Skip to content
Thoughtful, detailed coverage of everything Apple for 30 years
and the TidBITS Content Network for Apple professionals

Category: Security

Josh Centers 2 comments

NSA Mass Phone Record Collection Ruled Illegal

Nearly seven years after being exposed to the public, and a year after being shut down, the NSA’s mass collection of phone records has been ruled illegal.

David Shayer No comments

Understanding How Apple Security Research Devices Likely Work and Stay Secure

Apple’s new Security Research Device Program provides security researchers with special iPhones to help them find vulnerabilities in iOS for Apple. Former Apple engineer David Shayer examines how Apple might be tweaking iPhone hardware to make this work.

Josh Centers 1 comment

Hong Kong VPN Services Found to Log Connections and Leak User Data

If you use a VPN service based in Hong Kong to secure your Internet traffic and protect your privacy, you may wish to switch, given what security researchers have discovered.

Rich Mogull 5 comments

Apple Releases Dedicated Security Research Device

In an effort to encourage more security researchers to look for security vulnerabilities in iOS, Apple will provide approved researchers with a Security Research Device, a custom iPhone with key security controls disabled. It’s a good way for Apple to engage more fully with the security community.

Josh Centers 8 comments

Feeling Paranoid? Micro Snitch Tells You If Your Mac Is Spying on You

If you’re afraid that your webcam may be spying on you, Micro Snitch from Objective Development monitors your Mac’s webcam and microphone, alerting you when an app activates them and maintaining a log of all activity.

Josh Centers 15 comments

Don’t Close Your MacBook with a Webcam Cover Attached

If you use a physical webcam cover on a MacBook, Apple wants you to know that shutting the lid with the cover attached could damage your screen.

Adam Engst 1 comment

Serenity Caldwell Summarizes the WWDC Keynote in Under 90 Seconds

Don’t have nearly 2 hours to watch the WWDC keynote, fast-paced though it was? Former Macworld and iMore editor Serenity Caldwell narrates a highly edited summary that covers the key points in less than 90 seconds.

Adam Engst 37 comments

Kernel Vulnerability Causes Apple to Update All Operating Systems

Apple has released updates to macOS, iOS, iPadOS, watchOS, and tvOS to address a security vulnerability in the kernel that could allow an app to execute arbitrary code with kernel privileges. Update soon!

Adam Engst 23 comments

macOS 10.15.5 Update Adds Battery Health Management

Apple has released macOS 10.15.5 Catalina with a new battery health management feature for recent Mac laptops, along with a necessary option for Group FaceTime, calibration for the Pro Display XDR, and a smattering of bug and security fixes.

Josh Centers 2 comments

FBI Cracks Pensacola Shooter’s iPhone, Still Mad at Apple

The FBI has cracked the iPhone at the center of the Pensacola naval base shooting case, but the agency still slammed Apple’s stance on encryption. This time, Apple didn’t pull any punches in its rebuttal.

Josh Centers 3 comments

watchOS 6.2.5 Brings ECG and Irregular Heart Rhythm Notifications to Saudi Arabia

Apple has released watchOS 6.2.5, a highly focused update to bring the ECG app and irregular heart rhythm notifications to Saudi Arabia, along with as-yet-unspecified security fixes.

Josh Centers 6 comments

Adobe Acrobat Reader Flaws Could Let Attacks Hijack Your Mac

If you use Adobe Acrobat Reader, you should update immediately to protect your Mac from some nasty security vulnerabilities accessible to local attacks.

Glenn Fleishman 1 comment

iOS Mail Exploits Serious but Unlikely to Affect Normal Users

A security research firm found a pair of bugs in Mail in iOS 13 that could be leveraged to allow arbitrary code to run without a user viewing the message. But claims about how severe and how widespread the exploits are seem overstated.

Glenn Fleishman 16 comments

Zoom Repairs Flaws and Improves Privacy

Following several terrible, horrible, no good, very bad days for Zoom, with the disclosure of multiple security and privacy exploits and problems, the company has, instead of moving to Australia, fixed nearly every outstanding issue and even enhanced its interface. Will it be enough to restore trust?

Glenn Fleishman 26 comments

Apple and Google Partner for Privacy-Preserving COVID-19 Contact Tracing and Notification

The tech rivals are working together on a secure, opt-in, and privacy-focused method of letting people report a COVID-19 diagnosis that would be pushed to everyone they passed near in the previous two weeks.