What's Your IT Question?

Want to know more about this topic or about us? Contact us!

All posts in OS-X

Apple emergency zero-day fix for iPhones and Macs – get it now!

by Paul Ducklin You might be forgiven for thinking that July 2021 was Microsoft’s month for cybersecurity vulnerabilities. First there was PrintNightmare in several guises, followed by HiveNightmare (an entirely unrelated bug that nevertheless attracted the “Nightmare” moniker), followed by PetitPotam (which went down the cute aquatic mammal naming path). . . . Read more

Apple patches dangerous security holes, one in active use – update now!

by Paul Ducklin We’ve seen several news stories talking up some great new features in Apple’s latest software update for iOS, which was released yesterday. However, we’re much more interested in the security patches that arrived in the update to iOS 14.6, because Apple fixed 38 significant bugs, covered by . . . Read more

Apple products hit by fourfecta of zero-day exploits – patch now!

by Paul Ducklin It’s only a week since Apple’s last product updates, but it’s already time to update again. As you probably know, Apple, unusually amongst major operating system and application producers, doesn’t have any sort of predictable schedule for its security patches. Unlike vendors such as Microsoft (monthly), Google . . . Read more

S3 Ep30: AirDrop worries, Linux pests and ransomware truths [Podcast]

by Paul Ducklin We investigate whether AirDrop is really as dangerous as researchers claimed. We discuss the pestiferous problem of fake Linux bugs submitted as an academic exercise. We review the latest Sophos Ransomware Report and uncover uncomfortable truths about paying up. With Kimberly Truong, Doug Aamoth and Paul Ducklin. . . . Read more

Naked Security Live – “XcodeSpy” takes aim at Mac and iOS developers

by Paul Ducklin Just one tiny line of script in your Xcode project – and you’ve been pwned! Learn all about it, and what you can do to avoid supply chain problems if you’re a coder yourself: Watch directly on YouTube if the video won’t play here.Click the on-screen Settings . . . Read more

Wormable Apple iCloud Bug Allows Automatic Photo Theft

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Twitter Warns Developers of API Bug That Exposed App Keys, Tokens

The administrator of your personal data will be Threatpost, Inc., 500 Unicorn Park, Woburn, MA 01801. Detailed information on the processing of personal data can be found in the privacy policy. In addition, you will find them in the message confirming the subscription to the newsletter.

Apple’s latest updates are out for iPhones and Macs – get them now!

by Paul Ducklin When it comes to updates, Apple doesn’t do “predictable”. Other organisations such as Microsoft, Mozilla and Adobe are well-known for publishing updates not only frequently but also regularly. Indeed, with those companies, you don’t just get updates at least once a month (or once every four weeks . . . Read more