iOS

Following the iOS debacle, Mountain Lion now asks permission to access contacts too

It seems that Apple's learnings from the Path Contacts debacle have extended to the Mac, too, with the latest Developer Preview of OS X 10.8 Mountain Lion also seeing a Contacts-based new security addition.

Those with reasonable memories will remember that Path, the social networking app that was all the rage not long ago, got itself into some hot water for taking all the details from the iOS Contacts app – names, numbers, email addresses and more – and uploading them to its own servers. This led to all kinds of scaremongering and ultimately, Apple decided to add a warning message to iOS that tells users when an app is requesting access to contact details. Users then have to option of allowing or blocking that access.

Now it appears that Apple has pulled this security feature across from iOS to the Mac, or at least it will in the next version of OS X when it arrives later this year...

Apple Accused of Providing Backdoor iOS Access to Indian Military

ZDNet has just published an interesting report claiming that Apple, along with both RIM and Nokia, has built in backdoor iOS access for the Indian Military, leaving text messages, voice calls, and data trails completely exposed.

As you can imagine, after the recent CarrierIQ scandal, this information is making some waves around the internet. And what's even worse, it sounds like the hidden trapdoor has been used in some not-so-kosher situations... 

German Leaders Question Apple Over Carrier IQ Use

The Carrier IQ fallout continues as more and more information surfaces about the smartphone spyware. The user-tracking software was exposed earlier this week when a 25 year old systems administrator posted a startling video of it in action.

The video has prompted investigations, both here in the States and abroad, as government officials seek out more information on the eery application. In fact, Apple is having to answer questions from German regulators regarding the Carrier IQ agent...

Carrier IQ’s Creepy User-Tracking Software Found in iOS, Here’s How to Turn it Off

Over the last couple of days, there has been a lot of talk around the web regarding Carrier IQ. The company makes user-tracking software for Android, BlackBerry, and Symbian handsets that secretly logs keystrokes, text messages, and other data.

Initially, the program was thought to be exclusive to the above-mentioned operating systems, so we didn't feel the need to report on it. But chpwn, a well-known developer of jailbreak apps, has recently found Carrier IQ's software hidden within iOS...

Apple Isn’t the Only Company Who Worries About Jailbreaking

There's a new jailbreak in town, and it isn't for the iPhone, iPod touch, or iPad. Research In Motion PlayBook tablet has been jailbroken. For the first time in the Blackberry maker's history, hackers have gained root access to the OS.

Why is this a big deal? Not only is it the first official "jailbreak" to occur outside of Apple's ecosystem, but it's also a slap in the face to RIM's enterprise-minded, security-conscious mindset.

Android Malware Up a Shy 472% Since Last Summer

For years, security firms have agreed that iOS is one of the most secure mobile platforms in existence. Apple's stringent app approval process and the limited API access it gives to third party developers has proven effective in keeping iOS safe from malware.

Google takes the exact opposite approach with its Android operating system. And while that's proven effective in drawing in iOS defectors who don't appreciate Apple's 'walled garden' of an operating system, it also leaves its users susceptible to malicious software...

‘AppLocker’ Password Protects Your Individual iOS Apps

Here's a pretty useful little iOS tweak, especially if you've got kids who like to go tapping icons on your iPhone, with little regard for your saved game progress or super-important work document you've been editing.

Just as AppLocker's name might suggest, this $0.99 tweak adds a new pane to Settings.app, in which a password lock can be added to all your iOS applications, meaning they won't launch unless you know the special word.

That's all fine and dandy, but AppLocker goes one step further than that...

Warning: Skype for iOS Has a Vulnerability that Allows Hackers to Steal Your Data

If you're using Skype for iOS version 3.0.1 or older, you might want to think twice before opening messages from people you don't know. According to a security expert, a cross-site scripting (XSS) vulnerability exists in the Chat section of Skype for iOS on both the iPhone and iPod touch.

Apparently, Skype fails to properly encode the "full name" of the sender of an incoming chat message, allowing the sender to add malicious JavaScript code that can be executed as the message is opened...

McAfee: Malware on Android Increasing Rapidly, iOS Remains Untouched

You've more than likely heard of McAfee. The security experts have been blocking viruses on PCs for years, and are now dabbling in mobile research. The firm just announced the results of their recent study on mobile malware.

We saw a similar analysis by Symantec a few months ago. And surprise surprise, the results haven't changed that much. iOS still seems to be the most secure mobile operating system available...

Fix iOS 4.3.3 Vulnerability with isslfix

If you may recall, with the release of the long awaited JailbreakMe 3.0 for iOS 4.3.3, literally 10 days later Apple patched the clever PDF exploit in iOS 4.3.4. The security exploit could be triggered by viewing a maliciously crafted PDF file which may lead to an unexpected application termination or arbitrary code execution.

While the main reason Apple patched the exploit was to stop the use of JailbreakMe, it can also be a security concern. A few days later, Apple released another iOS software update, iOS 4.3.5. Apple released this update to patch the certificate validation vulnerability.

If you love customizing your iDevice to the fullest, you've probably already jailbroken, unless you didn't update by accident or purchase your iDevice after Apple stopped signing iOS 4.3.3. Unfortunately, while not updating to the latest software may preserve your jailbreak, you may also be at risk from the same vulnerability...

10 Year Old Hacker Shows Off iOS Game Exploit at DefCon

Remember when kids used to sit and play with plastic toys and run around outside? Me neither. It seems that these days, the joys of hacking are too strong a pull for our little ones.

CNET highlights a 10-year old hacker, going by the name of CyFi, who has presented an exploit to the "Kids" section of the popular hacking conference, DefCon. The exploit, which currently works on both iOS and Android, allows certain games to be prematurely advanced by simply altering the device's clock...

VirusBarrier: The First Malware Scanning App For iOS

It had to happen sooner or later, and we now have our first iOS application designed for catching and eradicating malware.

While there are currently no known malware threats to iPhones, iPads or iPod touches, VirusBarrier is aimed at scanning the files we all find ourselves sharing around our local network...