While Samsung has to wrestle with a flaw affecting its Galaxy, Apple has also just getting caught by Chinese and American university team. This is a vulnerability iOS and OS X that are here in question (respectively operating systems for smartphone / tablet and brand computer).
Their article of 13 pages, including how they managed to steal passwords stored in the application Trousseaux access common to OS X and iOS now through synchronization via iCloud. But Twitter apps, Facebook, LastPass, 1Password Dashlane and are also concerned.
Almost 90% of affected applications
A total of 88.6% tested applications (1612 on OS X and iOS 200) were vulnerable. To test this, scholars have managed to validate an application by Apple with malicious instructions. An equally serious flaw for an App Store renowned as very safe thanks to its system of moderation. We reassure hearing that the application could intercept that new passwords stored in access Trousseaux not those already in it before installation.
The team expects Apple now completely corrects this flaw. As she stated in Register, the company had been informed there six months, but has since not correct the malfunction. According to the charter of reporting introduced by Apple, university then had the right to go public once this deadline has passed.
A slightly different pattern than met by Ryan Welton had him with Samsung asked to keep secret the flaw discovered on Galaxy for over a year. He refused and finally unveiled on his own there a few days. Academics hope it will be corrected later in OS X El Capitan which should be available in the fall. Meanwhile, avoid installing applications publishers inspiring little confidence
MORE INFO
& gt;. & Gt ; Samsung Galaxy: a significant security hole opens the door to malware
& gt; & gt; Follow all the news from Apple on MetroNews
No comments:
Post a Comment