Apple iCloud didn’t wipe ‘deleted’ browser histories for over a year

Researchers discovered it was possible to extract users’ Safari browsing history over a year after the user believed that they had deleted their browsing history.

Read more in my article on the Hot for Security blog.

Apple issues security patches for… just about everything

If you have a piece of Apple technology in your house or office, chances are that it’s time you updated it.

Read more in my article on the We Live Security blog.

Apple sued over fatal FaceTime car crash

22-year-old Garrett Wilhelm was allegedly chatting on his iPhone’s FaceTime app when he crashed a car at 65mph on Christmas Eve 2014.

Once again, Siri helps attackers bypass your iPhone’s passcode

It would be nice to think that as we’re now up to iOS 10 that Apple would have prevented such bypasses from working once and for all. But no such luck – for users who have left Siri enabled from the lockscreen at least.

Read more in my article on the Hot for Security blog.

Apple ID smishing evolves to lure more victims

Smishing is nothing new. But that doesn’t mean that the criminals hell bent on stealing Apple ID password are resting on their laurels.

Read more in my article on the We Live Security blog.

iOS 10.2 will make your local iPhone backup much much harder to crack

In late September, when Apple released iOS 10, it also took a dramatic step back in at least one aspect of iPhone and iPad security.

Now it’s trying to make things 1000 times better.

Read more in my article on the Tripwire State of Security blog.

As the clocks go back, UK Apple users targeted by smishing campaign

As Brits slept, the phishing gangs were up to their old tricks – spamming out SMS messages purporting to be warnings from Apple that our Apple IDs were due to expire today, and that we should act quickly.

Attack allows Mac malware to piggyback on your webcam, while it’s in use

A new attack allows OS X malware to record video and audio whenever a victim legitimately turns on their webcam, without drawing attention to itself.

David Bisson reports.

Apple Messages could be exposing your privacy when it previews a link

Apple’s iMessage isn’t doing all it can to protect users’ information when it previews a link in a conversation.

David Bisson reports.

Earn $1.5 million by remotely jailbreaking iOS 10

If you had a zero-day vulnerability for remotely hacking an iPhone who would you tell? The people who will give you $1.5 million dollars or the company that can protect every iOS user in the world?

Bypass an iPhone 5c’s passcode lock for $100

Which is a lot cheaper than the $1.3 million the FBI paid to break into the San Bernardino shooter’s iPhone 5c.

iPhones ‘bricked’ as Apple releases iOS 10 (and then rapidly fixes the problem)

iOS 10, the “biggest release of iOS ever”, is plagued by reports of ‘bricked’ iPhones and iPads.

Thankfully, Apple was quick to release a fix.

Want the iPhone 7? Make sure you sell your old phone safely!

Tempted to upgrade your old iPhone to the newly-announced iPhone 7?

David Bisson reports on what safety steps you should take before selling your old device.

Mac users vulnerable to state-sponsored Trident attack, fixed in iOS last week. Patch now

No excuses. Patch your Mac computers and Apple mobile devices.

Found an iOS zero-day? This firm will pay you $300,000 more than Apple

Exodus Intelligence is offering half a million dollars ($300,000 more than the maximum offered by Apple) to anyone who can sell them an iOS zero-day exploit.

Read more in my article on the Tripwire blog.

Earn up to $200,000 as Apple *finally* launches a bug bounty

Found a vulnerability in Apple products? Finally the company has recognised that you might be grateful for some financial reward.