If you have an iPhone running iOS 9, you should be aware that it may be possible to access your photos and contacts on a locked device, even with a passcode and/or Touch ID enabled.
I’ve always ignored reports on this sort of security flaw, because they always seem to pop up with every iOS iteration, and almost always require a user to jump through what seems like a million hoops. But for some reason — call it boredom, or call it poor judgement — I got curious, and decided to try this out for myself. As it turns out, it’s not that hard to do, and it certainly seems like a security flaw in iOS to me.
Read moreApple Inc said it is cleaning up its iOS App Store to remove malicious iPhone and iPad programs identified in the first large-scale attack on the popular mobile software outlet.
The company disclosed the effort after several cyber security firms reported finding a malicious program dubbed XcodeGhost that was embedded in hundreds of legitimate apps. It is the first reported case of large numbers of malicious software programs making their way past Apple's stringent app review process. Prior to this attack, a total of just five malicious apps had ever been found in the App Store, according to cyber security firm Palo Alto Networks Inc.
Read moreWith the launch of iOS 9, Apple gave us an ultimate reason to upgrade our Apple devices to its new operating system. The latest iOS 9 includes a security update for a nasty bug that could be exploited to take full control of your iPhone or Macs, forcing most of the Apple users to download the latest update.
Australian security researcher Mark Dowd has disclosed a serious vulnerability in AirDrop, Apple's over-the-air file sharing service built into iOS and Mac OS X. The vulnerability allows anyone within the range of an AirDrop user to silently install a malicious app on a target Apple device by sending an AirDrop file which involves rebooting of the target device.
Read moreJailbreaking your device may have got you the best of apps but after reading this you will know what a high price you could have to pay for the jailbreak. A malware named ‘KeyRaider’ has supposedly stolen user credentials of approximately 225K iPhone users.
It has been given this name as it raids victims’ username and passwords, private keys and certificates. Figures say that KeyRaider malware has affected a large number of users in China and worldwide 17 more countries. Also, the origin of malware is suspected to be in China, as said in investigations conducted by Palo Alto Networks for reporting any suspicious tweaks on iPhones.
Read moreUnder specific conditions, PayPal can ask users to confirm their identity to prevent frauds. When users are asked to verify their identity, their account is not accessible and in order to unblock it PayPal request them to make a call or send an email to its service and complete the procedure.
Mejri explained that a vulnerability affecting the PayPal mobile app that can be exploited by attackers to access blocked accounts through repeated login attempts that leverage valid session cookies. The same trick could be used to bypass two-factor authentication process, once the attacker successfully accesses the account is it able to change its settings.
Read moreCredentials for more than 225,000 Apple accounts have been stolen by sophisticated malware that targets modified iOS devices. The malware enables attackers to download applications from Apple’s App Store without paying or to lock devices in lieu of a ransom.
Jailbreaking removes Apple’s protections that limit what apps can be installed on a device. Apple advises against jailbreaking for security reasons. The malware has been spread by being incorporated into jailbreak tweaks, or software packages that allow for some new function to be run on iOS. The malware has been found within tweaks published on the Weiphone forum for jailbroken phones.
Read moreHackers have figured out how to persuade iPhone users to install malicious apps on their iPhones without their knowledge. The apps may look and perform like the real thing, but they're controlled by hackers.
The installations occur when users unwittingly click on web links that trigger the downloads. Bogus apps include malware versions of Twitter, Facebook, WhatsApp. The attacks work by duping smartphone users into installing the malicious apps without their knowledge. If a user clicks on an infected link while browsing the web, then Masque can download an app onto an iPhone without the users knowing.
Read moreA research study conducted by Hewlett-Packard has found serious security issues in today's top smartwatch wearable devices. Smartwatches are part of the wearable device trend, which extends from medical devices and fitness trackers to acting as an extension of your smartphone.
The Apple Watch and Android Wear are examples of popular wearable devices on the market which can pair with smartphones and allow you to view online notifications, send messages and control apps through either the small display or through voice control. Every one of the ten devices analyzed contained significant vulnerabilities.
Read moreData stolen from Hacking Team continues to yield information about the company’s infiltration techniques. The latest find is a fake Android news app, which was used to install its flagship surveillance tool. The app is called “BeNews,” the same name as a long-shuttered news website.
Inside the app is a backdoor that appears to have been used to load the Android version of Hacking Team’s Remote Control System, also known as Galileo, a data-collecting tool the company sold to law enforcement and security agencies worldwide. That malicious component takes advantage of a local privilege escalation vulnerability.
Read moreiPhone and iPad users have reported receiving pop-up notifications telling them that their software has crashed and that they must dial a support helpline to fix it. Scammers have targeted Safari, telling users in the US to ring the helpline and pay to fix it.
Users in the UK have also reported the issue, with one saying they had been asked for money to fix the crash. When browsing Safari, users receive a notification saying: "Warning!! iOS Crash Report!!. Due to a third party application in your device, iOS is crashed. Contact Support for Immediate Fix." Apple has directed users to a support page that explains how to fix it.
Read moreAxarhöfði 14,
110 Reykjavik, Iceland