iOS

Phil Schiller points to new mobile security report criticizing Android

Phil Schiller doesn’t tweet very often. But when he does, he tends to make good use of his 115,000+ followers. Early last year the executive tweeted a link to an Android-slamming mobile malware report, and today he's pointed to another report that highlights Android's security flaws.

This afternoon, Schiller tweeted a link to Cisco's 2014 Annual Security Report, which was released last week. The report notes that overall vulnerabilities are the highest they've ever been (since tracking began in 2000), and that 99% of all mobile malware is targeted at Android devices...

Is iCloud Keychain available in my country?

With Tuesday's free release of OS X Mavericks, Apple users can now opt to have their Safari web passwords securely synchronized across their iOS devices and Macs through the power of iCloud. The useful feature dubbed iCloud Keychain made a brief appearance in iOS 7 betas before being pulled from iOS 7 Gold Master, only to re-surface in iOS 7.0.3. What you probably don't know is that iCloud Keychain isn't necessarily supported everywhere so Apple's published a handy list detailing iCloud Keychain availability by country...

Google’s Eric Schmidt says Android is more secure than the iPhone

Back in August, an unclassified US government report on mobile security surfaced with data showing the various malware threats discovered on different platforms. And Android took the top spot, accounting for nearly 80% of all threats.

With that in mind, it's not surprising that Eric Schmidt garnered some laughs yesterday during a question-and-answer session at the Gartner Symposium, when he said that the Android platform was more secure than Apple's iPhone...

Apple releases iOS 7.0.2 fixing Lock screen security vulnerability

Apple has just released iOS 7.0.2 (build 11A501) as an over-the-air update for the supported iPhone, iPod touch and iPad devices.

Release notes for the software indicate the firmware update fixed bugs that could let nefarious users bypass your Lock screen passcode.

As recently detailed by YouTube user Jose Rodriguez, the security vulnerability involves a series of complex taps on the iOS Lock screen to gain access to a bunch of stock apps containing personal data like photos, email, text messages, Facebook and Twitter accounts and much more...

Apple removes iCloud Keychain from iOS 7 GM, here’s why

Yesterday, Apple seeded its registered iOS developers with a so-called Gold Master version of iOS 7, which is essentially the same version owners of iPhone, iPod touch and iPad devices will be getting come September 18.

Unfortunately, it seems the company has quietly pulled the useful iCloud Keychain feature from the GM build. The company did not provide an explanation as to why exactly the feature got yanked.

For what it's worth, it's entirely possible the company leadership didn't feel confident enough to declare iCloud Keychain ready for prime time. We have another theory...

New iOS vulnerability lets malware slip through

Apple's iOS is generally considered the most reliable and secure mobile platform out there so little wonder that iPhones and iPads are the gadgets of choice of mobile workers everywhere. Despite its Unix underpinnings, iOS of course isn't bullet-proof - no software is. But unlike Google's malware-infested Android, you don't hear every day about an iOS weakness so fatal it opens the door to malware.

Unfortunately, today is precisely that day as researchers from the Georgia Tech Information Security Center (GTISC) publish details about a newly discovered iOS vulnerability that allows malware installation via seemingly innocuous apps.

The weakness circumvents Apple’s security measures and paves the way to "significant security threats to the iOS platform." We're expecting a swift response on Apple's part and a fix via a future update...

Apple issues another system status update to developers

Although the majority of its services are back online and in working condition, Apple has been diligent about keeping developers updated on the progress of its efforts after suffering a security threat a few weeks back.

Key services like the iOS and Mac dev centers are back online, but there are still a few items that remain stuck in limbo, namely, Xcode automatic configuration, TSIs, program enrollments, and renewals in Member Center.

Apple says that it expects that the majority of the remaining services should be back online this week. Have a look inside for the full e-mail that was issued to developers today.

BlackBerry rolls out Secure Work Space to iOS and Android

Canadian smartphone maker BlackBerry today announced Secure Work Space, a new option for increased enterprise security on iOS and Android devices. Part of BlackBerry Enterprise Services 10, Secure Work Space extends BlackBerry security for iOS and Android smartphones and tablets without the need for a VPN infrastructure. Specifically, the option provides secure email, calendar, contacts and browser, as well as secure document management and work app deployment...

Accessory vendor bypasses iOS 7 Lightning check

One of the little-known features of iOS 7 that not many people will like is its background check of whether or not a third-party accessory is hooked up to the your iPhone, iPod touch or iPad using a non-certified Lightning cable.

We've know Apple has tightened its MFi program rules (MFi stands for 'Made for iDevice') and iOS 7 seems to be stepping up a cat and mouse game between Apple and non-MFi vendors....

Default iOS hotspot passwords can be cracked in under a minute

You may want to reconsider using a default password iOS provides for hotspot functionality as researchers at a German university warn of the weaknesses that let attackers crack any default iOS hotspot password in under a minute. Although Windows Phone uses even weaker passwords and some Android vendors weaken their device's security by modifying the Wi-Fi-related components, Apple's problem is that iOS generates "random" hotspot passwords using a dictionary of only 1,842 different entries...

Prosecutors combine to fight smartphone thefts

While its no case of Elliot Ness against Chicago's rum runners of Prohibition days, prosecutors in two major U.S. cities are teaming up with local police to fight a wave of violent smartphone thefts. Law enforcers Thursday issued an SOS of sorts, or 'Save Our Smartphones'.

The announcement comes as Apple and other smartphone makers meet with the New York State Attorney General and San Francisco's District Attorney. It's unknown whether Apple's new Activation Lock feature unveiled during Monday's WWDC keynote as part of iOS 7 will be enough to satisfy calls for handset makers to create a kill switch to disable stolen smartphones...

Security flaw compromises restricted iOS apps

Yesterday, we highlighted a proof-of-concept iPhone charger by researchers at the Georgia Institute of Technology which can be used to install malware on your non-jailbroken iPhone, iPod touch or iPad in under a minute. It's another example of the cat and mouse game played between hackers and Apple.

Today, we received word of an iOS security flaw which can be exploited to break the password required to restrict access to apps, content and features on your iPhone, iPod touch or iPad...