Don't-Miss Security Stories

mac app store

Zero-day exploit lets App Store malware steal OS X and iOS passwords

A new research paper reveals methods for OS X and iOS malware that makes it into the App Store to steal passwords and app data, as well as hijack session tokens.

lastpass

Online password locker LastPass hacked

Users will need to change their master passwords after the company detected a breach.

phish fake icloud login

A Trojan horse to phish iCloud passwords lurks in an iOS Mail bug

A researcher finds that Mail in iOS improperly filters HTML, allowing a pop-up menu to appear that closely mimics the iCloud log in.

icloud drive web

Apple Mail flaw could pose risk to iCloud passwords

A researcher says he notified Apple in January but the flaw has yet to be patched.

istock 000027776618large

Make the most of your Mac by adding NAS

Pair your Mac with NAS to save time and reduce stress through easier downloads, improved organization, smoother backups, and more.

officeipad 2

With iOS 9, developers will be able to limit their apps to newer devices

New functionality means that devices like the iPad 2 and iPad mini will be blocked from installing certain apps

ios9 two factor login screen

Apple steps up security with native two-factor and 6-digit passcodes in iOS 9

Apple puts two factors front and center to secure accounts in iOS and OS X, while suggesting a longer passcode in iOS 9.

thinkstockphotos 151868537

Tim Cook takes shots at Google, NSA during speech on privacy and encryption

The Apple CEO is highly critical of companies that sell personal user data -- email, search queries and even photos -- to advertisers. But is Cook throwing stones in Apple's glass house?

iPhone 6 and 6 Plus have raised cameras.

Fraud campaign installs rogue app on non-jailbroken iPhones

The attackers are likely abusing Apple's iOS Developer Enterprise Program, researchers said

encryptionsecurity

Facebook boosts notification email security with OpenPGP encryption

Don't let hackers take your Facebook account. Protect your email notifications with OpenPGP.

computer security stock image

Apple vulnerability could allow firmware modifications in older Macs, researcher says

Older Apple systems unlock the firmware after a computer goes to sleep

androidpay 9121

How Google took a page from Apple to secure Android Pay

Android Pay is incredibly similar to Apple Pay, and not just the name.

apple watch on wrist 2

First software update for Apple Watch includes critical security fixes

The update patches 13 vulnerabilities and updates the trusted root SSL certificates.

ios8safari primary

URL-spoofing bug in Apple's Safari could enable hard to detect phishing attacks

A researcher developed code that can trick Safari into showing a different URL in its address bar than the one currently loaded.