| Page: 1 | Rating: Unrated [0] |
Apple Itunes Flaw 'Allowed Government Spying For 3 Years'
| Good [+1]Toggle ReplyLink» databoy replied on Tue Nov 29, 2011 @ 3:22pm |
 Coolness: 106095 | An unpatched security flaw in Apple’s iTunes software allowed intelligence agencies and police to hack into users’ computers for more than three years, it’s claimed.
By Christopher Williams A British company called Gamma International marketed hacking software to governments that exploited the vulnerability via a bogus update to iTunes, Apple's media player, which is installed on more than 250 million machines worldwide. The hacking software, FinFisher, is used to spy on intelligence targets’ computers. It is known to be used by British agencies and earlier this year records were discovered in abandoned offices of that showed it had been offered to Egypt’s feared secret police. Apple was informed about the relevant flaw in iTunes in 2008, according to Brian Krebs, a security writer, but did not patch the software until earlier this month, a delay of more than three years. “A prominent security researcher warned Apple about this dangerous vulnerability in mid-2008, yet the company waited more than 1,200 days to fix the flaw,” he said in a blog post. "The disclosure raises questions about whether and when Apple knew about the Trojan offering, and its timing in choosing to sew up the security hole in this ubiquitous software title." On average Apple takes just 91 days to fix security flaws after they are disclosed, Mr Krebs wrote. Francisco Amato, the Argentinian security researcher who warned Apple about the problem suggested that "maybe they forgot about it, or it was just on the bottom of their to-do list". In response to reports that FinFisher targeted iTunes, Apple has said that it works "to find and fix any issues that could compromise systems". "The security and privacy of our users is extremely important,” a spokeswoman said. This month's iTunes update 10.5.1 explained that "a man-in-the-middle attacker may offer software that appears to originate from Apple", adding that the "issue has been mitigated". Gamma International has not commented on the matter. Registered in Winchester, the firm is one of several companies that sell computer hacking services to governments. They offer "zero day" security flaws, which have not been publicly disclosed, so attempts to exploit them are unlikely to be detected by anti-virus programs. [ www.telegraph.co.uk ] |
| I'm feeling bump right now.. | |
| Good [+1]Toggle ReplyLink» Screwhead replied on Tue Nov 29, 2011 @ 5:36pm |
 Coolness: 685570 | Never fails to amaze me how much apple users have their head in the sand about things. Everyone thinks Apple stuff is flawless, unhackable, free of viruses and malware..
And yet, when there`s a security flaw in an Apple program, it takes them on average 91 days to address it, whereas Microsoft issues it by the first tuesday of the month, or the next upcoming tuesday if it`s a really massive bug like this one.. and Apple users are the ones that think they`re better protected. Despite things like, well, Windows 95, 98 and ME that were glitchy as all hell and bombarded with bugs, hacks and malware, they at least KNOW how to handle massive security violations, how to handle patching software, etc.., something that Apple is still very new in the game with, as is absolutely obvious by this latest revelation. Honestly, I`m surprised that this spent so long unpatched and that they didn`t go through what Windows users went through with the virus that hit in the early 2000s that would pretty much infect anyone who wasn`t behind a firewall by pretending it was a legit Windows Update... But it`s going to happen, and it`s going to happen soon; a massive vulnerability like this is going to spread a virus to every computer running an Apple OS or iTunes.. |
| I'm feeling like a drama magnet right now.. | |
| Good [+1]Toggle ReplyLink» databoy replied on Tue Nov 29, 2011 @ 7:29pm |
| Coolness: 106095 | ...and to every Iphone/Ipad!
HAha |
| I'm feeling bump right now.. | |
Apple Itunes Flaw 'Allowed Government Spying For 3 Years'
| Page: 1 |
[ Top Of Page ] |
Post A Reply |
You must be logged in to post a reply.
[ Top Of Page ] |
