https://www.forbes.com/sites/zakdoffman/2020/06/23/apple-ios14-release-iphone-11-pro-update-ipad-upgrade-security/#ba6ede82d74f
https://archive.md/wip/G5QH5
https://archive.md/wip/G5QH5
Apple’s WWDC announcements this week have had a heavy focus on security and privacy.
The U.S. tech giant has had a difficult few months, with multiple issues and vulnerabilities reported, and now seemingly wants to move past all this, to restate its security and privacy credentials, setting itself apart from the competition.
Date numerology: 6/23/2020 = 6+23+2+0+2+0 = 33
Back in February, I reported on an issue with Apple’s clipboard function. As disclosed by security researchers Talal Haj Bakry and Tommy Mysk, any data copied to the clipboard on an iOS device could be read by any active app.
The reflection of 39 is 93
Worse, the researchers told me, “the Universal Clipboard can also be affected by this vulnerability to eavesdrop on what users copy.”
What this means is that if you copy something on your Mac, it can be read by an app on your iPhone.
And given we tend to use copy and paste more on a desktop or laptop than on a phone, this makes the issue much more serious in the real world.
There is no notification, no setting to restrict an app’s ability to access user information; the vulnerability is hidden—users have no way to tell when an app might be stealing their data.
The issue was reported to Apple back in January. “After analyzing the submission,” the researchers explained, “Apple informed us that they don’t see an issue with this vulnerability.” In essence, Apple’s view seemed to be that this was its clipboard function working as planned. There was no issue to fix—nothing to see here.
'KlipboardSpy' and 'genuine issue' both share 3 out of the 4 base ciphers.
No comments:
Post a Comment