Security

iOS 7.0.6 update patched a major SSL bug, OS X still vulnerable

Cody Lee ∙ Updated March 18, 2016

When we told you that Apple had released iOS 7.0.6 to the public yesterday, all we really knew about the update was that it fixed an SSL connection verification issue. We didn't know it at the time, but it turns out that this was actually a major security flaw in iOS 7.

In a support document, Apple noted that the patch repaired a specific vulnerability that could allow an attacker with a "privileged network position" to capture or modify data protected by SSL/TLS. In other words, iOS was vulnerable to a 'man-in-the-middle attack.'

Two-step Apple ID authentication launches in Canada, France, Germany, Japan, Italy and Spain

Christian Zibreg ∙ February 20, 2014

Following a flurry of reports which criticized various security holes allowing hackers to break into people's Apple ID accounts, Apple in March of 2013 finally stepped up account security by rolling out two-step verification for Apple IDs in the United States, United Kingdom, Australia, Ireland and New Zealand.

Two months later, the feature launched in nearly a dozen additional countries: Austria, Argentina, Belgium, Brazil, Mexico, Netherlands, Pakistan, Poland and Russia.

And now, as part of the third wave of expansion, the firm is enabling stronger account security for Apple ID users located in Canada, France, Germany, Japan, Italy and Spain...

Rumor: Galaxy S5 to integrate fingerprint scanner into Home button, not as sophisticated as Touch ID

Christian Zibreg ∙ Updated November 19, 2018

Apple paid big bucks to acquire AuthenTec, the world's leading maker of fingerprint sensors. Following the $356 million deal, it took Apple's teams an additional year or so to apply AuthenTec's technology to Touch ID. An in-house project, Touch ID has rethought what fingerprint scanning on mobile devices should be like, resulting in a seamless and integrated solution that, in Apple's parlance, "just works".

That's not saying Touch ID isn't without pitfalls.

Apple cautions that fingerprint scanning doesn't work well with greasy or wet fingers and there are reports of old people's prints not being recognized properly as a result of a few decades worth of scarring and general wear and tear.

Despite rumors that Samsung's upcoming Galaxy S5 would feature iris scanning, KGI Research analysts instead pointed to a fingerprint sensor.

And now a publication called SamMobile says it's been able to confirm with a Samsung source that the feature will work by swiping one's finger over the handset's redesigned Home button. It would let users unlock the device by swiping and remember website passwords, the latter not (yet) being supported by Touch ID...

How to use the Lock screen passcode screen to dial phone numbers

Jeff Benjamin ∙ Updated April 16, 2018

Have you ever wanted to use your Lock screen passcode for more than just unlocking your iPhone? If so, then boy, do I have a jailbreak tweak for you.

PassDial is a brand new tweak that allows you to assign a speed-dial number to a passcode of your choice. For example, I can assign the passcode '1-2-1-2' to phone number 1-888-888-8000, and any time I enter that specific passcode, the number assigned will be dialed.

We've created a hands-on video to show you how PassDial works in action. Take a look inside to see what this jailbreak tweak is all about.

How to password protect individual apps with iAppLock

Joe Rossignol ∙ February 8, 2014

While setting a passcode on your iPhone, iPad or iPod touch can go a long way towards improving the security of your device, it is meaningless in situations where it is already unlocked and an invasive family member decides to read through your Messages history or tamper with your ongoing Candy Crush Saga game.

Fortunately, a myriad of jailbreak tweaks have been released over the years that password protect apps on iOS devices. iAppLock stands as one of the first candidates to be updated with support for iOS 7 or later, and it has some useful features. Read ahead for a complete rundown…

Proposed CA bill would require antitheft tech in smartphones

Cody Lee ∙ Updated March 19, 2018

The New York Times is reporting that California State Senator Mark Leno plans to introduce a bill that would require all cell phones sold in the state to include antitheft technology. He hopes to curb smartphone thefts—a major problem in larger cities.

The bill is being co-sponsored by San Francisco DA George Gascón, which isn't surprising considering he's long been pushing for Apple and other manufacturers to build 'kill switches' in their devices. And if it passes, it could go into effect as early as next year...

Snapchat vulnerability opens up iPhone users to DoS attacks

Cody Lee ∙ February 7, 2014

According to a new report from cyber security researcher Jamie Sanchez, the Snapchat app contains a vulnerability that makes it possible for hackers to launch a denial-of-service (DoS) attack that can temporarily freezes a user's iPhone.

Sanchez and a fellow research discovered a flaw in the app's system that allows a hacker to send thousands of messages to a Snapchat user in seconds, which can cause crashes. And often times, these crashes can only be fixed with a reset...

iOS 7 bug discovered that allows disabling of ‘Find My iPhone’ without password

Cody Lee ∙ Updated April 16, 2018

A major flaw has been discovered in iOS 7 that seemingly allows users to disable the important 'Find My iPhone' feature on a device without typing in the typically-required password. Turning off the feature on a stolen device makes it invisible to Apple's location service.

And what's worse is, the flaw isn't difficult to exploit. The bug can be reproduced on any device [that we've seen] running iOS 7.0.4 by following a few simple steps that involve making changes in the iCloud section of the Settings app and entering in a dummy password...

How to set your iOS passcode to your device’s current time

Jeff Benjamin ∙ Updated April 16, 2018

TimePasscode is a new jailbreak tweak that lets you use your device's current time as a passcode to unlock your device. Spurred on by a Reddit request, developer Steve Hetelekides has created a tweak that allows you to have a different passcode with every passing minute.

If you're looking for a way to spice things up on the Lock screen from a security standpoint, then this might be the tweak for you. Have a look inside as we demonstrate how TimePasscode works on video.

Mesalation: set a passcode grace period with Touch ID enabled

Jeff Benjamin ∙ February 3, 2014

Mesalation is brand new jailbreak tweak from developer r_plus that allows you to get back the passcode grace period list when using Touch ID. Enabling Touch ID on the iPhone 5s forces iOS to require a passcode immediately and there are no options otherwise.

If you're someone who likes to use Touch ID, but don't necessarily like the idea of having to verify every time your device is locked, Mesalation is the jailbreak tweak for you. Have a look at our walkthrough inside for more details on how the tweak works.

Health & fitness tracking features said to headline iOS 8

Cody Lee ∙ January 31, 2014

Over the past year or so, Apple has been hiring a number of doctors and other experts in the medical field to work on an unknown project. And up until now, we've known little about its plans outside of recurring iWatch speculation.

But a new report out this afternoon may help shed some light on what it's been working on. Apparently health and fitness tracking are going to be headlining features of iOS 8, and they're expected to play well with Apple's smartwatch...

UnlockID is a jailbreak tweak that can unlock your Mac with Touch ID

Jeff Benjamin ∙ Updated April 17, 2023

UnlockID is a super-cool new jailbreak tweak that does exactly what the headline says—it allows you to unlock your Mac using the Touch ID sensor found on the iPhone 5s. Using Bluetooth Low Energy, the tweak features a Mac component that allows your iPhone 5s to communicate with your OS X installation.

Although the tweak's practicality may be up for debate, there's no debating the fact that this is one of the most innovate and coolest looking Touch ID tweaks we've seen thus far. We've taken UnlockID for a thorough walkthrough. Check out our hands-on video after the break.