Open post
Security Bits logo - a green padlock with the words Security Bits to the right and in tiny letters below ithat it says 10101010 indicating a digital lock

Security Bits — 3 January 2024 (Bart & Jill from the North Woods)

Deep Dive — Operation Triangulation TL;DR — Kaspersky labs have discovered that they, and Russian government officials, were targeted by very advanced iOS malware that completely took over iOS devices for the last 4 years. Apple have patched all the exploited vulnerabilities, regular users were not targeted, and Kaspersky say there is not enough evidence […]

Continue readingMore Tag
Open post
Security Bits Logo no alpha channel

Security Bits — 23 December 2022 🎄

Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. 🇺🇸 Apple have released their opt-in new Advanced Data Protection for iCloud , but only in the US for now — appleinsider.com/… At least initially, enabling ADP could complicate the setup of new devices […]

Continue readingMore Tag
Open post
Security Bits Logo no alpha channel

Security Bits — 2 October 2022

Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. 🇺🇦 🇷🇺 To comply with international sanctions on Russia over its invasion and annexation of Ukraine, Apple have removed a major Russian app from VK from all app stores — appleinsider.com/… Deep Dive — […]

Continue readingMore Tag
Open post
Security Bits Logo no alpha channel

Security Bits — 11 July 2021

Feedback & Followups Listener and community feedback, developments in recently covered stories, and developments in long-running stories we’re tracking over time. The Western Digital story from last time has continued to evolve: More devices are affected: Another 0-Day Looms for Many Western Digital Users – Krebs on Security — krebsonsecurity.com/… But there have also been […]

Continue readingMore Tag
Open post
Security Bits Logo

Security Bits – Zero-Day on macOS, Facebook Rates User Trustworthiness, Facebook’s VPN Was Tracking Users, Excessive Google Tracking, Teenager Hacks Apple

Followups More speculation-based flaws in Intel Chips (Editorial by Bart: as with other recent Spectre/Meltdown variants, there’s no need for home users to panic, just keep your OSes patched. It’s cloud providers that really need to worry about these flaws.) L1 Terminal Fault AKA L1TF – Intel have released mitigations, and they don’t have significant […]

Continue readingMore Tag
Open post
Security Bits Logo

Security Bits – Canvas Fingerprinting, KRACK Updates, TOR Browser Bug, New Zero-Day WiFi Bug, Brother Printer Exploit

Security Medium 1 — Canvas Fingerprinting Before we look at canvas finger printing, I just want to set the scene with a reminder of one of the most fundamental truths about how the web was designed – each web page load is an independent event. Because that meant websites had no memory of anything that […]

Continue readingMore Tag
Scroll to top