bug April 21
A bug in the way that 1,500 iOS apps establish secure connections to servers leaves them vulnerable to man-in-the-middle attacks, according to analytics company SourceDNA (via arsTechnica). The bug means anyone intercepting data from an iPhone or iPad could access logins and other sensitive information sent using the HTTPS protocol.
A man-in-the-middle attack allows a fake WiFi hotspot to intercept data from devices connecting to it. Usually, this wouldn’t work with secure connections, as the fake hotspot wouldn’t have the correct security certificate. However, the bug discovered by SourceDNA means that the vulnerable apps fail to check the certificate … expand full story
bug October 1, 2014
bug September 29, 2014
Apple is having a bad month. Sure, the company launched two new iPhones, introduced the world to their first wearable device, and debuted a brand-new NFC payment system, but for everything that went right something somewhere also seems to have gone horribly wrong.
It started with a heavily-promoted live stream that failed within minutes, then moved to a massive, probably overblown “scandal” over bent iPhones. There was also the sudden discovery of a critical flaw that prevented a key iOS 8 feature from being available at launch paired with the subsequent botched update that was supposed to fix the problem but instead left owners of the latest iPhones potentially stranded without cell service for well over 24 hours.
And that’s not even counting the highly-publicized scandal in which a number of celebrity iCloud accounts were allegedly compromised due to Apple’s insufficient security measures on certain functions. Oh, and let’s not forget about that U2 album nobody wanted but everybody got anyway.
The last thing Apple really needs is one more big problem mucking up its image this month. Unfortunately, that seems to be exactly what the folks at Cupertino are getting today, as a newly-discovered bug in the iOS “reset settings” function runs the risk of permanently deleting all of the iWork documents stored in your iCloud account.
bug July 11, 2014
bug May 30, 2014