apple

Judge: FBI Can Keep iPhone Crack and Price Secret

The FBI can keep details around how much it paid and which company it hired to unlock a terrorist’s iPhone 5C in 2016 secret, the court ruled over the weekend.

Macs Not Receiving EFI Firmware Security Updates as Expected

Researchers at Duo Security are expected today at Ekoparty to reveal data and a paper that shows Mac users are not receiving EFI firmware updates at expected.

Gatekeeper Alone Won’t Mitigate Apple Keychain Attack

Apple said that macOS’ native Gatekeeper security feature would protect against a Keychain attack disclosed this week, but researcher Patrick Wardle said that won’t help against Mac malware signed with an Apple certificate.

macOS High Sierra Available—And Vulnerable to Keychain Attack

by Michael Mimoso

September 26, 2017

Researcher Patrick Wardle has discovered a critical vulnerability that allows an attacker to dump passwords in plaintext from the macOS Keychain. The vulnerability is in macOS High Sierra, Sierra and El Capitan, and has yet to be patched.

iOS 11 Update includes Patches for Eight Vulnerabilities

by Michael Mimoso

September 19, 2017

Apple released a number of patches, including a security update for iOS 11, which is available today.

Security Lacking in Previous AppleAVEDriver iOS Kernel Extension

by Michael Mimoso

August 25, 2017

An obscure Apple kernel extension patched in iOS 10.3.3 was originally built without security measures in place, according to the researcher who privately disclosed the flaws.

It’s Not Exactly Open Season on the iOS Secure Enclave

by Michael Mimoso

August 18, 2017

Despite yesterday’s leak of the Apple iOS Secure Enclave decryption key, experts are urging calm over claims of an immediate threat to user data.

Hacker Publishes iOS Secure Enclave Firmware Decryption Key

by Michael Mimoso

August 17, 2017

A hacker identified only as xerub published the decryption key unlocking the iOS Secure Enclave Processor.

Flash’s Final Countdown Has Begun

by Tom Spring

August 16, 2017

The impending demise of Adobe Flash will create legacy challenges similar to Windows XP as companies begin to wean themselves off the vulnerable code base.

Signed Mughthesec Adware Hijacking Macs for Profit

by Michael Mimoso

August 9, 2017

Mughthesec, a variant of the OperatorMac adware, has been turning hijacked Macs into revenue-generating machines for the authors.

Threatpost | The first stop for security news

apple

Judge: FBI Can Keep iPhone Crack and Price Secret

Macs Not Receiving EFI Firmware Security Updates as Expected

Gatekeeper Alone Won’t Mitigate Apple Keychain Attack

macOS High Sierra Available—And Vulnerable to Keychain Attack

iOS 11 Update includes Patches for Eight Vulnerabilities

Security Lacking in Previous AppleAVEDriver iOS Kernel Extension

It’s Not Exactly Open Season on the iOS Secure Enclave

Hacker Publishes iOS Secure Enclave Firmware Decryption Key

Flash’s Final Countdown Has Begun

Signed Mughthesec Adware Hijacking Macs for Profit

Editor's Picks

Podcast: IoT Firms Face a ‘Tidal Wave’ of Lawsuits, Attorney Explains

Emotet Campaign Ramps Up with Mass Email Harvesting Module

U.S. Chip Cards Are Being Compromised in the Millions

New Boom in Facial Recognition Tech Prompts Privacy Alarms

Lawsuits Aim Billions in Fines at Equifax and Ad-Targeting Companies

Threatpost | The first stop for security news

Topics

Authors

Threatpost

Subscribe to our Threatpost Today newsletter

apple

Editor's Picks

Subscribe to Threatpost Today

Subscribe to our newsletter, Threatpost Today!

Threatpost | The first stop for security news

Topics

Authors

Threatpost

InfoSec Insider Post

Sponsored Post

**Subscribe to our Threatpost Today newsletter**