Skip to content
Thoughtful, detailed coverage of everything Apple for 34 years
and the TidBITS Content Network for Apple professionals

Category: Security

Adam Engst 20 comments

Rapid Security Responses for iOS/iPadOS 16.5.1 (c) and macOS Ventura 13.4.1 (c)

Apple has re-released the recent Rapid Security Responses for its flagship operating systems to plug a WebKit vulnerability that’s being exploited without causing website loading issues. Install the updates as soon as feasible.

Adam Engst 17 comments

Apple Pulls Rapid Security Responses Due to Website Loading Issues

If you're experiencing website loading issues—notably with Facebook and Instagram—after installing the recent Rapid Security Responses, you may want to remove them until Apple fixes the problem and releases new ones.

Adam Engst 15 comments

Two-Factor Authentication, Two-Step Verification, and 1Password

Is it true two-factor authentication if 1Password auto-fills security codes for you? Thanks to a 1Password blog post, we now know the answer: No, it’s two-step verification instead.

Adam Engst 25 comments

Rapid Security Responses for iOS/iPadOS 16.5.1 (a) and macOS Ventura 13.4.1 (a)

Apple has released Rapid Security Responses for its flagship operating systems to plug a WebKit vulnerability that’s being exploited. Install them as soon as feasible.

Adam Engst 8 comments

How to Identify and Eliminate Abusive Web Notifications

There’s nothing new about notification adware, system-level alerts from malicious websites that try to lure you into sharing login credentials, credit card info, or other personal information. A recent uptick in reports caused Adam Engst to explore the topic more deeply to help readers learn to identify and eliminate abusive notifications.

Adam Engst 14 comments

Apple Updates All Active Operating Systems to Block Exploited Security Vulnerabilities

Updates to new and old versions of macOS, iOS, iPadOS, and watchOS address kernel and WebKit security vulnerabilities actively exploited in the wild. Install them as soon as you reasonably can.

Adam Engst 10 comments

Google’s .zip Provides Another Reason to Beware of Wacky Top-Level Domains

Google's new .zip top-level domain has raised concerns from the security community due to the ease with which it enables ambiguous URLs that could be used in phishing attacks.

Adam Engst 9 comments

Sports and Bugs in tvOS 16.5, macOS 13.4 Ventura, iOS 16.5, iPadOS 16.5, watchOS 9.5, and HomePod Software 16.5

The latest updates to Apple’s operating systems increase the visibility of sports in Apple News and bring four-up multiview sports games to the Apple TV 4K. Otherwise, there are just a few bug fixes and a new Pride Celebration wallpaper and watch face. Most important are the security updates, which explain the Rapid Security Responses and address another zero-day exploit.

Adam Engst No comments

iOS 15.7.6 and iPadOS 15.7.6 Incorporate Rapid Security Response Fixes

Apple has now released iOS 15.7.6 and iPadOS 15.7.6 to address a bunch of security vulnerabilities, three of which are actively being exploited in the wild and two of which were fixed in the new operating systems' Rapid Security Responses. Update immediately.

Adam Engst 5 comments

StorCentric and Drobo in Chapter 7: Start Looking for Drobo Replacements

StorCentric and subsidiary Drobo have recently converted their mid-2022 Chapter 11 bankruptcies to Chapter 7, implying that it's unlikely they'll recover. If you use a Drobo storage device, it's time to look for replacements.

Glenn Fleishman 2 comments

AirTag in the News: NYPD Recommends, Apple and Google Propose Industry Tracking Standard

In response to a surge of car thefts, the New York Police Department recommends the city’s car owners install an AirTag to help with stolen vehicle recovery. Meanwhile, Apple and Google have partnered on a new industry standard to provide consistent anti-tracking protection for devices that can track object locations persistently.

Adam Engst 15 comments

What Are Rapid Security Responses and Why Are They Important?

Apple has released the first Rapid Security Responses to iOS 16.4.1, iPadOS 16.4.1, and macOS 13.3.1. Adam Engst explains what a Rapid Security Response is and why they should see significantly faster adoption than traditional updates.

Adam Engst 75 comments

How a Passcode Thief Can Lock You Out of Your iCloud Account, Possibly Permanently

A follow-up to the Wall Street Journal’s investigation into Apple’s problematic iPhone security design reveals that victims are being locked out of their iCloud accounts.

Adam Engst No comments

iOS 15.7.5 and iPadOS 15.7.5 Address Serious Security Vulnerabilities

Playing catchup with last week's urgent updates, Apple has now released iOS 15.7.5 and iPadOS 15.7.5 to address two concerning security vulnerabilities that are actively being exploited in the wild.

Adam Engst 13 comments

iOS 16.4.1, iPadOS 16.4.1, and macOS 13.3.1 Address Serious Security Vulnerabilities, Fix Bugs

We recommend updating iPhones, iPads, and Macs to protect against two security vulnerabilities that are actively being exploited in the wild. iOS and iPadOS also address issues with Siri, and macOS fixes problems with Auto Unlock with an Apple Watch.