Friday, April 25, 2014

Apple Fixes Major SSL Bug

Apple has fixed a serious security flaw present in many versions of both iOS and OS X.  This flaw could allow an attacker to intercept data on SSL connections. The bug is one of many the company fixed Tuesday. The bug joins a list of serious problems that have affected SSL in recent months. The most notably tissue was the OpenSSL heartbleed vulnerability.

https://threatpost.com/apple-fixes-serious-ssl-issue-in-osx-and-ios/105631
Posted by at No comments:

Wednesday, April 23, 2014

Malware attack on iOS devices


Mysterious malware steals Apple credentials from jailbroken iOS devices

 A malware campaign of unknown origin is infecting jailbroken iPhones and iPads.  It is stealing Apple account credentials from the SSL encrypted traffic. The threat was discovered after some users reported they experienced crashes in some applications.  

http://www.infoworld.com/d/security/mysterious-malware-steals-apple-credentials-jailbroken-ios-devices-240954
Posted by at No comments:

Wednesday, April 16, 2014

Microsoft Confirms It Is Dropping Windows 8.1 Support


Microsoft announces that in May Windows 8.1 will not be patched, and that users must get the Windows 8.1 Update if they want security patches.

For those users who are still using Windows 8 you are unaffected and will continue to receive updates as normal.

More detailed information can be found in the following links:

KB2919355 (Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 Update April, 2014)
http://support.microsoft.com/kb/2919355
Posted by at No comments:

Saturday, April 12, 2014

OpenSll and Heartbleed


A very serious bug in OpenSSL 1.0.1 has been discovered that can leak just about any information, from keys to content. It appears to have been introduced in 2011, and known since March 2012.  OpenSSL logs show that German developer Robin Seggelmann introduced the bug into OpenSSL two and a half years ago while working on the project. 
 
http://www.zdnet.com/heartbleed-serious-openssl-zero-day-vulnerability-revealed-7000028166/
Posted by at No comments:

Sunday, April 6, 2014

Bad week for Xbox One

Five-Year-Old Uncovers Xbox One Login Flaw

Five-year-old boy from San Diego has uncovered an embarrassing security flaw within the Xbox One login screen. By entering an incorrect password in the first prompt and then filling the second field with spaces, a user can log in without knowing the password to an account.

http://www.bbc.com/news/technology-26879185
Posted by at No comments:
Subscribe to: Posts (Atom)