A recently discovered flaw in macOS Mojave could expose your Safari browsing history. On February 8th, developer Jeff Johnson noted that certain folders in Mojave have restricted access that is forbidden by default, such as ~/Library/Safari. Only a few apps can access this folder, but according to Mr. Johnson there’s a way to bypass the restriction […]
Category: privacy
With any luck, Apple has nixed the Group FaceTime exploit that led to a wave of criticism in recent weeks. The company has released both iOS 12.1.4 as well as a supplemental update to macOS Mojave with both updates re-enabling Group FaceTime by fixing a security hole that potentially allowed others to listen in to […]
It looks like the teenager who discovered the Group FaceTime audio bug could be rewarded by Apple’s bug bounty program.
One week after social media picked up on a FaceTime exploit that allowed callers to eavesdrop on a recipient before the call is picked up, the original discoverer has been visited by an unnamed Apple executive.
“They also indicated that Grant would be eligible for the bug bounty program. And we would hear from their security team the following week in terms of what that meant,” said discoverer Grant Thompson’s mother Michele Thompson. “If he got some kind of bug bounty for what he found we’d certainly put it to good use for his college because I think he’s going to go far, hopefully. This is actually a field he was interested in before and even more so now.”
The updated version of Safari will push websites to ask permission to the aforementioned sensors. As such, these will be focused on a per-app basis, rather than a per-website basis. It looks like iOS 12.2 will include a series of privacy features that will also restrict access to the iOS device’s accelerometer and gyroscope sensors. […]
Following a fair amount of kerfuffle as to the Group FaceTime audio bug, Apple has vowed to fix it quickly within its macOS 10.14.4 update. Unfortunately, the company has also stated that the update has been pushed back to this week. Apple issued the following apology to both its users as well as the Thompson […]