Apple today removed a number apps from the App Store accused of installing root certificates that compromised SSL/TLS connections.
Browsing Category: Apple
New iOS malware called YiSpecter abuses Apple-issued enterprise developer certificates and private APIs to push adware onto devices in China and Taiwan.
Mike Mimoso and Chris Brook talk about the week in news–the latest Gatekeeper bypass in OS X, Stagefright 2.0, that accidental Windows Update, and Apple’s privacy initiative.
Apple pushed out its latest operating system, El Capitan, yesterday, and while it boasts many security fixes, the update fails to address the outstanding vulnerability in Gatekeeper that came to light this week.
Researcher Patrick Wardle will demonstrate a Mac OS X Gatekeeper bypass that exploits a weakness in the Apple OS that allows signed apps to execute malicious code.
Researchers found a weakness in XcodeGhost that puts it at risk for man-in-the-middle attacks.
Apple watchOS2 arrived with a host of security patches, including fixes for more than a dozen code-execution bugs.
iOS apps infected with the XcodeGhost malware have been removed from the App Store and three command domains communicating with infected apps have been shut down.
Exploit vendor Zerodium will host a month-long million-dollar bug bounty focused on Apple iOS 9.