Don't-Miss Security Stories

iphone 6 plus front

SSL certificate flaw allows hackers to crash devices running iOS 8

When combined with another exploit, the No iOS Zone flaw can make iPhones, iPads, and iPods impossible to use.

cybersecurity

HTTPS snooping flaw in third-party library affected 1,000 iOS apps with millions of users

The flaw in the AFNetworking library broke HTTPS certificate validation, enabling man-in-the-middle attacks

3d glasses popcorn time thinkstockphotos 495274907

Why Popcorn Time's 'jailbreak-free' iOS hack is a bad idea

Popcorn Time is "available" for iOS, but you won't find it in the App Store. In fact, you need Windows to install it on your iPhone or iPad..and that's just the beginning.

TrueCrypt cryptographic audit turns up little to fear

An independently created volume-encryption software project that shut down abruptly apparently has no lurking secrets, according to a new security audit.

safari

Safari users in the UK can sue Google over alleged privacy violations

The ruling from an appeals court could lead to claims from millions of British users

computer security keyboard lock

Private I: Trust and verify for network certificate roots

Google spotted an unauthorized use of a certificate that validates a web site’s identity, and that’s a good thing.

security hole in fence clouds gap opening

FREAKish apps still have security holes

Apple patched iOS and OS X, but apps can still be vulnerable due to Apple's limited update policy.

hack security malware

Hundreds of Android and iOS apps are still vulnerable to FREAK attacks

FireEye's findings highlight how even serious software flaws can take a long time to get fixed

password

Why Yahoo's new on-demand password system is no two-factor authentication killer

The new authentication option offers better security than static passwords, but it's not as strong as two-step verification

Yahoo wants to kill the password one text message at a time

Forget biometrics, Yahoo wants to kill the password with text messages.

warning sign

Don't FREAK out about the latest security warnings

FREAK is last week's worry, but installing untrusted applications is a perennial worry. It's a two-fer (or two-fear) in this column, about security issues new and old.

Snowden docs show CIA's attempts to hack Apple devices

Documents leaked by Edward Snowden detail how the CIA repeatedly tried to crack the security in Mac OS X and iOS applications.

hack security malware

Apple secures Safari against FREAK attacks

Apple has patched the FREAK flaw in both OS X and iOS, issuing updates for both operating systems to protect users of its Safari browser.