Privacy

New iOS security flaw discovered that allows covert keylogging

Cody Lee ∙ Updated February 9, 2016

While the dust is far from settled on the nasty SSL bug found in iOS last week, a new security flaw in the mobile OS has been brought to light. The new flaw makes it possible for attackers to covertly log every touch a user makes, including keyboard and Touch ID presses.

Researchers at security firm FireEye made the discovery, saying in a blog post that the gap exists within iOS' multitasking feature that allows for the background monitoring, and it can be exploited via a malicious app install or remotely via a separate app vulnerability...

Read More

How to enable Guest Mode on iPhone

Joe Rossignol ∙ February 9, 2014

While multiple user account support exists on OS X and certain Android devices, the same cannot be said for iPhone. Enter GuestMode, a new jailbreak tweak by computer science graduate student Ian Burns that offers a fully customizable guest experience like none other.

Allow your kids to play games on your smartphone without accidentally calling someone, or let your friends control your music without lurking through your Facebook or Photos app. Find out how it works… 

Read More

Apple now rejecting apps that use ad tracking but don’t show any ads

Christian Zibreg ∙ February 3, 2014

An interesting finding by TechCrunch this morning that Apple has now started to reject apps which retrieve users’ Identifier for Advertisers (IDFA), but don’t show any ads. IDFA was introduced alongside iOS 6 two years ago to replace the universal device identifier (UDID) from prior iOS versions amid privacy concerns and new regulatory requirements. The company last March stopped accepting apps into the App Store that use the now defunct UDID...

Read More

Rovio denies wrongdoing in NSA’s snooping of Angry Birds players, but…

Christian Zibreg ∙ Updated January 26, 2016

A report yesterday by The New York Times and other news organizations has provided yet another unsettling glimpse into the NSA's wide-ranging surveillance practices.

The speculation, based on information from documents provided by the NSA leaker Edward Snowden, suggests that the NSA and its British counterpart GCHQ have been collecting private user data from mobile apps, in real time, as it travels across the Internet.

Profile data being collected from popular games such as Rovio’s Angry Birds typically includes age, location and gender, the allegations go. And with games that show ads, the agencies are also able to intercept users' surprisingly detailed advertising profiles, mining it for new information...

Read More

Apple provides update on National Security Orders and account information requests

Christian Zibreg ∙ Updated June 7, 2017

Apple has posted an update to information pertaining to national security and law enforcement orders, confirming that it's been working closely with the White House, the U.S. Attorney General, congressional leaders, and the Department of Justice to "advocate for greater transparency with regard to the national security orders we receive".

Apple CEO Tim Cook briefly touched on the topic in an interview with ABC’s David Muir, saying the NSA does not have access to Apple's servers as the snooping agency would have to “cart us out in a box” for that kind of access (those are his exact words)...

Read More

Snapchat apologizes (yes, apologizes!) for spam increase following data breach

Christian Zibreg ∙ Updated March 18, 2016

Perhaps realizing that apologizing isn’t a sign of weakness, Snapchat, the popular photo messaging application, took to the official blog to apologize for the spam increase observed during the weekend.

"We’ve heard some complaints over the weekend about an increase in Snap Spam on our service," a Monday post reads. The company has tried to make peace with disgruntled users by offering a formal apology. "We want to apologize for any unwanted Snaps," the team wrote.

The spam increase, the post claims, has nothing to do with a recent breach that saw a group of hackers breach its database and post 4.6 million user names and phone numbers on the web...

Read More

Snapchat is ‘sorry’ for data breach, strengthens mobile app security

Christian Zibreg ∙ Updated March 18, 2016

Snapchat has found itself in some pretty hot water after a group of anonymous hackers on New Year's Eve breached its database and leaked 4.6 million usernames and phone numbers on the web. The controversy wasn't necessarily about the security breach itself, but over Snapchat's stubborn refusal to publicly acknowledge the situation, apologize for the inconvenience and update customers on steps taken, if any, to rectify the situation.

It's mind-boggling that Snapchat was aware of a security hole in its API for several weeks yet did absolutely nothing to plug it, an inexplicable move that has in turn allowed the hackers to successfully exploit Snapchat's shortcomings and steal user data.

Today, the company has finally gone on the record to confirm that a new update to its Android and iOS apps improves security by letting folks opt out of the Find Friends feature which has, partially, allowed for the hack.

And although the company has yet to formally apologize for the messy handling of the situation, it now says it's "sorry" for any problems this issue may have caused its users...

Read More

Hackers leak 4.6M Snapchat usernames and phone numbers, see if you’ve been affected

Christian Zibreg ∙ Updated January 26, 2016

Bad news, Snapchat fans: a group of anonymous hackers have successfully exploited a nasty security hole in the popular IM application to hijack a whopping 4.6 million usernames and phone numbers, publishing this private data on a website called SnapchatDB.info.

The circa 40MB SQL database dump (also available as a CSV file) includes phone numbers and usernames, along with the affected users' geographical region information.

Why did they do it? The leaked private information “is being shared with the public to raise awareness” of a Snapchat API exploit they'd used for the hack.

Snapchat has been aware of the security loophole in its application since August, but did literally nothing to patch it. Is there a way to see if you've been affected? Yes, there is. Read on for the full reveal...

Read More

Apple denies knowledge of NSA’s iPhone program

Cody Lee ∙ December 31, 2013

Yesterday, a trove of secret documents was released regarding the NSA and its ongoing spying on citizens both abroad and here in the US. One of the programs mentioned, called DROPOUTJEEP, is particularly scary as it can give the Agency complete control of any iPhone.

These are some pretty serious allegations made against the NSA and maybe more-so Apple, who either has several unknown security holes in its mobile OS or is consciously giving the NSA access. Well the company just responded to these claims, and it appears to be the former...

Read More

Leaked documents show the NSA can gain nearly complete access to your iPhone

Cody Lee ∙ Updated April 14, 2018

In June of this year, Edward Snowden shocked the world by leaking a number of slides and documents and revealing that the NSA has backdoor access to the databases of 9 major tech companies, including Apple and Facebook. But as it turns out, its access may not be limited to software.

Since Snowden's initial outing, there has been a number of subsequent reports and leaks. And the latest to garner gasps from the security community is that the NSA has the ability to intercept the delivery of a new computer or mobile device—including iPhones—and build in a remote backdoor...

Read More

Short video from Obama’s recent meeting with Tim Cook and other tech execs

Cody Lee ∙ Updated April 14, 2018

As we reported yesterday, Tim Cook and a number of other executives from prominent tech companies met with US President Barack Obama at the White House to discuss a wide range of government and tech-related topics.

Among the topics were said to be the recent struggles with the rollout of the healthcare.gov website and privacy concerns regarding government surveillance. And this afternoon, a short video of the meeting surfaced on the web...

Read More

President Obama meeting with Tim Cook and others over NSA and health care website

Cody Lee ∙ December 16, 2013

The White House has announced that President Obama is scheduled to meet with a number of tech executives tomorrow to discuss a wide range of subjects. Two of the big topics on the menu are said to be the NSA and the troubled HealthCare.gov website.

In addition, the group—which includes Apple CEO Tim Cook, Twitter's Dick Costolo, Netflix's Reed Hastings, and Dropbox's Drew Houston—will discuss ways the Obama administration can partner with the tech sector to create new jobs and grow the economy...

Read More