Apple has pushed security updates to both iOS and OS X, ending their vulnerability to the FREAK exploit which allowed hackers access to personal data during encrypted sessions on a number of major websites. Android and Windows devices were also vulnerable.
At the time the exploit was discovered, affected websites included American Express, Airtel, Bloomberg, Business Insider, Groupon, Marriott and, ironically, the FBI, NSA and White House sites. Hackers could force the sites to use a less-secure form of encryption that could be relatively easily cracked. Apple’s fix prevents iOS and OS X from using the lower level of encryption even if the site requests it.
The fix is included in iOS 8.2, released yesterday. iOS 8.2 added support for the Apple Watch, improved the Health app and fixed a number of bugs, including an SMS reboot. It was also rolled into today’s Apple TV 7.1 update. The OS X fix is available as a standalone software update. From the Apple menu, select App Store then the Updates tab; a restart is required.
FTC: We use income earning auto affiliate links. More.
Not available for 10.10.3 public beta by the look of it. Already included perhaps?
Hey @TechGuy__ I also am a beta user and no the security fix is not included in the beta update unfortunately!
I love Apple for reacting so quick. Compare this to Microsoft, that only published a workaround that probably “destroy” the “Windows Update”-function so you can’t search or even install updates anymore.
So Apple TV 2G gets no security love….sad news.
Please forgive me, I am not very tech-savvy. Today, (I hadn’t done the update yet) I had my iPhone 6 Plus charging, when it all of a sudden opened up iTunes Radio and started playing classical music. I went over and turned it off. Didn’t think much of it. About 30 minutes later, I notice it had lit up again. When I looked, my The Vault app was open and there seemed to be an attempt at doing my password to open the app. It also said that there had already been 2 unsuccessful login attempts. Is what happened with my phone today, what this update is suppose to fix? Or should I be concerned about something else?