Get a Pentest and security assessment of your IT network.

News

Insecure Apple Authorization API Still Used

A security issue with MacOS installers could, if abused, allow local attackers to install their own files. Patrick Wardle, the chief security researcher at Synack, gave a presentation at last months DEF CON. Wardle found that the installers for Slack, Google Chrome, Dropcam and various security software programs, as well as the open source update library Sparkle, all used the deprecated version during their updates. Developers told Threatpost that they did not consider the newer release to be a good replacement for the older, less secure one.”]

Source: https://securityintelligence.com/news/insecure-apple-authorization-api-still-used/

Related posts
News

Ashley Madison 2.0 Hackers Leak 20GB Data Dump, Including CEO's Emails

News

Art of Twitter account hacking

News

Botnet authors use Evernote account as C&C Server

News

Canadian agency breached as hackers exploit CVE-2017-5638 flaw in Apache Struts 2