Security researcher Benjamin Kunz Mejri from Vulnerability Lab has discovered a serious vulnerability in Apple's App Store and iTunes web apps, which can lead to "session hijacking, persistent phishing attacks, persistent redirect to external sources and persistent manipulation of affected or connected service module context." Luckily, the researcher decided to share his discovery with Apple first, so that the company could fix the issue.
Security researcher Stefan Esser has revealed the existence of a privilege escalation vulnerability affecting OS X 10.10 (Yosemite), and has provided a working proof of concept local exploit that installs a root shell on the target machine.
Starting with OS X 10.11 ("El Capitan") and iOS 9, Apple will introduce a two-factor authentication option that will replace the current two-step verification one.
Apple has released security updates for Safari, OS X Yosemite (and previous OS X versions), and iOS.
Our digital lives are leaving data trails through social networking sites, email providers, Internet service providers, and mobile apps.
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.