Apple has issued Security Update 2010-002 (Mac OS X v10.6.3) that fixes 100 enumerated vulnerabilities in: — Mac OS X 10.5 — Mac OS X 10.6 — Mac OS X Server 10.5 — Mac OS X Server 10.6 The 400 MB+ download takes a while, so, be prepared. Info here: http://support.apple.com/kb/HT4077
Let the iPad hype and excitement begin: Apple’s preparation for the launch of the iPad has kicked into high gear. Today, the tech giant released version 9.1 of iTunes, its vastly popular music, app, and now book-managing software. The new update doesn’t do anything like radically change the iTunes interface. Instead, it is focused on providing support for the iPad, which launches this Saturday. The big addition in this software update is iPad syncing. Thus if and when you plug that glorious iPad of yours into your computer on Saturday, it’ll sync your computer’s music, movies, books, and other media with your tablet device. ...
In the Pwn2Own hacking contest at the CanSecWest security conference in Vancouver, Canada, security researchers and hackers quickly hacked three of the major browsers to take control of the underline operating systems. — A German hacker who goes by the handle “Nils” used a previously unknown vulnerability in Mozilla’s Firefox to gain control of a 64-bit Windows 7 machine. — Peter Vreugdenhil an independent researcher from the Netherlands, used several vulnerabilities in Internet Explorer to take control of a machine running a patched 64-bit Windows 7 implementation. ...
Recently, Opera team submitted its Opera mini app to Apple for inclusion in iTunes app store. It may take quite some time for the opera app to be approved. Till then you can see below the official screenshots of Opera Mini running on iPhone. ...
Charlie Miller, Principal Analyst at Baltimore, Md.-based security firm ISE, has made news in the last two days saying that he found 20 perviously-unknown security vulnerabilities in Apple’s OS X operating system. News stories seem to anticipate that he will reveal them at the CanSec West conference next week in his talk “Babysitting an Army of Monkeys: An Analysis of Fuzzing 4 Products with 5 Lines of Python.” However, Miller tweeted: “To be clear, I’m not revealing 20 apple bugs at #cansec, I’m revealing how I found 20 apple bugs.” ...
Are Mac OS X rogues an emerging threat? For many years discussions of the potential for malware on Macs have ended with the conclusion: “there isn’t much yet, but as soon as Mac gets a big market share the dark side is going to start writing the code.” There are indications that the bad guys are working on it. There have been some blog posts suggesting that the dark side is working hard to create a Mac OS X compatible rogue. SCMagazine is carrying a piece quoting a spokesman for researchers at Intego. Apparently Intego researchers got proof-of-concept code for an OS X rogue from underground sources and determined that it didn’t quite work. However, they concluded that some sophisticated coding was going on: ...
Most of us are familiar with how high profile news events are used for malware distribution. We’ve seen it many times such as with Tiger Woods’ scandal and the earthquake in Haiti. Now the recent earthquake in Chile is used to prey upon unsuspecting folks interested in what’s going on with the post-quake and tsunami. This shows we should really be careful in our choices of where we go to get information. Try any related search term or phrase related to “Chile Earthquake”, “Tsunami”, etc. I’ve done so and will walk us through a few examples of risky to malicious content that my search turned up. This type of malware distribution tends to target the broadest audience possible, so I entered the search term “Chile” and then let Google auto-complete my search to “Chile quake 2010 tsunami” to load what is a popular search phrase. Almost immediately, among some recognizable news site results are random blog posts touting words like “download” or “.exe”. We should be suspicious of these. ...
Apple yesterday released a huge Safari update that fixes 16 vulnerabilities – six for Windows versions and ten for Mac OS X and Windows. The update, Safari 4.0.5, makes fixes in Tiger, Leopard, Snow Leopard and Windows versions. This is probably pretty significant. In November, the TheInquirer.net of the UK carried a piece about browser vulnerabilities that rated Firefox and Safari as the ones with the most vulnerabilities: ...
For anyone that missed Microsoft CEO’s Q&A during the Search Marketing Expo West yesterday, a transcript is now available online. I went through and picked out key quotes, so that you don’t have to read the whole thing. Several things stand out from Ballmer’s comments: Mobile operators that want a search engine other than Bing can’t have Windows Phone 7 Series. Microsoft almost certainly is stirring up trouble for Google in Europe through third parties. Microsoft isn’t interested — at least for now — in releasing a Bing application for Android phones. A Bing for iPhone search deal is still possible, simply because Ballmer deflected the question rather than denying it. Twitter is a great Microsoft partner, but the value of an acquisition is “not clear.” My favorite quote from the Q&A: “I haven’t found that when you’re trying to sell something to somebody yelling is very effective.” How funny is that. coming from boisterous Ballmer? ...
Apple has sued smartphone maker HTC for patent infringement, citing 20 patents related to the iPhone’s user interface, architecture, and hardware, a statement from the company said this morning. A statement from Apple CEO Steve Jobs today said, “We can sit by and watch competitors steal our patented inventions, or we can do something about it. We’ve decided to do something about it. We think competition is healthy, but competitors should create their own original technology, not steal ours.” ...