Apple Threats

App maker says leaked Apple IDs came from its database

By

A researcher contacted BlueToad, a Florida app developer, after spotting clues that stolen Apple UDIDs came from the company. The revelation may clear the FBI of any fault.

iPhone SMS spoofing tool released

Admitting to the vulnerability, Apple is suggesting that users employ iMessage as a workaround.

Mac espionage trojan targets Uighur activists

By

The Uighur Muslim minority group is being targeted in a new APT campaign that targets Mac users and is difficult to detect.

iTunes vulnerability may enable remote code execution

By

A flaw in Apple's popular music player allows for miscreants to execute remote code.

Java updates from Oracle and Apple come on same day

By

Traditionally, Apple has taken some time to release updates for its own version of third-party software. But that may be changing if Tuesday's concurrent patches for Java are any guide.

Apple releases Safari, OS X fixes

By

Apple and Adobe this week released patches for vulnerabilities that could enable attackers to execute malicious code.

Major software flaws in iPhones, iPads fixed in update

By

A difficult-to-find vulnerability, disclosed in March at Google's inaugural hacker competition, was among the iOS fixes.

When signature-less security requires signatures

When signature-less security requires signatures

The recent outbreak of the Flashback trojan on Mac computers is a case study in how unprepared security professionals are for dealing with malware that's not specific to Windows.

Roughly 140K Flashback-infected computers remain

By

Symantec analysis of the botnet shows that many computers remain compromised with the trojan, though hundreds of thousands have been cleaned, and the infrastructure contains a Twitter communication apparatus.

Experts discover Mac OS X malware, "Sabpub," used as APT

By

A new trojan is targeting the same Java vulnerability that the Flashback malware took advantage of last week.

Third Apple Java update rids infections and turns off Java

By

Apple has released a third update related to Flashback, but this time, the patch comes with a detection and removal capability for the prolific trojan, and disables Java by default.

Apple says it is working to shut down Flashback infections

By

The company said it is creating software that will detect and remove Flashback, as well as coordinating with global ISPs to dismantle the botnet's infrastructure.

Apple is the richest company in the world, but it's not very good at dealing with malware

By

It's time for Apple to step up its game when it comes to dealing with security threats.

U.S. accounts for over half of Flashback-infected Macs

By

Although Apple released a Java update this week to prevent the spread of a dangerous trojan, experts say the botnet continues to grow, and the U.S. accounts for over half of the compromised Macs.

Apple updates Java after malware spreads

By

Enterprise users of Java for the Mac OS X should ensure their machines are updated with the latest security patch from Apple, released Tuesday.

"Flashback" trojan targets Mac computers

By

A live exploit is making the rounds that takes advantage of a bug in Java, which has already been patched, but hasn't yet made its way to Mac OS X users.

Trojan targets Tibetan activist groups that use Macs

By

Researchers have uncovered a rare instance of so-called espionage malware for the Mac OS X platform.

Safari update plugs scores of holes

By

Apple late Monday released a new version of its Safari browser to patch a record number of vulnerabilities, many of which could lead to code execution if a user visits a malicious website.

Apple pushes security update for iPhone, iPad

By

Apple on Wednesday updated its iOS mobile operating system to rectify more than 80 vulnerabilities.

Apple ships Mac OS X, Safari updates

By

Apple on Wednesday released a new version of Mac OS X, 10.7.3 (Lion), to address nearly 50 security vulnerabilities.

Cyber Monday scam emails hit inboxes

By

Spammers have begun trying to capitalize on the Cyber Monday buying frenzy.

Apple issues iTunes update to close man-in-the-middle hole

By

Apple on Monday released an updated version of its iTunes program to close a vulnerability that could lead to a man-in-the-middle attack.

Phishers aiming for Apple IDs, passwords

By

Spam that seemingly emanates from Apple is making the rounds with the aim of tricking users into handing over their IDs and passwords, researchers at anti-virus firm Trend Micro said in a blog post Monday.

New Mac OS X backdoor trojan "Tsunami" discovered

By

The so-called "Tsunami" backdoor trojan is derived from an older Linux family of backdoors around since at least 2002.

New Mac malware variant disables OS X defenses

By

Malware writers aren't waiting long between releasing new variants for a Mac trojan known as Flashback. The latest is designed to disable built-in anti-virus on target machines.

Apple releases OS X, iOS, Safari updates

By

Apple on Wednesday issued much-anticipated updates for its Mac OS X and iOS mobile operating system, adding support for its new iCloud service, and fixing a bevy of security flaws.

Apple releases mammoth iTunes update

By

Apple on Tuesday released an update to its iTunes software to repair a whopping 79 vulnerabilities. Most of the flaws are memory corruption issues found in WebKit, an open source web browser engine that helps render the iTunes Store. In the case of those bugs, adversaries could launch a man-in-middle attack while a user browses the store, which may lead to malicious code execution. The other holes patched by upgrading to iTunes 10.5 lie in CoreFoundation, ColorSync, CoreAudio, CoreMedia and ImageIO.

Mac OS X Lion flaw allows illicit password changes

By

An Apple operating system flaw could allow any user to obtain stored password hash data through an openly readable directory.

Android botnet infections on the uptick

By

Mobile botnets are nowhere near as big as PC zombie networks, but the threat is growing, according to a new report from Damballa.

Web browsers offer more protection than you may think

Web browsers offer more protection than you may think

Browser security has come a long way in recent years, and utilizing certain features can help stave off attacks. Our author calls out three browsers he thinks stands above the rest in protecting you against threats and safeguarding your privacy.

Sign up to our newsletters

POLL