Apple, Mac, iOS4,...
Follow
Find tag "Safari-Insecurity"
8.9K views | +3 today
Apple, Mac, iOS4, iPad, iPhone and (in)security...
Everything related to the (in)security of Apple products
Curated by Gust MEES
Your new post is loading...
Your new post is loading...
Scooped by Gust MEES
Scoop.it!

Apple Safari is not as secure as you think

Apple Safari is not as secure as you think | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
`Secure' online banking and payment credential pages accessible to hackers
Gust MEES's insight:

 

Learn more:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Safari on Mac OS exposes web login credentials

Safari on Mac OS exposes web login credentials | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Kaspersky research shows that Safari, in saving a session for reopening later, stores session information in plain text. This includes usernames and passwords.
Gust MEES's insight:

 

Kaspersky researchers have discovered that Apple's Safari web browser on OS X stores session information, including the username and password, in a plain text XML file, available for any user to read.

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple plugs staggering number of holes in Safari browser

Apple plugs staggering number of holes in Safari browser | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple has released an update to its Safari browser, version 6, that plugs 121 security holes, most of which involve the WebKit rendering engine.

 

The Safari update fixes a staggering 121 vulnerabilities, 117 of those flaws in WebKit, a browser engine designed to render HTML webpages. Most of the WebKit vulnerabilities could result in an unexpected application termination or arbitrary code execution if the user visits a maliciously created website, according to the security update.

 

Apple also patched two issues with the handling of feed:// URLs – one is a cross-site scripting vulnerability that could be exploited if a user visited a maliciously crafted site, and the other is an access control issue that could be exploited to send files from a user’s system to a remote server.

 

Another Safari fix resolves a problem in which passwords may autocomplete even when the site specifies that autocomplete should be disabled.

 

Read more:

http://www.infosecurity-magazine.com/view/27219/apple-plugs-staggering-number-of-holes-in-safari-browser/?utm_source=twitterfeed&utm_medium=twitter

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple updates Mavericks to 10.9.1, issues security fixes for Safari

Apple updates Mavericks to 10.9.1, issues security fixes for Safari | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple just announced the first point update for its recently released OS X Mavericks.

Most of the fixes and enhancements are of the not-really-to-do-with-security sort, but the update includes a...
Gust MEES's insight:

 

Learn more:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Where are the Safari security updates for Windows and Snow Leopard? Users left exposed

Where are the Safari security updates for Windows and Snow Leopard? Users left exposed | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Apple released Safari 6 as part of its new Mac operating system, OS X Mountain Lion, as well as a version for Lion that fixes a whopping 121 security vulnerabilties.

 

Unfortunately, Apple did not release security updates for Safari for either Snow Leopard or Windows to coincide with the release of Safari 6.0.


===> Unfortunately for Apple, ignoring security issues that affect a large percentage of users does not make the security issues disappear. <===

more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

Sécurité IT : mon Safari pour du phishing

Sécurité IT : mon Safari pour du phishing | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Une faille de sécurité grouille dans les arcanes de Safari. Elle permet à un site Internet d’afficher dans la barre d’adresse une fausse URL. Major Security en appelle à la vigilance face au phishing.

 

Or, un tel mutisme n’a d’égal que le risque grandissant que courent les utilisateurs de Safari, plus exposés encore au phishing.

more...
No comment yet.