I have been out for a bit (conference, two weddings and lots of airports) but I just wanted to post the following video that we did discussing vulnerabilities, specifically the one that happened at CanSec West. Mighty props out to Rob Pegoraro's article that started the discussion in the first place!
Message Edited by jgonzales on 05-09-2008 03:00 PMMessage Edited by mikeromo on 05-15-2008 02:15 PM
One of the most important features of our products is the ability for us to actually update them. The Mac team has been talking a lot about this lately, specifically: how best to keep users up to date without impacting them in any way?
Our updating process actually has quite a few steps:
1 - we launch a process that manages the updating (LiveUpdate)
2 - LiveUpdate checks the LiveUpdate servers (most of the time a Symantec server, but sometimes enterprise customers have a local LiveUpdate server that lives behind the enterprise firewall) and checks to see what updates are actually up there...
Jaqcqui Cheng from Ars Technica has a great article today about the latest email scam design to trick people into giving up their personal information (including social security number and mother's maiden name), this time, the email is supposedly from the iTunes store and links to a poorly crafted site. You should check out Robert Vamosi's article on Cnet about this as well.
Okay, so this is really nothing new, we talk about phishing scams all the time. However, like Jacqui writes in her article, this is interesting because Apple users are getting targeted. iTunes is cross platform, lot...
So, this is a bit of a deviation from our standard security-focused articles, but given how you can't go 15 minutes without hearing about the iPhone 3G, I think it's appropriate to bring it up. I have an original iPhone (4GB!) and was able to successfully download the new iPhone software before the mad rush and figured I would share some observations after a full week or so of using the software.First off, I admit it: I haven't been this excited about computers since I got my first Mac in 1985. Apple's App Store (accessible via iTunes and through the iPhone itself) brings back that sense...
So, "Norton AntiVirus for Mac" has been around for a long time. Everyone seems to know it (alongside Norton Utilities for Mac, another topic for another time), but I gotta tell you, sometimes I think the name does the software a disservice. I mean, literally, as soon as I even say the name of the product, I inevitably hear, “But I thought Macs don’t get viruses!” Everywhere I get this. I was, no joke, getting a physical with my doctor, and when he was done he asked, “You know, I don’t mean to, well, whatever, but I thought that Macs didn’t get viruses.”Can I at least get my pants on before...
This is where the magic happens...WWDC08 I was up in San Francisco last week for the Apple WorldWide Developer's Conference (WWDC08) and I figured I would talk a bit about it.Now, the specifics of the show have been blogged to death, I am sure (some good writeups here and here), but a few themes really struck me:1 - We are all basically experiencing a fairly incredible transition, thanks in no small part to the iPhone. Yes, so-called Smartphones have been around for awhile, but it is clear that the iPhone has captured the imagination of people who would otherwise not care at all about a ...