A researcher contacted BlueToad, a Florida app developer, after spotting clues that stolen Apple UDIDs came from the company. The revelation may clear the FBI of any fault.
Admitting to the vulnerability, Apple is suggesting that users employ iMessage as a workaround.
The Uighur Muslim minority group is being targeted in a new APT campaign that targets Mac users and is difficult to detect.
A flaw in Apple's popular music player allows for miscreants to execute remote code.
Traditionally, Apple has taken some time to release updates for its own version of third-party software. But that may be changing if Tuesday's concurrent patches for Java are any guide.
To further stop the spread of the Flashback trojan, Apple on Monday released two security updates for Mac OS X 10.5 (Leopard).
Apple and Adobe this week released patches for vulnerabilities that could enable attackers to execute malicious code.
A difficult-to-find vulnerability, disclosed in March at Google's inaugural hacker competition, was among the iOS fixes.
April 25, 2012
The recent outbreak of the Flashback trojan on Mac computers is a case study in how unprepared security professionals are for dealing with malware that's not specific to Windows.
Symantec analysis of the botnet shows that many computers remain compromised with the trojan, though hundreds of thousands have been cleaned, and the infrastructure contains a Twitter communication apparatus.
A new trojan is targeting the same Java vulnerability that the Flashback malware took advantage of last week.
Apple has released a third update related to Flashback, but this time, the patch comes with a detection and removal capability for the prolific trojan, and disables Java by default.
The company said it is creating software that will detect and remove Flashback, as well as coordinating with global ISPs to dismantle the botnet's infrastructure.
It's time for Apple to step up its game when it comes to dealing with security threats.
Although Apple released a Java update this week to prevent the spread of a dangerous trojan, experts say the botnet continues to grow, and the U.S. accounts for over half of the compromised Macs.
Enterprise users of Java for the Mac OS X should ensure their machines are updated with the latest security patch from Apple, released Tuesday.
A live exploit is making the rounds that takes advantage of a bug in Java, which has already been patched, but hasn't yet made its way to Mac OS X users.
Researchers have uncovered a rare instance of so-called espionage malware for the Mac OS X platform.
Apple late Monday released a new version of its Safari browser to patch a record number of vulnerabilities, many of which could lead to code execution if a user visits a malicious website.
Apple on Wednesday updated its iOS mobile operating system to rectify more than 80 vulnerabilities.
Apple on Wednesday released a new version of Mac OS X, 10.7.3 (Lion), to address nearly 50 security vulnerabilities.
Spammers have begun trying to capitalize on the Cyber Monday buying frenzy.
Apple on Monday released an updated version of its iTunes program to close a vulnerability that could lead to a man-in-the-middle attack.
Apple booted famed researcher Charlie Miller from its developer program after he created an iPhone app that exploits a code-execution vulnerability.
Spam that seemingly emanates from Apple is making the rounds with the aim of tricking users into handing over their IDs and passwords, researchers at anti-virus firm Trend Micro said in a blog post Monday.
The so-called "Tsunami" backdoor trojan is derived from an older Linux family of backdoors around since at least 2002.
Malware writers aren't waiting long between releasing new variants for a Mac trojan known as Flashback. The latest is designed to disable built-in anti-virus on target machines.
Apple on Wednesday issued much-anticipated updates for its Mac OS X and iOS mobile operating system, adding support for its new iCloud service, and fixing a bevy of security flaws.
Apple on Tuesday released an update to its iTunes software to repair a whopping 79 vulnerabilities. Most of the flaws are memory corruption issues found in WebKit, an open source web browser engine that helps render the iTunes Store. In the case of those bugs, adversaries could launch a man-in-middle attack while a user browses the store, which may lead to malicious code execution. The other holes patched by upgrading to iTunes 10.5 lie in CoreFoundation, ColorSync, CoreAudio, CoreMedia and ImageIO.
An Apple operating system flaw could allow any user to obtain stored password hash data through an openly readable directory.
