle attaque.

Baptisé WireLurker, le malware en question a été inséré au sein de 467 applications spécialement conçues pour OS X et disponibles sur le répertoire de téléchargements chinois Maiydi App Store, une alternative au Mac App Store officiel. Sur ces six derniers mois, ces 467 applications ont comptabilisé 356 104 téléchargements ; elles ont donc affecté plusieurs centaines de milliers de machines;


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security?q=wirelurker



Gust MEES's insight:

Des chercheurs en sécurité affirment avoir découvert une nouvelle famille de malwares, lesquels peuvent mettre à mal les appareils d'Apple.
[S5091662W200]]


Afin d'éviter toute propagation de virus ou chevaux de Troie, Apple contrôle très strictement ses systèmes d'exploitation et plus précisément les applications publiées au sein de leurs plateformes de téléchargement respectives. Toutefois le cabinet Palo Alto Networks affirme avoir repéré une nouvelle attaque.

Baptisé WireLurker, le malware en question a été inséré au sein de 467 applications spécialement conçues pour OS X et disponibles sur le répertoire de téléchargements chinois Maiydi App Store, une alternative au Mac App Store officiel. Sur ces six derniers mois, ces 467 applications ont comptabilisé 356 104 téléchargements ; elles ont donc affecté plusieurs centaines de milliers de machines;


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security?q=wirelurker


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple corrige des vulnérabilités critiques dans iOS et OS X

Apple corrige des vulnérabilités critiques dans iOS et OS X | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

La firme à la pomme a annoncé plusieurs mises à jour pour iOS et Mac OS X corrigeant 44 vulnérabilités dont 30 critiques pour le premier, et 19 vulnérabilités dont 11 critiques pour le second. Des patchs de sécurité pour Safari sont également au programme.


Gust MEES's insight:

La firme à la pomme a annoncé plusieurs mises à jour pour iOS et Mac OS X corrigeant 44 vulnérabilités dont 30 critiques pour le premier, et 19 vulnérabilités dont 11 critiques pour le second. Des patchs de sécurité pour Safari sont également au programme.


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Failles dans Safari : Apple a laissé iOS exposé après avoir patché Mac OS - Le Monde Informatique

Failles dans Safari : Apple a laissé iOS exposé après avoir patché Mac OS - Le Monde Informatique | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Les utilisateurs d'iOS sont restés exposés pendant trois semaines à des problèmes de sécurité connus, précédemment patchés dans Safari pour Mac OS X, selon une ancienne collaboratrice d'Apple.


En savoir plus :


Gust MEES's insight:

Les utilisateurs d'iOS sont restés exposés pendant trois semaines à des problèmes de sécurité connus, précédemment patchés dans Safari pour Mac OS X, selon une ancienne collaboratrice d'Apple.


En savoir plus :


.


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple security update fixes iOS vulnerability

Apple security update fixes iOS vulnerability | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
The tech giant fixes a security problem in iOS that affected encrypted connections. Apple on Friday released the latest update of its mobile operating system. It's of note because it fixes an SSL connection issue, an important encryption vulnerability.




SSL, or Secure Sockets Layer, is one of the most basic forms of encrypting Internet traffic. Without it, almost anybody can see what you're doing online. According to Apple's fulldescription of the update, the software previously had problems validating the authenticity of the connection, and the software fix restores steps that were missing in the validation process.


Gust MEES's insight:


Learn more:


 - http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple releases iOS 7.0.2 - swiftly squashing two lockscreen bugs

Apple releases iOS 7.0.2 - swiftly squashing two lockscreen bugs | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple has quickly fixed two lockscreen bugs that it introduced with iOS 7.

Well done, Cupertino!

(To all hardcore Apple fans reading this: that's not irony. I really mean it.)
Gust MEES's insight:

 

Learn more: 

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
Shafali Anand's comment, September 27, 2013 9:31 PM
Glad they did. I've been worrying myself sick about the ugh-ly buttons...people say they grow on you...perhaps they do...like warts. You've got to live with you've got.
Scooped by Gust MEES
Scoop.it!

Security flaws found in Apple's iOS7

Security flaws found in Apple's iOS7 | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Two security vulnerabilities have been discovered in Apple's new mobile operating system, less than 24 hours after launch.
Gust MEES's insight:

 

In iOS7 this can be done even when the phone is locked with a passcode, as the voice-activated assistant Siri can be instructed to carry out the task.

 

The other flaw is potentially even more serious - allowing users' email and social networking accounts to be hijacked even when the user has locked and password-protected their phone.

 

Learn more:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

 

more...
Gust MEES's curator insight, September 20, 2013 10:00 AM

 

In iOS7 this can be done even when the phone is locked with a passcode, as the voice-activated assistant Siri can be instructed to carry out the task.

 

The other flaw is potentially even more serious - allowing users' email and social networking accounts to be hijacked even when the user has locked and password-protected their phone.

 

Learn more:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

 

Scooped by Gust MEES
Scoop.it!

iOS 7 lock screen bypass flaw discovered, and how to fix it

iOS 7 lock screen bypass flaw discovered, and how to fix it | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
UPDATED: The iOS 7 lock screen can be bypassed with a series of gesture techniques, despite the passcode. While apps are blurred out, a major Camera app bug exists, which can allow photos to be edited, deleted, and shared with others.
Gust MEES's insight:

 

Learn more:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Thousands of iOS apps left open to snooping thanks to SSL bug | CyberSecurity | Apple

Thousands of iOS apps left open to snooping thanks to SSL bug | CyberSecurity | Apple | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

CyberSecurity Researchers have uncovered around 25,000 iOS apps that use old versions of a popular networking library, leaving them open to attackers on the same network viewing encrypted traffic.

The bug affects Secure Sockets Layer (SSL) code in AFNetworking, a networking library developers can use to build components of iOS apps. The framework has been updated three times in the past six weeks, addressing numerous SSL flaws that leave apps vulnerable to man-in-the-middle attacks.

Gust MEES's insight:

CyberSecurity Researchers have uncovered around 25,000 iOS apps that use old versions of a popular networking library, leaving them open to attackers on the same network viewing encrypted traffic.

The bug affects Secure Sockets Layer (SSL) code in AFNetworking, a networking library developers can use to build components of iOS apps. The framework has been updated three times in the past six weeks, addressing numerous SSL flaws that leave apps vulnerable to man-in-the-middle attacks.


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Bombe in iOS und OS X: Darwin Nuke entdeckt - jetzt System updaten! | UPDATE asap!!! | Apple

Bombe in iOS und OS X: Darwin Nuke entdeckt - jetzt System updaten! | UPDATE asap!!! | Apple | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Wer die jüngsten Updates für iOS und OS X noch nicht installiert hat, sollte das schnellstens tun. Denn in den Betriebssystemen von Apple verbirgt sich eine Sicherheitslücke, über die Angreifer jedes Apple-Gerät zum Absturz bringen können.
Gust MEES's insight:

Wer die jüngsten Updates für iOS und OS X noch nicht installiert hat, sollte das schnellstens tun. Denn in den Betriebssystemen von Apple verbirgt sich eine Sicherheitslücke, über die Angreifer jedes Apple-Gerät zum Absturz bringen können.


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Gefährlicher iOS-Trojaner in Umlauf: Kein iPhone & iPad ist sicher

Gefährlicher iOS-Trojaner in Umlauf: Kein iPhone & iPad ist sicher | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Kurz nachdem bekannt wurde, dass über Googles Play Store millionenfach Adware-Tools heruntergeladen wurden, erwischt es Apple-Nutzer: Sicherheitsforscher haben Spionagetools enttarnt, die iOS-User belauschen und ihre Daten kopieren. Eines der Programme läuft sogar auf vermeintliche sicheren iPhones, die nicht gejailbreakt wurden.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security




Gust MEES's insight:
Kurz nachdem bekannt wurde, dass über Googles Play Store millionenfach Adware-Tools heruntergeladen wurden, erwischt es Apple-Nutzer: Sicherheitsforscher haben Spionagetools enttarnt, die iOS-User belauschen und ihre Daten kopieren. Eines der Programme läuft sogar auf vermeintliche sicheren iPhones, die nicht gejailbreakt wurden.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple Fixes Tens of Vulnerabilities in OS X, iOS, Safari, Apple TV | CyberSecurity

Apple Fixes Tens of Vulnerabilities in OS X, iOS, Safari, Apple TV | CyberSecurity | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple fixes a large number of vulnerabilities with security updates for OS X, iOS, Apple TV and Safari


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:
Apple fixes a large number of vulnerabilities with security updates for OS X, iOS, Apple TV and Safari


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

OS X malware infecting connected iPhones, iPads | Cyber Security

OS X malware infecting connected iPhones, iPads | Cyber Security | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

According to Palo Alto Networks, WireLurker, running on an OS X system, can install either downloaded third-party applications or automatically generate malicious applications onto a USB-connected iOS device, regardless of whether it is jailbroken.

The malware is able to install malicious and infected programs on non-jailbroken iOS devices, according to the report, by using enterprise provisioning techniques, thus appearing to be an in-house application. The user is presented with a confirmation dialog box such as the one shown below, but otherwise the application will behave the same as an uninfected one.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security?q=wirelurker



Gust MEES's insight:

According to Palo Alto Networks, WireLurker, running on an OS X system, can install either downloaded third-party applications or automatically generate malicious applications onto a USB-connected iOS device, regardless of whether it is jailbroken.

The malware is able to install malicious and infected programs on non-jailbroken iOS devices, according to the report, by using enterprise provisioning techniques, thus appearing to be an in-house application. The user is presented with a confirmation dialog box such as the one shown below, but otherwise the application will behave the same as an uninfected one.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security?q=wirelurker


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

WireLurker: A new breed of iOS and OS X malware that has infected thousands | Cyber Security

WireLurker: A new breed of iOS and OS X malware that has infected thousands | Cyber Security | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
In short, the initial WireLurker infection comes from a third-party Mac OS X app store (in this case, the Chinese Maiyadi app store). Once you download and install an infected app onto your OS X machine, that’s where the fun begins. If you then plug an iOS device into an infected OS X machine, WireLurker installs itself on the iOS device. By using iOS’s enterprise provisioning system — a method usually reserved for companies to side-load apps directly onto corporate iOS devices — WireLurker can even infect non-jailbroken devices.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security?q=wirelurker



Gust MEES's insight:
In short, the initial WireLurker infection comes from a third-party Mac OS X app store (in this case, the Chinese Maiyadi app store). Once you download and install an infected app onto your OS X machine, that’s where the fun begins. If you then plug an iOS device into an infected OS X machine, WireLurker installs itself on the iOS device. By using iOS’s enterprise provisioning system — a method usually reserved for companies to side-load apps directly onto corporate iOS devices — WireLurker can even infect non-jailbroken devices.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security?q=wirelurker



more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

WireLurker: A New Era in OS X and iOS Malware | Cyber Security

WireLurker: A New Era in OS X and iOS Malware | Cyber Security | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
WireLurker monitors any iOS device connected via USB with an infected OS X computer and installs downloaded third-party applications or automatically generated malicious applications onto the device, regardless of whether it is jailbroken. This is the reason we call it “wire lurker”. Researchers have demonstrated similar methods to attack non-jailbroken devices before; however, this malware combines a number of techniques to successfully realize a new brand of threat to all iOS devices.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security?q=wirelurker


Gust MEES's insight:
WireLurker monitors any iOS device connected via USB with an infected OS X computer and installs downloaded third-party applications or automatically generated malicious applications onto the device, regardless of whether it is jailbroken. This is the reason we call it “wire lurker”. Researchers have demonstrated similar methods to attack non-jailbroken devices before; however, this malware combines a number of techniques to successfully realize a new brand of threat to all iOS devices.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security?q=wirelurker


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple releases security fixes for iOS, OS X, Safari and Apple TV

Apple releases security fixes for iOS, OS X, Safari and Apple TV | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
One of the bugs fixed in iOS and Apple TV was first reported a year ago and fixed in OS X in May of this year.


Apple has released new versions of iOS, OS X, Safari and Apple TV, and disclosed the vulnerabilities fixed in those new versions. A total of 60 unique vulnerabilities are addressed in the products.


===> As is common with Apple, some of the vulnerabilities are quite old. <===


iOS 7.1.2 fixes 44 vulnerabilities in the previous version. These include two lock screen bugs and two which could allow bypass of Find My iPhone and Activation Lock, the new anti-theft measures. The new version also adds encryption of attachments in the Mail app, a problem first reported two months ago. The usual long list of WebKit bugs is fixed and the list of trusted root certificates was updated.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security



Gust MEES's insight:

Apple has released new versions of iOS, OS X, Safari and Apple TV, and disclosed the vulnerabilities fixed in those new versions. A total of 60 unique vulnerabilities are addressed in the products.


===> As is common with Apple, some of the vulnerabilities are quite old. <===


iOS 7.1.2 fixes 44 vulnerabilities in the previous version. These include two lock screen bugs and two which could allow bypass of Find My iPhone and Activation Lock, the new anti-theft measures. The new version also adds encryption of attachments in the Mail app, a problem first reported two months ago. The usual long list of WebKit bugs is fixed and the list of trusted root certificates was updated.


Learn more:


- http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

FireEye discovered an Apple vulnerability which allows iOS keylogging

FireEye discovered an Apple vulnerability which allows iOS keylogging | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Researchers at FireEye have developed a POC that exploits an Apple vulnerability to implement a Background Monitoring on Non-Jailbroken iOS 7 Devices
Gust MEES's insight:


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Yet another iPhone lockscreen vulnerability. This time in iOS 7.02 [VIDEO]

Yet another iPhone lockscreen vulnerability. This time in iOS 7.02 [VIDEO] | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Another day, another privacy vulnerability found in iOS.

When will Apple learn that a lockscreen should really, properly, lock the phone?
Gust MEES's insight:

 

Israeli researcher Dany Lisiansky uncovered the flaw, and made a video to demonstrate a way to take a victim’s locked iPhone running iOS 7.02, and ===> access their call history, voicemails and entire list of contacts. <===


Learn more:

 

http://www.scoop.it/t/securite-pc-et-internet/?tag=Nobody-is-perfect

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
Gust MEES's curator insight, September 30, 2013 12:37 PM

Israeli researcher Dany Lisiansky uncovered the flaw, and made a video to demonstrate a way to take a victim’s locked iPhone running iOS 7.02, and ===> access their call history, voicemails and entire list of contacts. <===

 

Learn more:

 

http://www.scoop.it/t/securite-pc-et-internet/?tag=Nobody-is-perfect

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

 

Gust MEES's curator insight, September 30, 2013 12:51 PM

 

Israeli researcher Dany Lisiansky uncovered the flaw, and made a video to demonstrate a way to take a victim’s locked iPhone running iOS 7.02, and ===> access their call history, voicemails and entire list of contacts. <===

 

Learn more:

 

http://www.scoop.it/t/securite-pc-et-internet/?tag=Nobody-is-perfect

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

 

Scooped by Gust MEES
Scoop.it!

Another iOS 7 lockscreen hole opens up - call anywhere in the world for free!

Another iOS 7 lockscreen hole opens up - call anywhere in the world for free! | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Another iOS 7 lockscreen bypass has surfaced: this one lets you call anywhere in the world for free.

OK, not really "for free" - someone has to pay, and that's the owner, who probably assumed th...
Gust MEES's insight:

 

Learn more:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Infosecurity - Apple iOS 7: A Security Overview

Infosecurity - Apple iOS 7: A Security Overview | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple's new iOS 7, pre-loaded on the new iPhone 5s and 5c, is also available for download to older devices. It is said to include more than 200 new features – here we look at some of the security aspects and issues.
Gust MEES's insight:

 

Learn more:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

 
more...
No comment yet.