Apple

tripwire.com

Hackers automate the laundering of money via Clash of Clans

Popular smartphone games such as “Clash of Clans” are being used to launder hundreds of thousands of dollars on behalf of credit card thieves.

Read more in my article on the Tripwire State of Security blog.

bitdefender.com

New iOS security feature can be defeated by a $39 adapter… sold by Apple

A one hour countdown timer can be reset simply by connecting the iPhone to an untrusted USB accessory – giving law enforcement plenty of opportunity to crack your passcode with specialist tools.

tripwire.com

Apple confirms it’s closing security loophole that police were using to crack iPhones

Yes, Apple is toughening up the security of iPhones with iOS 12. Yes, the steps Apple is taking will make it harder for law enforcement agencies to thwart iPhone security. But no, that’s not the reason Apple is doing it.

Read more in my article on the Tripwire State of Security blog.

Paris Hilton’s hacker sentenced to 57 months in prison

Celebrity heiress Paris Hilton says she no longer trusts the iCloud.

welivesecurity.com

Hey Siri! Read me this locked iPhone’s hidden messages…

Messages sent to your iPhone may not be as private as you think.

Read more in my article on the We Live Security blog.

Smashing Security podcast #069: Cryptomining, China, and Bob Ross

How come Apple’s Mac App Store authorised a buggy app that mined for cryptocurrency in the background? How can a Mosquito attack steal data from an air-gapped computer? And is China keeping score on its social media-loving citizens?

All this and much much more is discussed in the latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, who are joined this week by special guest John Hawes.

Calendar 2 app pulled from Mac App Store after cryptomining controversy

Calendar 2 offered of its features for free if you allowed it to “unobtrusively” generate Monero cryptocurrency in the background.

Shame then that it wasn’t unobtrusive, and bugs meant it mined regardless of whether you wanted it to or not.

bitdefender.com

Apple issues advice on how to spot App Store and iTunes phishing scams

Apple has responded to a spate of legitimate-looking App Store and iTunes phishing emails by releasing a new support document, outlining how customers can better protect themselves.

Read more in my article on the Hot for Security blog.

Phone-cracking firm advertises that it can unlock any iPhone

Israeli security firm Cellebrite claims it can now even unlock iPhones running the very latest version of iOS.

Apple fixes ‘killer text bomb’ vulnerability with new update for iOS, macOS, watchOS, and tvOS

Apple released updates on Monday that will protect owners of iPhones, iPads, iMacs, MacBooks, iMac Pros, Apple Watches, and (phew!) Apple TVs from having toerags crash their devices.

bitdefender.com

‘Killer text bomb’ crashes iPhones, iPads, Macs, and Apple Watches

Apple has confirmed that it is working on a bug fix that will stop apps like Messages from crashing when they attempt to display a Unicode symbol representing a letter from the south Indian language of Telugu.

Read more in my article on the Hot for Security blog.

bitdefender.com

Apple’s iOS source code leak – what you need to know

Earlier this week someone anonymously published a key piece of Apple’s iOS source code onto GitHub.

Something you wouldn’t want to fall into the wrong hands…

Read more about what you need to know in my article on the Hot for Security blog.

Beware! A new bug can crash iOS and macOS with a single text message

Resist the temptation to send this text bomb to anyone.

welivesecurity.com

Fruitfly malware spied on Mac users for 13 years – man charged

US authorities have charged a 28-year-old Ohio man who is alleged to have created and installed creepy spyware on thousands of computers for 13 years.

Read more in my article on the We Live Security blog.

Smashing Security podcast #060: Meltdown, Spectre, and personal devices in the White House

The chips are down, as tech companies struggle to protect against the Meltdown and Spectre flaws. The White House is getting tough on leakers by banning personal devices from the West Wing. And someone has been embedding a Bitcoin wallet into their hand…

All this and much much more is discussed in latest edition of the “Smashing Security” podcast by computer security veterans Graham Cluley and Carole Theriault, joined this week by David McClelland.

Apple fixes the Meltdown and Spectre flaws in Macs, iPhones, and iPads

Apple takes further steps to protect its customers against the Meltdown and Spectre processor flaws. Remember to apply the updates!