Apple fixes security-related bugs in QuickTime 7.3 and adds support for multi-country iPhone activation in iTunes 7.5.

A new piece of malware targeting Mac OS X, if installed, can change your computer's DNS settings so that Web requests are sent to phishing sites or ads for pornography.

Apple has focused a lot of attention on making Leopard more secure, and security analyst Rich Mogull looks at each of the promised features to explain how it will keep your data, your online communications, and your Mac safe.

The Wi-Fi exploit heard round the world a year ago August is now explicated in an extremely technical paper. But still no simple, verifiable, third-party proof, despite what are ostensibly the researcher's best intentions.

What do you do when gremlins infest your FileVault... and you're many timezones away from home and your backups? Security consultant Rich Mogull shares what it's like to eat your own encrypted dogfood while on the road.

"Sidejacking" has entered the lexicon of network attacks. This newly defined term refers to a method of hijacking an in-progress Web session with a remote service - like Gmail - by intercepting and re-using the credentials that identify you to that server. Protecting against sidejacking may take a rethink on the part of Web site operators, users, and browser makers.

Joe Kissell returns to the topic of Safe Sleep with a better script for managing it, corrections to his previous article, and reasons why you might still want to leave Safe Sleep enabled.

The Mac OS X Wi-Fi sniffing software KisMAC has reached the end of its lifespan due to a change in German law, where its developers live, that criminalizes software such as it.

SSL (Secure Sockets Layer) and TLS (Transport Layer Security) are systems for providing security to Internet communications, particularly Web browsing

Late last week, Apple released Security Update 2007-006 to address bugs in the WebCore and WebKit code upon which Safari and many other Web-savvy Macintosh applications rely

Within three days of Apple's release of the Safari Web browser for Windows XP and Vista in beta testing versions, several significant security flaws were discovered, some of which were reported to Apple

When I was writing "Take Control of Passwords in Mac OS X," I thought long and hard about what sorts of strategies I could recommend for creating strong yet memorable passwords

Apple last week released two security updates, version 1.1 of Security Update 2007-005 (see "Security Update 2007-005 Released," 2007-05-28) and Security Update (QuickTime 7.1.6)

Apple has released its fifth Mac OS X security update of 2007 to patch a number of potential vulnerabilities. Security Update 2007-005 makes changes to CoreGraphics, iChat, VPN, BIND, crontabs, PPP, and other components, in most cases correcting problems that require either local user access or access to the Mac via a local network

Steve Jobs has done it again, posting an open letter on the Apple Web site. The previous "Thoughts on Music" letter generated much discussion and coverage of Apple (see "Steve Jobs Blasts DRM," 2007-02-12), and foreshadowed the Apple/EMI deal to drop DRM that followed shortly afterwards (which we covered in "Apple and EMI Offer DRM-Free Music via iTunes," 2007-04-02)