Facebook will soon be pushing out an update to its iOS Messenger app meant to patch a vulnerability that could allow attackers to place pricy calls from users' phones by simply making them click on a web link.
The flaw has been recently discovered by developer Andrei Neculaesei from Copenhagen, and can be triggered by using the tel URL scheme. "The tel URL scheme is used to launch the Phone app on iOS devices and initiate dialing of the specified phone number," it is explained in an Apple document. "When a user taps a telephone link in a webpage, iOS displays an alert asking if the user really wants to dial the phone number and initiates dialing if the user accepts.
Read moreA Brazilian judge has called for Apple and Google to remove the anonymous social network Secret from their app stores and wipe it from phones on which it has already been installed across the country.
The San Francisco startup has come under fire from those charging that Secret and other anonymous apps too easily become sanctuaries for cyberbullying. Last week, a San Diego man started a Change.org petition seeking to remove Secret from Apple and Android app stores, though the petition had little support. On Monday, an opinion piece in the New York Times argued that anonymous apps and Internet websites such as Secret often make women and minorities a target for attack.
Read moreIn anticipation of the launch of the new operating system iOS 8, the company Apple started negotiations with working in health organizations about the deployment of the service HealthKit.
Platform HealthKit, presented at the developer conference WWDC 2014 will allow to gather in one place from a variety of sources of data on the user’s vital signs, including pulse, blood pressure, cholesterol and sugar, the amount of steps you’ve walked and calories burned, and make recommendations to maintain your health and even notify the attending physician in the case of the emergence of anxiety symptoms. Service HealthKit, as the application Health, integrated into iOS, 8, which will be released this fall.
Read moreAccording to the Chinese mass media charges, information security could suffer. At the same time Apple representatives claim that user‘s location data are only on his device and can't be saved on iTunes or iCloud.
Apple denies Chinese statement, broadcasted on China Central Television (CCTV) about surveillance over users. The "Frequent Locations" function caused many questions. According to the Chinese mass media, the information gathered by Apple can reveal the entire country's economic situation and even state secrets. In turn, Apple‘s technical support declares that the "Frequent Locations" function doesn't track your smartphone.
Read moreForensic scientist and author Jonathan Zdziarski has demonstrated a number of undocumented high-value forensic services running on every iOS device and suspicious design omissions in iOS that make collection easier.
He also provided examples of forensic artifacts acquired that should never come off the device without user consent. At the Hackers On Planet Earth conference in New York, Zdziarski revealed a slide, called ‘Identifying Backdoors, Attack Points, and Surveillance Mechanisms in iOS Devices.
Read moreMass Media in China believes that iPhone‘s opportunity to track user‘s locations threatens national security.
If you turn on «Frequent Locations» function, then iPhone users can be tracked and information about them revealed. Then smartphone starts to accumulate information about the user. It means that in few days iPhone is able to learn a lot of things about user's private life, such as his working place, home address, his friends‘ location, shops and restaurants that user visits. Experts point out that this is sensitive data about user. If the data were accessed, it could reveal an entire country's economic situation and "even state secrets," the researcher said.
Read moreApple users accessing Gmail on mobile devices could be at risk of having their data intercepted, a mobile security company said Thursday.
The reason is Google has not yet implemented a security technology that would prevent attackers from viewing and modifying encrypted communications exchanged with the Web giant, wrote Avi Bashan, chief information security officer for Lacoon Mobile Security, based in Israel and the U.S. Websites use digital certificates to encrypt data traffic using the SSL/TLS (Secure Sockets Layer/Transport Layer Security) protocols. But in some instances, those certificates can be spoofed by attackers, allowing them to observe and decrypt the traffic. That threat can be eliminated through certificate “pinning”.
Read moreMoscow-based Elcomsoft has developed a new version of Phone Password Breaker 3.0 program with access into iCloud without Apple ID and the password function.
But this feature is mostly intended for our law enforcement and forensic customers, as using a password-free entry into iCloud requires a binary authentication token that must be extracted from the suspect’s computer (OS X or Windows). But you’ll still need the suspect’s PC with iCloud Control Panel installed which has iCloud Control Panel installed. Moreover the user must’ve been logged in to iCloud Control Panel on that PC at the time the computer is seized. If the user logged out of the Panel, the authentication tokens are then deleted.
Read moreMat Honan in a humorous manner created an everyday life picture in a "smart" house which (according to analysts) each consumer will have in 5-10 years.
I wake up at four to some old-timey dubstep spewing from my pillows. The lights are flashing. My alarm clock is blasting Skrillex or Deadmau5 or something, I don’t know. I never listened to dubstep, and in fact the entire genre is on my banned list. You see, my house has a virus again. Technically it’s malware. But there’s no patch yet, and pretty much everyone’s got it. Homes up and down the block are lit up, even at this early hour. Thankfully this one is fairly benign. It sets off the alarm with music I blacklisted decades ago on Pandora. It takes a picture of me as I get out of the shower every morning and uploads it to Facebook.
Read moreGoogle is planning to launch a new health service called Google Fit to collect and aggregate data from popular fitness trackers and health-related apps at the Google I/O conference.
Such a service would mark a direct challenge to Apple’s HealthKit framework, launched last week and rolling out with its new mobile platform iOS 8 this fall to aggregate data from wearable devices and apps. Last month Samsung also unveiled similar device, called SAMI. Google Fit will aggregate data through open APIs, Google will also announce partnerships with wearable device makers at its I/O conference.
Read moreAxarhöfði 14,
110 Reykjavik, Iceland