apple – Page 8 – SSL and internet security news

Susan Landau’s New Book: Listening In

January 10, 2018 infossl

apple, books, cryptography, cybersecurity, fbi, lawenforcement, privacy, Security technology, surveillance

Susan Landau has written a terrific book on cybersecurity threats and why we need strong crypto. Listening In: Cybersecurity in an Insecure Age. It’s based in part on her 2016 Congressional testimony in the Apple/FBI case; it examines how the Digital Revolution has transformed society, and how law enforcement needs to — and can — … Read More “Susan Landau’s New Book: Listening In” »

Security Vulnerability in Apple’s HomeKit

December 21, 2017 infossl

apple, Security technology, vulnerabilities

The story of the recent vulnerability in Apple’s HomeKit. Powered by WPeMatico

Apple FaceID Hacked

November 15, 2017 infossl

apple, authentication, biometrics, cellphones, hacking, Security technology

It only took a week: On Friday, Vietnamese security firm Bkav released a blog post and video showing that — by all appearances — they’d cracked FaceID with a composite mask of 3-D-printed plastic, silicone, makeup, and simple paper cutouts, which in combination tricked an iPhone X into unlocking. The article points out that the … Read More “Apple FaceID Hacked” »

Impersonating iOS Password Prompts

October 12, 2017 infossl

apple, impersonation, ios, passwords, Security technology, socialengineering, spoofing, vulnerabilities

This is an interesting security vulnerability: because it is so easy to impersonate iOS password prompts, a malicious app can steal your password just by asking. Why does this work? iOS asks the user for their iTunes password for many reasons, the most common ones are recently installed iOS operating system updates, or iOS apps … Read More “Impersonating iOS Password Prompts” »

Apple’s FaceID

September 19, 2017 infossl

apple, authentication, biometrics, facerecognition, hacking, identification, Security technology

This is a good interview with Apple’s SVP of Software Engineering about FaceID. Honestly, I don’t know what to think. I am confident that Apple is not collecting a photo database, but not optimistic that it can’t be hacked with fake faces. I dislike the fact that the police can point the phone at someone … Read More “Apple’s FaceID” »

iOS 11 Allows Users to Disable Touch ID

August 21, 2017 infossl

apple, biometrics, ios, iphone, Security technology

A new feature in Apple’s new iPhone operating system — iOS 11 — will allow users to quickly disable Touch ID. A new setting, designed to automate emergency services calls, lets iPhone users tap the power button quickly five times to call 911. This doesn’t automatically dial the emergency services by default, but it brings … Read More “iOS 11 Allows Users to Disable Touch ID” »

Fighting Leakers at Apple

June 27, 2017 infossl

apple, intelligence, leaks, nsa, secrecy, Security technology

Apple is fighting its own battle against leakers, using people and tactics from the NSA. According to the hour-long presentation, Apple’s Global Security team employs an undisclosed number of investigators around the world to prevent information from reaching competitors, counterfeiters, and the press, as well as hunt down the source when leaks do occur. Some … Read More “Fighting Leakers at Apple” »

Second WikiLeaks Dump of CIA Documents

March 24, 2017 infossl

apple, cia, ios, leaks, Security technology, wikileaks

There are more CIA documents up on WikiLeaks. It seems to be mostly MacOS and iOS — including exploits that are installed on the hardware before they’re delivered to the customer. News articles. Powered by WPeMatico

Hackers Threaten to Erase Apple Customer Data

March 23, 2017 infossl

apple, backups, cloudcomputing, crime, cybercrime, extortion, hacking, Security technology

Turkish hackers are threatening to erase millions of iCloud user accounts unless Apple pays a ransom. This is a weird story, and I’m skeptical of some of the details. Presumably Apple has decided that it’s smarter to spend the money on secure backups and other security measures than to pay the ransom. But we’ll see … Read More “Hackers Threaten to Erase Apple Customer Data” »

Apple's Cloud Key Vault

September 8, 2016 infossl

apple, backdoors, backups, cloudcomputing, keys, lawenforcement, Security technology

Ever since Ian Krstić, Apple’s Head of Security Engineering and Architecture, presented the company’s key backup technology at Black Hat 2016, people have been pointing to it as evidence that the company can create a secure backdoor for law enforcement. It’s not. Matthew Green and Steve Bellovin have both explained why not. And the same … Read More “Apple's Cloud Key Vault” »