News tagged ‘security’
In a few hours after Apple opened its Mac App Store ‘pirates’ found the way to install and run paid apps for free.
According to John Gruber’s blog Daring Fireball, the vulnerability appears to be in those apps that do not follow app validation advice given by Apple.
Read the rest of this entry »
This week Google has released a new version of its client app for Android Market, which will work on any smartphone running Android OS 1.6 or higher.
The company aims to facilitate the process of discovering new software and its purchase. That's why new Android Market will have a Cover Flow-like style of app listings and include new categories like Widgets and Live Wallpapers, as currently the catalog is filled pretty much with these kinds of software. Besides that, app pages will now have more info and links to related content.
Read the rest of this entry »
Yesterday Apple released a new 7.6.9 version of QuickTime media software, which has 15 vulnerabilities patched, including issues with FlashPix, PICT, GIF and JP2 images and AVI, MPEG, Sorenson, QTVR and other movie files. Most of it could cause an arbitrary code execution in case of exploit or unexpected application termination.
The security update is necessary only for Mac OS X Leopard 10.5 and Windows users, as Mac OS X 10.6.5 already has fixes to the vulnerabilities included.
QuckTime 7.6.9 can be installed through Software Update or by visiting the
Apple recently published a press release stating that new firmware iOS 4.2 for iPhone, iPod Touch and iPad will be available today.
Apple® today announced that iOS 4.2, the latest version of the world’s most advanced mobile operating system, is available today for download for iPad™, iPhone® and iPod touch®. iOS 4.2 brings over 100 new features from iOS 4.0, 4.1 and 4.2 to iPad including Multitasking, Folders, Unified Inbox, Game Center, AirPlay® and AirPrint.
The iOS 4.2 update is available today to download to iPad, iPhone and iPod touch by syncing the device with iTunes 10.1. iOS 4.2 is compatible with iPad, iPhone 3G, iPhone 3GS, iPhone 4, second and third generation iPod touch (late 2009 models with 32GB or 64GB) and new iPod touch. Some features may not be available on all products. For example, Multitasking requires iPhone 3GS, iPhone 4, third generation iPod touch (late 2009 models with 32GB or 64GB) or later.
However users are unable to update through iTunes right now, as well as there are no download links yet. The expected release time is 10 am Pacific Time.
Early this week Apple released an update for its Safari Web browser, with version 5.0.3 for Windows, Mac OS X Leopard and Snow Leopard, and 4.1.3 for Mac users running Tiger. The updated browser fixes the bug that could prevent users from submitting web forms and establish an encrypted, authenticated connection to the Safari Extensions Gallery. New version of Safari for Mac also solves an issue that could cause Web content to display incorrectly.
Other fixes, according to Apple, include:
As we promised, yesterday Apple released Mac OS X 10.6.5 update for Snow Leopard, which now available via Software Update. The public release is the same Build 10H574 that was seeded to developers on Monday. The 10.6.5 Update is recommended for all users running Mac OS X Snow Leopard. The full list of general fixes and improvements in Mac OS X 10.6.5, according to Apple, includes:
Nicholas Kimball, who is a spokesperson at Transportation Security Administration, told this week CNN that recently presented 11-inch MacBook Airs are small enough that they don't need to be removed from your bag if you're going through an X-ray machine at airport security. MacBook Pro though is still big enough and needs to be researched for the internal components.
It is unknown yet whether 13-inch MacBook Air will also get such a decision, so currently it needs to be taken out at airport security. But it may also be allowed not to be removed as 13-inch model doesn't have an optical and traditional hard drive ещщ.
Read the rest of this entry »
The Transportation Security Administration (TSA) has announced that the owners of new 11-inch MacBook Air are allowed not to remove their notebook from bag at security checkpoints in U.S. airports.
Apple partnered with Gemalto (digital security firm) to create a custom SIM card. Such card will be integrated into the iPhone as a built-in chip, which will contain subscriber identification information for carriers and allow users to activate their devices with a broad array of carriers. The new device will be of most use in Europe, where there are many competitive carriers operating on similar technologies.
New Bloomberg report reveals that Apple has made a contract with Unisys Corp to help it sell its products to enterprise and government clients, so now Unisys also provides "maintenance and other services to companies and government agencies that purchase Apple devices."
The history of Unisys is similar to the IBM's one. Nowadays it is a provider of IT-services for huge corporations, airports, the FAA, TSA, IRS, though 30 years ago it was a mainframe hardware vendor.
Read the rest of this entry »
The hole found in iOS 4.1 allows someone to make calls, gain access to the owner’s contact list, and send emails to anyone in said contact list via a passcode locked iPhone.
Using the combination of sleep button and a fake emergency call, it is possible to access the phone’s contact list and regular keypad even if the device is locked:
Famous hacker Geohot is back and today he released the latest iOS 4.1 jailbreak. It is called LimeRa1n and supports iPhone 3GS, iPod Touch 3G, iPad, iPhone 4, iPod Touch 4G with iOS firmwares 4.0-4.1 and beyond. It can also hacktivate your device, so there is no need in phone SIM-cards and other tricks.
This software is still in beta and was updated 3 times in last several hours. So use with caution.
There is Windows version only for now. Geohot plans to release LimeRa1n for Mac and Linux soon. You can Download it here.
Some users report that they have jailbroken their iOS 3.2.2 iPads successfully with limera1n, while others report that they tried, but failed.
Do not forget to backup.
For many users of iPhone 3GS and iPhone 4 with iOS 4.0.2 now there is a hope to perform jailbreak using LimeRa1n and unlock using ultrasn0w. We recommend NOT to do it if you have not saved your SHSH keys. You can try, but if something goes wrong without SHSH keys you'll have to restore to iOS 4.1, and there is no unlock for iOS 4.1 (possibly forever). Just wait for PwnageTool utility.
DevTeam reported that Limera1n uses a different exploit than SHAtter, so they will not release SHAtter utility, they don't want let Apple fix both security holes. However they plan to release PwnageTool using the same exploit.
You can find our LimeRa1n tutorials tutorials:
A new updated browser Safari 5.0.2 has been released. It takes 40MB.
This update includes improved compatibility and security, including the following fixes and features:
• The problem preventing users from filling out web forms has been successfully fixed.
• The problem leading to the incorrect display of web content while viewing Google images with Flash 10.1, has been fixed as well.
• The encrypted connection to the Gallery of Safari Extensions has been established.
More information about the security on the content provided by the update, you can find out by visiting the website: http://support.apple.com/kb/HT1222
Download the application
Apple on Thursday seeded with developers the third beta of Mac OS X 10.6.5, its latest security and maintenance update for Snow Leopard, with just one known issue.People familiar with the latest build, reportedly known as 10H531, said the lone issue is associated with VMware. Having it installed can cause USB devices to not work when the Mac is awoken from sleep mode.
Those same people said Apple has asked developers to focus on a few key areas for the latest beta, including iCal, Mail, USB Devices, QuickTime, Time Machine and 3D graphics. The delta update is said to be a 557MB download.
Paul Devine, the Apple supply manager charged with accepting kickbacks from overseas partners, allegedly had more than $150,000 in cash stashed in shoe boxes in his home when it was raided by federal agents. Moreover, the investigation had found “a significant number of overseas accounts and a significant amount of money”. The judge determined that Devine represents a potential flight risk if he is let out on bail before the foreign funds have been moved into the U.S.
Earlier this month, Devine was arrested and charged with wire fraud, kickbacks and money laundering. Prosecutors have alleged that the Apple global supply manager used his security clearance to provide confidential information to the hardware maker's suppliers. Apple's partners then allegedly used the information to negotiate favorable contracts with Apple, and, the prosecution says, paid kickbacks to Devine. Devine is accused of accepting more than a million dollars from Asian suppliers.