29 posts and columns on vulnerability
Apple’s iOS passcode vulnerability issues have turned into a game of Whac-A-Mole. On Tuesday, the company shipped iOS 6.1.3, which repaired a pair of flaws that could be exploited to bypass an iPhone’s lockscreen to gain access to user data. Today, a similar flaw has been discovered in 6.1.3. It affects only the iPhone 4, and the hack to exploit it is quite involved. But a vulnerability is a vulnerability, and Apple now has another one to repair. To be fair, the iPhone maker isn’t the only company struggling with these issues. Samsung said today that it’s working on a fix for a lockscreen vulnerability on its Android devices.
Apple on Tuesday delivered a promised fix for a vulnerability in iOS 6.1 that could be exploited to bypass passcode locks on iOS devices. Built into the latest point release of iOS, 6.1.3, the fix repairs the flaw, which when exploited granted access to a device’s contacts, voicemails and photos.
News Bytean alert issued last week by Germany’s Federal Office for Information Security, Apple has patched a potentially dangerous PDF-related security vulnerability in MobileSafari. This morning the company issued iOS 4.3.4, an incremental update that corrects a flaw that could have been exploited by a malicious PDF file.
News Bytethe Safari Extensions Gallery, a showcase of about 100 extensions from the likes of Amazon, eBay, The New York Times, MLB and Twitter. Also included in this point release, a fix for that autofill vulnerability revealed last week.