Apple patches major iOS security flaw , OSX to be given a security patch soon

Apple has released a patch for its iOS mobile operating system, which runs on iPhones and iPads, after security researchers uncovered a major vulnerability that could allow hackers to intercept encrypted emails and other communications.
The flaw, which was first identified by security firm Crowdstrike, meant that critical checks on the validity of a website’s security (SSL) certificate were overlooked when users tried to establish a secure connection.
This meant that a hacker could potentially masquerade as a trusted site, such as Gmail or Facebook, and intercept encrypted traffic or modify the data in transit, in addition to breaching financial data or finding other sensitive information.
"It's as bad as you could imagine, that's all I can say," Johns Hopkins University cryptography professor Matthew Green told Reuters.
In a statement on its support website, Apple admitted that the software "failed to validate the authenticity of the connection". The iOS 7.0.6 update is intended for iPhone 4 or higher, fifth-generation iPod touch devices, in addition to the iPad 2 or later versions.
Security researchers claim the same flaw has also affected users of Apple’s desktop and laptop operating system, OS X Mavericks. Apple has not yet released a patch for OS X Mavericks, but claims that a fix will be coming soon.
Commenting on the news, Google software engineer Adam Langley said: "This sort of subtle bug deep in the code is a nightmare. I believe that it's just a mistake and I feel very bad for whomever might have slipped in an editor and created it."
Last September, Apple was forced to issue a patch for a security glitch that allowed potential fraudsters to access personal information held on an iPhone without unlocking the handset.
The glitch was uncovered just hours after the company made its new operating system iOS 7 available to download for users with older Apple devices. Videos posted online showed how to get around the lockscreen and gain access to the owner's photographs, Twitter account and email inbox.
Apple took just six days to fix the security glitch. However, it has been criticised in the past for reportedly taking as long as two weeks to react to problems.

Telegraph.co.uk , Infowars

Comments

iPad (2022) and iPad Pro with M2 announced

Apple has announced their latest iteration of the iPad (entry level model) and the iPad Pro lineup with the new M2 processor. The event, held on the 18th of October as a recorded session displayed the key features of the iPads with the most significant being the base model iPad which has now received an upgrade. iPad 2022 This model of the base model iPad ditches the almost 12 year old home button and display layout and goes for a cleaner display only design found on the iPad Air . The chassis, which now comes with flatter sides and a TouchID fingerprint sensor on the top has also abandoned the lightning port in favor of USB C and it also comes with a set of pogo style connectors for accessories including a keyboard with trackpad. Internally, the iPad comes either as a Wifi only (Wifi6) and a 5G cellular model and is offered with 64 or 256GB of storage. The processor has also been upgraded to the Apple A14 which is the same found on the iPhone 12 series and last year's iPad Air. L

HTC One to sell as TD 101 at China Mobile

HTC decided to invest in such a brand by launching the One series of smartphones last year, although the company was not able to impose its own product names to certain carriers. Then, just a few days ago, the company launched the HTC One, which is going to be the company’s only One-branded handset this year, a make-or-break kind of project for the Taiwanese Android maker that’s still having a tough time fighting against the competition, especially Samsung. We were under the impression that HTC will further invest in its One brand and not budge to carrier demands anymore when it comes to changing the name of the product – in the U.S., AT&T, Sprint and T-Mobile are going to sell it as the HTC One. But it looks like things aren’t necessarily so, and no, it’s not Verizon that’s going to get its way selling the One as the Droid DNA Plus, as it was recently rumored. We’re looking at China Mobile this time around, which has announced the HTC One as the HTC TD 101. That’s certa

Google Pixel 7 and Pixel 7 pro along with Pixel watch unveiled.

Google announced their latest Pixel 7 and Pixel 7 Pro smartphones along with the Pixel Watch - google's first wearable at a special launch event today. The devices, which are powered by Google's second generation Tensor SOC bring major improvements in photography which has always been Google's highlight. Google Pixel 7 and Pixel 7 Pro. Google's Pixel 7 and the Pixel 7 Pro are Google's latest flagship phones for 2022. The devices, which have been developed around the Tensor G2 - Google's second generation processor developed on a 4nm architecture. The chipset, which consists of 2 Cortex X1 cores, 2 Cortex A78 cores and 4 Cortex A55 cores with a Mali G710 MC10 GPU cores and the chip is paired with 8GB of RAM for the Pixel 7 and 12GB RAM for the Pro variant. Both models come with 128 / 256GB of UFS 3.1 storage and the pro model comes with 512GB. The phones, which come with two different display sizes consist of a 6.3" 2400x1080 AMOLED display with 90Hz refre

MasHD Blog

Search This Blog