By Cody Lee on Aug 16, 2016
You can now watch Apple’s ‘Behind the Scenes of iOS Security’ presentation from this year’s Black Hat Conference in its entirety. A video of the talk, featuring the company’s head of security engineering Ivan Krstic, has been posted to the official Black Hat YouTube page.
Apple’s presence at the conference was a nice change of pace, as the firm typically skips the event. Krstic covered a wide range of topics, including the technologies his team uses in services like HomeKit and iCloud Keychain that handle exceptionally sensitive user data. Read More
By Anthony Bouchard on Aug 13, 2016
All of Apple’s iPhones since the iPhone 5s, and even the latest iPad models, come with Touch ID fingerprint scanners that let you have access to your device almost immediately without the need to waste time entering a password or passcode at the Lock screen.
However, if you never use a passcode anyways, but you still enjoy the functionality of Touch ID, you can use a new jailbreak tweak called AlwaysTouch. Read More
By Anthony Bouchard on Aug 10, 2016
LockShot is a new jailbreak tweak in Cydia that brings a new blurred aesthetic to the Lock screen so you can see what’s behind it.
In this review, we’ll show you how it works and provide some examples of its tantalizing appearance. Read More
By Christian Zibreg on Aug 9, 2016
Apple’s unexpected decision to leave certain parts of the iOS 10 kernel unencrypted didn’t sit well with some privacy advocates over fears that the move could aid nefarious users to look for security weaknesses in the iOS software. But as it turns out, we now know that an unencrypted kernel allows iOS 10 to run faster: Ivan Krstić, Apple’s head of Security Engineering and Architecture, explained at the Black Hat security conference that the unencrypted iOS 10 kernel has absolutely no impact on platform security nor does it decrease security of encrypted user data. Read More
By Christian Zibreg on Aug 9, 2016
The New York Times article headlined “Once Taunted by Steve Jobs, Companies Are Now Big Customers of Apple” contains an interesting side-note which claims that network giant Cisco is currently testing an upcoming software “that gives priority to mobile devices or apps” ahead of its unveiling next month.
The forthcoming software solution is clearly born out of a partnership that Apple and Cisco struck last year to optimize iOS devices and apps for enterprise users. Read More
By Anthony Bouchard on Aug 9, 2016
Where security is a concern, 3DAppLock is a new jailbreak tweak that helps add some peace of mind.
The tweak lets users lock certain applications on their Home screens with either Touch ID or a password by simply using a 3D Touch gesture on the app icon itself. Read More
By Anthony Bouchard on Aug 5, 2016
Despite Apple’s release of iOS 9.3.4 on Thursday, which patched the jailbreak that’s currently available from Pangu for iOS 9.2-9.3.3, it would seem that Apple has failed to fill all of their security holes.
Well-known iOS hacker and developer Luca Todesco has already started sharing teaser images of iOS 9.3.4 jailbroken on Twitter. Read More
By Cody Lee on Aug 4, 2016
Apple on Thursday launched a new bug bounty program, in which it will pay researchers cash for discovering vulnerabilities in its products. The announcement was made at the annual Black Hat security conference by Apple’s head of security engineering Ivan Krstic.
Several major technology companies, such as Microsoft and Google, have long offered similar programs, but Apple has remained a holdout until now. The iPhone-maker will pay anywhere between $25K and $200K for exploits, depending on where it is and what it does. Read More
By Anthony Bouchard on Aug 4, 2016
Apple has released iOS 9.3.4 on Thursday with “important improvements to the security” of iOS.
On the other hand, we understand iOS 9.3.4 actually just kills the semi-untethered jailbreak for iOS 9.3.3. As a result, it’s highly recommended that you get your devices to iOS 9.3.3 and jailbroken if you value having a jailbreak at all. Read More
By Christian Zibreg on Aug 4, 2016
Apple on Thursday unexpectedly released iOS 9.3.4, a minor update to the mobile operating system powering the iPhone, iPad and iPod touch. Release notes accompanying the small download mention that iOS 9.3.4 provides “an important security update” and is recommended for all iOS 9 users. The update can be applied over-the-air on iOS 9 devices in Settings → General → Software Update and has been confirmed to patch the Pangu jailbreak. Read More
By Christian Zibreg on Aug 3, 2016
Telegram, a secure instant messaging service that supports rich media attachments and optional end-to-end encryption, today refreshed its mobile app on the App Store with a few new features. Telegram for iOS, now bumped to version 3.11, offers some interesting new sticker packs and lets you archive those you no longer use.
You can now preview groups before joining them and store your messages and media in the new storage chat.
Telegram is available free on the App Store and Mac App Store. Read More
By Anthony Bouchard on Aug 3, 2016
If you have one Mac, and multiple users, then you might use the built-in Parental Controls to manage what those users can and cannot do. Doing so can help the security of your system in many ways.
In this tutorial, we’ll show you how to you can essentially copy the Parental Control settings from one of your Mac’s users over to another user so they’re managed in the same way. Read More
By Christian Zibreg on Aug 2, 2016
According to a post published yesterday on the official YouTube Engineering and Developers Blog, 97 percent of YouTube’s traffic is now encrypted since the Internet giant began rolling out encryption using HTTPS two years ago. Encrypted traffic increases your security by garbling the data as it travels from servers to your computer, and vice versa, in order to make these transmissions unreadable to rogue parties without an encryption key. Read More
By Anthony Bouchard on Jul 31, 2016
Pangu was recently subjected to trust issues after a thread made it to Reddit claiming that some users had unauthorized charges from Beijing on their PayPal account after jailbreaking, others had their Facebook account show login attempts from various Asian countries, but mostly from China.
Despite all of the confusion, Pangu has made an official statement, and we have the scoop. Read More
By Anthony Bouchard on Jul 30, 2016
Apple recently revoked the 1-year enterprise certificate for the iOS 9.3.3 jailbreak, which is why you don’t get it anymore when you jailbreak with Pangu. Instead, you get a 7-day certificate that forces you to side-load the jailbreak app from your computer every week.
On the other hand, it is possible to get the 1-year enterprise certificate on your iOS 9.3.3 jailbreak right now, but you have to do a little trickery. We’ll show you how in this tutorial. Read More
By Anthony Bouchard on Jul 27, 2016
Over the weekend, Pangu and 25PP launched a jailbreak for iOS 9.2-9.3.3, and not long after, iOS developers found a way to make the jailbreak possible via the Safari web browser without the need to use a computer.
Unfortunately, however, Apple appears to be blocking the enterprise certificate that has been used in this process, so attempting jailbreaks from the device itself isn’t currently working. Read More
By Christian Zibreg on Jul 25, 2016
Aside from other exciting hardware features, such as a bezel-less, wraparound OLED screen with integrated Touch ID and click-less Home button, Apple’s tenth anniversary iPhone could bring out iris scanning capabilities next year, Taiwanese trade publication DigiTimes said Monday. The technology could be potentially used to replace, or augment, Touch ID verification to boost security.
Some phones, like Samsung’s upcoming Note refresh, are expected to adopt iris scanning later this year. Keep in mind that DigiTimes has a hit-and-miss record so the DigiTimes report should be taken with a grain of salt. Read More
By Christian Zibreg on Jul 22, 2016
Apple’s OSes suffer from a previously unknown exploit which could allow an attacker to compromise the security of a device by having the user open an unsuspecting TIFF image file. Thankfully, the vulnerability has been patched in the most recent releases of iOS, macOS, watchOS and tvOS.
Resembling the dangerous Stagefright exploit that plagued Google’s Android platform for the better part of last year, the security hole could allow a nefarious user to gather sensitive data from your device as soon as you access a simple text message containing a malicious TIFF image file, Fortune said yesterday. Read More
By Anthony Bouchard on Jul 20, 2016
An exploit recently uncovered in iOS versions 9.3.2 and earlier could allow a hacker to compromise the security of a device by having the user open an unsuspecting TIFF image file.
A new free jailbreak tweak called TIFF Disabler is available in Cydia right now, and in this piece, we’ll discuss why all jailbreakers should install this tweak pronto. Read More
By Anthony Bouchard on Jul 17, 2016
Those of you still rocking a jailbreak despite these dry last few weeks have some new jailbreak tweaks to check out this weekend.
One of those is ProximityLock, which is a new freebie that lets you lock your iPhone with nothing more than the proximity sensor by waving your hand over, or putting your finger over the sensor right by the front-facing camera and ear speaker. Read More