Security industry reacts to Apple iOS triple zero-day threats
Active threats that can exploit Apple devices are not commonplace. That said, Apple has just fixed an exploit that uses no less than three critical iOS zero-day threats.
Apple
The worrying case of the Su-A-Cyder sandjack attack
We get inside the tale of the iOS SideJacking app vulnerability that Apple knows about but hasn’t patched yet. Are you sitting comfortably? Then we’ll begin.
FBI vs. Apple: “It’s impossible to design a ‘backdoor’ that doesn’t compromise security”
IT Security Thing’s Davey Winder has been telling anyone who will listen that the FBI is being disingenuous when it comes to demanding a backdoor from Apple.
MongoDB not to blame for MacKeeper data breach
So 13 million MacKeeper users have had their data potentially exposed following a breach. Or at least that’s what you might think having scanned the online headlines.
Google Nexus 6P security teardown
The Google Nexus 6P has finally started shipping in the UK, and here at IT Security Thing we have got our hands on one to do a Google Nexus 6P security teardown.
Inside XCodeGhost iOS threat: weaponising Apple’s application development software
The XCodeGhost iOS threat is back, and this time it’s serious; seriously stealthy. Oh, and it’s also no longer largely a Chinese problem. IT Security Thing investigates.
More Hacking Team fallout: Masque Attack weaponised and in the wild
The Hacking Team breach just keeps on giving, and now researchers have uncovered evidence of a fully weaponised Masque Attack infrastructure in the wild courtesy of the compromised documentation dump.
Adobe Flash: Time to say goodbye
Adobe Flash is, without a shred of doubt in my mind, living on borrowed time. This is courtesy of many things, but most of all the consistent insecurity record that follows it around like a crazed stalker in a bad movie.