RPRNA

Search results for: “security”

  • Hidden court case on iCloud security sparks calls for openness

    Hidden court case on iCloud security sparks calls for openness

    A private court session about iCloud encryption started on Friday, and people in the UK and US are pushing for it to be made public. The UK government wants Apple to add a secret way into iCloud, not just for UK citizens but for everyone using it worldwide. Some iCloud info uses basic protection where Apple keeps a key and can share it with governments if ordered. Other data uses stronger protection, where only the user and their devices have the key.

    Apple offers a privacy tool called Advanced Data Protection (ADP), which locks nearly all iCloud data so tightly that even Apple can’t open it. If ADP is on, Apple can’t hand over data to governments. The UK’s demand would force Apple to unlock ADP. Instead of agreeing, Apple stopped offering ADP to UK users while it fights the rule.

    The Quiet Court Battle Over a Hidden Demand

    The UK law makes these orders secret, and any challenges to them happen behind closed doors. Apple found a smart workaround to hint at the issue. It couldn’t legally say the UK told it to unlock ADP, so it simply pulled ADP from the UK without saying why. The message was obvious: “We can’t admit the UK demanded this, or that we said no.”

    Apple also couldn’t say it was fighting the order, but somehow that news slipped out too. UK reporters showed up at the Royal Courts of Justice on Friday but couldn’t enter the courtroom.

    Protests in the UK and US

    Many groups are upset. UK news outlets like the BBC, Reuters, and The Guardian, along with privacy groups like Big Brother Watch, have complained to the court, saying the case should be public. Privacy International and Liberty also teamed up to argue against the secret order.

    “This secret move by the UK to weaken security for everyone is unfair and too extreme,” said Caroline Wilson Palow from Privacy International. “People everywhere need strong protection to stay safe from threats.” In the US, five lawmakers from both parties, including Senator Ron Wyden and Representative Andy Biggs, demanded the court open up the case. They say hiding it makes no sense now that the order is widely known, especially since Apple already pulled ADP from the UK last month.

  • Apple fixes a tricky security problem

    Apple fixes a tricky security problem

    Many people believe Apple devices are super safe compared to Android ones. They think this because Apple doesn’t let you install apps from outside its store or tweak things too much. But that’s not the full story. Recently, Apple released an update for iPhones and iPads, bumping them to version 18.3.2. This isn’t about cool new tricks—it’s a fix for a sneaky security issue that could’ve let hackers target some users.

    What Was the Problem?

    Apple explained that the trouble came from harmful web stuff sneaking out of a safe zone called the Web Content sandbox. They first tackled this in iOS 17.2, but the new update adds extra protection. Apple says some clever attackers might’ve used this gap in a “super tricky attack” aimed at specific people running older iOS versions before 17.2.

    Apple usually stays quiet about these weak spots until they’re fixed. So, we don’t know how long this issue has been around or how many people it has hit. The attack seems to have been aimed at certain individuals, not everyone. Even so, it’s smart to keep your device updated, whether you think you’re a target or not.

    Get the Update Now

    The iOS 18.3.2 and iPadOS 18.3.2 fix is ready for devices like the iPhone XS and newer, plus several iPads: iPad Pro 13-inch, iPad Pro 12.9-inch (3rd generation onward), iPad Pro 11-inch (1st generation onward), iPad Air (3rd generation onward), iPad (7th generation onward), and iPad mini (5th generation onward).

    If you haven’t updated yet, do it soon. Hackers are always hunting for weak points to sneak in. Apple works fast to plug these holes, but updating your device is the best way to stay safe. To grab the update, go to Settings > General > Software Update and look for the latest version. You probably won’t see big changes after installing it, but this fix quietly keeps your device and info protected from harm.

  • Four cool updates to Apple’s Photos app in iOS 18.4 and a key security fix in iOS 18.3.2

    Four cool updates to Apple’s Photos app in iOS 18.4 and a key security fix in iOS 18.3.2

    Apple’s iOS 18.4 is in testing mode right now, and it brings some neat updates to the Photos app that you might not notice at first. These changes make it easier to use and give you more control. Plus, there’s a small but important security update in iOS 18.3.2. Here’s what’s new!

    #1: Better Ways to Filter Your Photos

    When you’re looking at your pictures or videos, check the bottom-left corner. There’s an icon with two arrows pointing up and down. Tap it, and you’ll see options to sort or filter your stuff. In iOS 18.4, two new filters join the list:

    • Shared With You – Shows only things others sent you.
    • Not in an Album – Find photos or videos you haven’t organized yet.

    Also, if you go to the Albums tab and tap the three-dot button at the top-right, you can now filter to see just Albums or just Folders. It’s a simple way to tidy up what you’re looking at.

    #2: A Fresh Way to Sort Albums

    On the Albums screen, iOS 18.4 adds a new sorting trick. Besides sorting by name or your custom order, you can now pick:

    • Sort by Date Modified – This puts albums you’ve recently tweaked at the top.
    • There’s also a small tweak: “Grid” and “List” views are now called “List View” and “Key Photo.” It doesn’t change how things work, but the new names might feel a bit odd at first.

    #3: Hide Albums for Privacy

    The Photos app has some default albums like Recently Viewed and Recently Shared, which track what you’ve looked at or sent lately. If you’d rather keep those private, iOS 18.4 lets you turn them off. Just go to Settings > Apps > Photos, scroll down, and switch off “Show Recently Viewed & Shared.” Easy!

    #4: Clean Up Deleted Photos Fast

    Want to wipe out all your deleted photos for good? Or maybe bring them all back? In iOS 18.4, the Recently Deleted album has two new buttons: a trash can to erase everything forever and a “Recover All” option to restore them. Super handy!

    Quick Security Update in iOS 18.3.2

    Apple also rolled out iOS 18.3.2 with a fix for a WebKit issue. This bug could let sneaky web content escape its safe zone, but Apple patched it with better checks. It’s an old problem they fixed before in iOS 17.2, and this update just makes it even safer. No recent attacks are known, so you’re good!

  • Abode’s new Apple TV app makes home security simple

    Abode’s new Apple TV app makes home security simple

    Abode, a company known for its easy-to-use smart home security system that works with Apple’s HomeKit, just rolled out a fresh app for Apple TV. This brings all their security tools and smart home controls right to your TV screen. I’ve been using Abode’s setup for over four years and really love what they offer.

    With this new app, Abode users can turn their security system on or off, watch live video from up to four Abode cameras, and look back at saved clips—all without leaving the sofa. The app’s look and feel match the one on your iPhone, so it’s super simple to use and manage your gadgets without digging for your phone.

    One cool perk comes with Abode’s 24/7 recording option. If you’ve got it turned on, you can scroll through hours of video or skip to important moments right on your Apple TV. So, if a motion alert pops up during your favorite show, you can check it out instantly—no iPhone needed. Plus, if you use Abode CUE for smart home tricks, you can tweak certain devices straight from the app’s main screen.

    As an Abode user myself, I love how this app lets you check your security from almost any device—iPhone, iPad, Apple Watch, and now your TV. The design stays the same across all these, which keeps things familiar. The Apple TV app store doesn’t get many new apps beyond streaming ones, so it’s exciting to see Abode step up with something fresh.

    Abode plays nicely with HomeKit too. You can control the system through Apple’s Home app, but the real win is how Abode’s sensors—like ones for doors, windows, or motion—work as HomeKit devices. This lets you add them to HomeKit scenes and automations for extra convenience. Want to know more? Check out Abode’s blog about their new Apple TV app (and an updated Google TV one too), or grab an Abode starter kit on Amazon.

  • Apple’s security update in the UK made simple

    Apple’s security update in the UK made simple

    On February 21, Apple stopped offering its Advanced Data Protection feature in the UK after the government quietly asked for a way to unlock private user data stored in iCloud—not just in the UK, but everywhere. This decision has left some UK Apple users wondering how safe their information is now. Let’s break it down.

    What Was Advanced Data Protection?

    Advanced Data Protection, or ADP, started in 2022 as Apple’s top security option for iCloud. It’s a setting users can turn on to lock more of their data—like backups, photos, and notes—with a special kind of protection called end-to-end encryption. This means only the user can unlock it on their own devices, and no one else, not even Apple, can peek inside. Without ADP, Apple uses regular encryption for things like email and calendars, where it keeps a spare key and can open the data if a court orders it.

    Not many people likely used ADP since Apple never shared numbers. Some might not know about it, while others have older devices that can’t handle it because they need the latest software.
    Who’s Impacted by This Change?

    This affects two groups in the UK:

    • New users: Since February 21, they can’t turn on ADP. They’ll see a message saying it’s no longer available.
    • Current ADP users: If you already had it on, you’ll need to switch it off yourself soon to keep using iCloud. Apple can’t do it for you and promises more help later.

    If you never used ADP, nothing changes—your data still has Apple’s basic protection, where Apple holds the key.

    What’s Still Safe?

    Even without ADP, some iCloud features stay super secure by default, like iMessage, FaceTime, passwords, and health info. These use end-to-end encryption no matter what.

    Why Did This Happen?

    The UK government used a law to secretly demand Apple build a hidden way into encrypted data worldwide. Apple said no, worried it would weaken security for everyone—like leaving a house key out for anyone to find. Instead, they pulled ADP from the UK, hoping to bring it back someday with better safety for users.

  • Apple drops iCloud security feature in the UK due to government rules

    Apple drops iCloud security feature in the UK due to government rules

    Apple is taking away a special security option called Advanced Data Protection for iCloud users in the United Kingdom. This tool allowed people to keep their iCloud information super safe with a lock only they could open. But the UK government has told tech companies like Apple to add secret ways into these locks, called backdoors.

    Instead of adding these backdoors and weakening the safety of Advanced Data Protection, Apple decided to remove it completely for UK users. In a message to 9to5Mac, Apple explained that people already using this feature will soon have to turn it off to keep their iCloud accounts working.

    For those in the UK who haven’t turned on Advanced Data Protection yet, the choice is gone. When they try, they’ll see a note saying, “Apple can’t offer Advanced Data Protection (ADP) to new users in the United Kingdom anymore.”

    If you’re a UK user with this feature on, Apple says you’ll need to switch it off soon to keep using iCloud. Since the safety lock is so tight, Apple can’t turn it off for you—they’ll share a guide to help you do it yourself.

    Apple isn’t happy about this change. They said, “We’re really upset that UK users won’t have this strong protection anymore, especially with more data leaks and privacy risks out there. Keeping your info safe in the cloud is more important than ever. We want to give our users the best security and hope to bring this back to the UK someday. We’ve never made a secret key to unlock our products, and we won’t.”

    Without this protection, the UK government can now ask Apple for data from any iCloud account whenever they want. The new rules even stop Apple from telling users when their info is taken.
    Some iCloud features, like passwords and health data, still have this strong lock for now. But it’s unclear how long that will last with the UK’s new demands. Apple hasn’t said much about what’s next for those parts.

    Source

  • Important Update: iOS 18.3.1 fixes critical security flaw

    Important Update: iOS 18.3.1 fixes critical security flaw

    Apple just released a new update for iPhones and iPads, and it’s really important to install it right away. This update, called iOS 18.3.1 and iPadOS 18.3.1, fixes a big security problem that was being used by hackers.

    According to Apple, this security issue could let someone with physical access to your device turn off a safety feature called USB Restricted Mode when the device is locked. This means someone could plug things into your phone or tablet even if it’s supposed to be secure.

    Apple explains that this issue was part of a very smart and specific attack aimed at certain people. They’ve fixed this by making the way the device handles its security states better. If you have an iPhone or iPad that can run iOS 18, you should update to iOS 18.3.1. For iPads that can’t update to the latest version, there’s also iPadOS 17.7.5 which includes this important fix.

    Updating your device will help keep your information safe from people who might try to use this vulnerability. Make sure to update your device as soon as you can to protect yourself from these kinds of threats.

  • Security issues in DeepSeek app for iPhones

    Security issues in DeepSeek app for iPhones

    The DeepSeek app, which quickly became one of the top downloads on the Apple App Store, has been found to have several serious security issues.

    Past Concerns with DeepSeek

    DeepSeek caught everyone’s attention when it suddenly became the most downloaded app for iPhones. AI experts were amazed because it worked well even on phones with less powerful hardware. This led to a drop in stock prices for some big AI companies in the U.S.

    However, soon after, questions about privacy and security started to come up. Privacy regulators in Italy and Ireland began to question if the app followed European privacy laws, while U.S. officials looked into possible security risks. A major slip-up was when DeepSeek left a database unprotected, spilling over a million lines of user data, including private chats and secret codes.

    New Security Flaws in DeepSeek App

    NowSecure, a company that checks mobile app security, found that DeepSeek has turned off a key security feature on iPhones. This feature, called App Transport Security (ATS), makes sure that private information is sent safely. With ATS off, the app sends data without protection, which could be seen by anyone.

    The data might not look dangerous by itself, but when you put a lot of these pieces together, you can figure out who people are. This was shown in another case with Gravy Analytics where similar data was used to identify millions of people.

    Also, the app uses an old and weak method of hiding data, known as 3DES, which isn’t good enough to keep information secret anymore.

    Espionage Risks

    The app collects lots of little bits of information which, if combined with data from other apps, can be used to pinpoint specific users. For example, if someone is using DeepSeek on an iPad connected to a special network used by emergency services, they might become a target for spying.

    The report from NowSecure strongly suggests that the DeepSeek app for iPhones isn’t safe to use, and it warns that the version for Android phones might be even worse.

  • New security holes found in Apple’s devices

    New security holes found in Apple’s devices

    Security experts have found two major issues, named SLAP and FLOP, that affect all new iPhones, iPads, and Macs, including many older models. These flaws could let someone peek into what’s open on your web browser.

    What Are SLAP and FLOP?SLAP and FLOP are types of security problems discovered by researchers at the Georgia Institute of Technology. They are similar to famous security issues like Spectre and Meltdown. Both rely on a technique called “speculative execution,” where the chip tries to guess what you’ll do next to speed things up. If this guesswork goes wrong, attackers might sneak in bad data to see things they shouldn’t.

    The Dangers of These FlawsNormally, each tab in Safari is like a locked box, keeping its contents separate from others. But with SLAP, if you’re tricked into visiting a bad website, it could open those locks. It could potentially read your emails, track your location on Apple Maps, or check your bank details.

    FLOP is even trickier; it can do the same thing but also works on Chrome, making it more dangerous. These attacks don’t need any harmful software on your device; they use weak spots in Apple’s own system, making them hard to spot.

    Which Devices Are at Risk?These security issues affect any Apple device with chips from the A15 series or the M2 series and newer. Here’s a list of affected devices:

    • iPhone: iPhone 13, 14, 15, 16, and the third-generation iPhone SE.
    • iPad: iPad Air, Pro, and mini models released from 2021.
    • Mac: MacBook Air, MacBook Pro since 2022; Mac mini, Mac Studio, iMac, and Mac Pro since 2023.

    Real-World Threats?So far, there’s no proof these vulnerabilities have been used against users in real life. Apple has acknowledged the problem and has been working on fixes since they were alerted in May 2024 for SLAP and September 2024 for FLOP. Apple’s statement to Bleeping Computer suggests they don’t see these as urgent threats right now.

    The best advice for now is to be careful with the websites you visit until Apple rolls out a fix.

    Source

  • Apple plans to fix security holes in Safari and Chrome for new devices

    Apple plans to fix security holes in Safari and Chrome for new devices

    Students from Georgia Tech have found two new security problems in Apple’s latest chips. These issues, called SLAP and FLOP, could let someone peek into your private internet activities like browsing history, credit card details, emails, and even where you are, just by using a bad website. You don’t need to touch the device to make this happen; a harmful webpage can do the trick by getting around Apple’s safeguards.

    These flaws affect several of Apple’s newer chips:

    • Mac laptops from 2022 onwards
    • Mac desktops from 2023 onwards
    • iPads made since 2021
    • iPhones from 2021 models onwards

    These vulnerabilities were reported to Apple back in May and September of last year, but they haven’t been fixed yet. Apple has promised to patch these security issues soon.

    Apple has shared with Bleeping Computer that they haven’t fixed these problems yet, saying, “We appreciate the researchers’ teamwork as this test improves our knowledge of these risks. We think this doesn’t present an immediate threat to our users.”

    SLAP only affects the Safari browser, while FLOP can hit both Safari and Chrome. They haven’t checked if other browsers like Firefox might have the same problem. There’s no sign yet that these attacks have happened out there in the real world. For more information on how these attacks work, you can check out the dedicated website that explains everything about SLAP and FLOP.

More posts