Apple Implements Mac App Store Security Update for XARA Exploits

Jun 23, 2015 by iHash Leave a Comment

Apple has commented on a major security flaw in iOS and OS X that lets attackers steal passwords from any installed app.

Back in October, security researchers found a way to crack Apple’s keychain making it possible to steal passwords from any installed app including the native the Mail app without being detected. .

Following the public disclosure of the vulnerability, Apple told iMore it has implemented a security update and is working on some additional fixes.

Earlier this week we implemented a server-side app security update that secures app data and blocks apps with sandbox configuration issues from the Mac App Store,” an Apple spokesperson told iMore. “We have additional fixes in progress and are working with the researchers to investigate the claims in their paper.”

Leave a ReplyCancel reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

LogicMonitor Seeks to Disrupt AI Landscape with an $800 Million Strategic Investment at a Valuation of Approximately $2.4 Billion to Revolutionize Data Centers

LogicMonitor, a leading SaaS-based hybrid observability platform powered by artificial intelligence (AI), announced a transformative $800 million investment of new equity and strategic financing from a consortium of investors including PSG, Golub Capital and others. Vista Equity Partners will remain the controlling shareholder in LogicMonitor, which the transaction values at approximately $2.4 billion, including debt. […]

Transform Troubleshooting with Logz.io’s AI Agent

As Gartner predicts, AI will support up to 70% of performance monitoring and troubleshooting tasks in the next few years. The Logz.io AI Agent helps teams get ahead of this curve today. Too much time spent troubleshooting? You’re not alone. Manual investigation, jumping between dashboards, and piecing together scattered data are time-consuming and frustrating. That’s […]

MITRE Center for Threat-Informed Defense Secure AI Partnership

The goal of the Secure AI project is to fortify the security of AI-enabled systems and address the unique vulnerabilities and novel adversary attacks they face Its results were used to expand MITRE ATLAS®, a comprehensive knowledge base of adversary tactics and techniques targeting AI systems As a cybersecurity industry leader and a Center for […]

Assessing the Efficacy of Application Security in the Age of CI/CD

But application security is a tricky process to navigate for many DevOps and DevSecOps teams. Today’s applications are constantly evolving with new features and updates, continuously introducing the possibility of vulnerabilities and misconfigurations that could heighten risk. Further, organizations navigating the transition from DevOps to DevSecOps may lack the metrics needed to effectively track and […]

Billie Eilish is Apple Music’s Artist of the Year for 2024

Billie Eilish was announced today as Apple Music’s Artist of the Year, recognizing the singer-songwriter’s extraordinary impact throughout 2024. Following a historic second Academy Award win and two additional GRAMMY Awards for her contribution to Greta Gerwig’s feature-length film Barbie, “What Was I Made For?,” Billie released her third full-length album, HIT ME HARD AND […]

Strengthen SMB Security with Seamless Mobile Protection

Small and medium-sized businesses (SMBs) face many of the same cybersecurity threats as large enterprises but often lack the resources to maintain robust security across all devices. As SMBs rely on a growing number of smartphones and tablets, they must defend against a range of mobile-focused cyberattacks. The need for comprehensive security has never […]

Pangu Releases Updated Jailbreak of iOS 9 Pangu9 v1.2.0

Pangu has updated its jailbreak utility for iOS 9.0 to 9.0.2 with a fix for the manage storage bug and the latest version of Cydia. Change log V1.2.0 (2015-10-27) 1. Bundle latest Cydia with new Patcyh which fixed failure to open url scheme in MobileSafari 2. Fixed the bug that “preferences -> Storage&iCloud Usage -> […]

Apple Blocks Pangu Jailbreak Exploits With Release of iOS 9.1

Apple has blocked exploits used by the Pangu Jailbreak with the release of iOS 9.1. Pangu was able to jailbreak iOS 9.0 to 9.0.2; however, in Apple’s document on the security content of iOS 9.1, PanguTeam is credited with discovering two vulnerabilities that have been patched.

Pangu Releases Updated Jailbreak of iOS 9 Pangu9 v1.1.0

Pangu has released an update to its jailbreak utility for iOS 9 that improves its reliability and success rate. Change log V1.1.0 (2015-10-21) 1. Improve the success rate and reliability of jailbreak program for 64bit devices 2. Optimize backup process and improve jailbreak speed, and fix an issue that leads to fail to […]

Activator 1.9.6 Released With Support for iOS 9, 3D Touch

Ryan Petrich has released Activator 1.9.6, an update to the centralized gesture, button, and shortcut manager, that brings support for iOS 9 and 3D Touch.

JBL Flip 6 Portable Bluetooth Speaker (Open Box) for $74

Navee V25 300W Foldable e-Scooter for $299

Smart Tracker Includes Key Ring – Works with Apple Find My App (2-Pack) for $34

Harmony Premium Plan Lifetime Subscription for $99

Lenovo 11.6" 100e Chromebook 2nd Gen (2019) MediaTek MT8173C 4GB RAM 16GB eMMC (Refurbished) for $54

Apple Implements Mac App Store Security Update for XARA Exploits

Apple has commented on a major security flaw in iOS and OS X that lets attackers steal passwords from any installed app.

JBL Flip 6 Portable Bluetooth Speaker (Open Box) for $74

Navee V25 300W Foldable e-Scooter for $299

Smart Tracker Includes Key Ring – Works with Apple Find My App (2-Pack) for $34

Harmony Premium Plan Lifetime Subscription for $99

Lenovo 11.6" 100e Chromebook 2nd Gen (2019) MediaTek MT8173C 4GB RAM 16GB eMMC (Refurbished) for $54

Apple has commented on a major security flaw in iOS and OS X that lets attackers steal passwords from any installed app.

Share this:

Reader Interactions

Leave a ReplyCancel reply