Back to Mobile View

Skip to Content

TUAW Deals

Tag: Vulnerability

iPhoneDevSDK responds to attack

Yesterday, Apple disclosed it had been targeted by a malware attack. Apparently, related to a recent Facebook breach, Apple issued a statement regarding the situation: "The malware was employed in an attack against Apple and other companies, and was spread through a website for software deve...

Continue Reading

Adobe releases emergency Flash update for OS X

Adobe released a security update for its OS X Flash Player that addresses a critical vulnerability being exploited in the wild. According to the Adobe advisory, the CVE-2013-0634 vulnerability targets OS X users running Firefox or Safari who encounter malicious Flash content on website. This vu...

Continue Reading

Another Mac Flashback variant out, but still uses same (patched) vulnerability

We're not quite done with Flashback yet. The good news is that the number of Macs affected by the trojan has gone down greatly, but the bad news is that there's a new variant of it out in the public. It's called Flashback.S, and just like the original, it can worm its way into a Mac's home fold...

Continue Reading

How to find/remove the Flashback trojan

According to Russian antivirus firm Dr. Web, over 600,000 Macs worldwide are infected with the Mac flashback trojan. The trojan can be installed if you visit a malicious website, and it will attempt to connect your Mac to a botnet. Fifty-seven percent of infected machines are located in the U...

Continue Reading

Security Alert: Safari for iOS 5.1 reportedly vulnerable to address bar spoofing

Users of iPhones, iPads, and iPod touch devices running Safari on iOS 5.1 should beware of a security issue that involves address bar spoofing. The issue was discovered by David Vieira-Kurz of, and involves "an error within the handling of URLs when using javascript's window.o...

Continue Reading

Several Apple notebook models susceptible to battery hack

Security researcher Charlie Miller discovered a potential vulnerability affecting the batteries within select MacBook, MacBook Pro and MacBook Air models. The firmware on the chipset that controls the battery is secured with a single, easy to break default password. Once a hacker has this passw...

Continue Reading

Security firm warns lack of iOS 4.3 update leaves iPhone 3G vulnerable

Security company Sophos is warning iPhone 3G and older iPod touch owners that their devices could be vulnerable to attack following Apple's decision not to make the iOS 4.3 update available to them. In addition to AirPlay improvements and iTunes Home Sharing, the iOS 4.3 update fixes a number o...

Continue Reading

Worm rickrolls unsecured jailbroken iPhones via SSH

For the last few days, some jailbroken iPhone users have found their home screen background a little different than they remembered. A hacker, going by the name "ikee," created a worm that changes the home screen background on jailbroken iPhones whose owners failed to change the default password aft...

Continue Reading

Dutch hacker accesses jailbroken iPhones, requests €5

Running a jailbroken iPhone has its risks, as a Dutch hacker has demonstrated. Specifically, he used a bit of port scanning to find jailbroken phones with SSH running in his native Netherlands. From there, he sent unsuspecting users a message that reads, "Your iPhone's been hacked because it's reall...

Continue Reading

Snow Leopard: Apple ships old, security-compromised Flash plugin with new OS

It's not that we have anything against the Flash plugin for Mac browsers. Well, other than the fact that it's crashy, and slow, and makes our laptop fans spin up like we're doing wind tunnel testing for the Air Force. But other than that, we have nothing against it -- and it's lovely that the new ...

Continue Reading

O2: SMS security flaw on iPhone to be patched Saturday

Yesterday's news from the Black Hat Technical Security Conference in Las Vegas about the SMS security flaw affecting iPhone, Android, and Windows Mobile smartphones was a bit unnerving. Through skillful manipulation of SMS messages, an attacker could gain control of a smartphone. BBC News reports th...

Continue Reading

Security researchers to unveil iPhone SMS vulnerability later today

Two security researchers, Charlie Miller and Collin Mulliner, have discovered a serious security vulnerability affecting SMS messaging on the iPhone that will be unveiled later today at the Black Hat security conference in Las Vegas. This flaw affects all iPhones and can allow an attacker to gain co...

Continue Reading

There's a hole in Safari, dear Liza

Update: Thanks as well to everyone who pointed out that we got our sources mixed up! The article linked is the 2007 CanSecWest, and we apologize for the confusion. The winner of the 2009 competition was Charlie Miller (sorry Charlie), and you can read more about this year's competition here -- IE8 ...

Continue Reading

Acrobat vulnerability may affect Mac users

As if the baked-in security issues weren't enough to deal with, Adobe has announced today that all versions since v7 of Acrobat and Acrobat Reader on all platforms -- including Mac OS X -- are vulnerable to an Javascript exploit that can crash Acrobat. [Correction, per The Register and Shadowserve...

Continue Reading

Safari RSS vulnerability might reveal your personal data

This vulnerability is patched in the 2009-001 security updates. When reports of security issues in Apple's Safari browser come over the transom, they get our attention. When they're exploitable in both the Mac and Windows versions of Safari, they get our full and undivided attention. When the person...

Continue Reading

© 2014 AOL Inc. All Rights Reserved.