macOS: Creating an App-Specific Password for iCloud

· · Tips

Learn how to generate an app-specific password

When you first enable two-factor authentication in iCloud, you might notice some of your apps appear broken. This is because those apps don’t support 2FA, and require app-specific passwords. Follow along with Jeff Butts as he demonstrates how to generate and manage your app-specific passwords.

Britain's Home Secretary Pushes for Encryption Back Door

· · Analysis

Cellebrite's servers hit with data breach

British Home Secretary Amber Rudd says it’s time for technology companies to give law enforcement a way to decrypt private communications because terrorists shouldn’t have a way to secretly chat. Her comments come in the wake of a terrorist attack in London where five people were killed.

UK Anti-encryption Push, Woz at Startup World Cup - TMO Daily Observations 2017-03-27

· · The Mac Observer's Daily Observations Podcast

TMO Daily Observations

There’s a new government call to for tech companies to let law enforcement bypass our security and encryption, but this time it’s from the United Kingdom. Bryan Chaffin and Jeff Butts join Jeff Gamet to look at the ramifications if the U.K. forces the issue, plus Bryan fills us in on Steve Wozniak’s presentation at Startup World Cup.

Pwn2Own Hackers Found Two Safari Zero Day Exploits

· · News

Yesterday was the annual Pwn2Own hacking contest, and also marks the contest’s 10th anniversary. Hackers compete in challenges to find security holes in popular software and mobile devices. This year, two Safari zero days were found by the white-hat hackers.

Android Insecurity, Messaging Anachronisms, and Legacy Apple Auctions - ACM 402

· · Apple Context Machine Podcast

Apple Context Machine Logo

Bryan and Jeff try and wrap their heads around a world where malware is being installed on Android devices in the supply chain, before customers even get the devices. They also take a trip into the anachronistic world of sealing wax and sealing wax stamps, as well as the fascinating world where 40 year-old Apple I computers are auctioned for hundreds of thousands of dollars.

Apple Big Security Hire, Twitter and Two-factor Authentication - TMO Daily Observations 2017-03-15

· · The Mac Observer's Daily Observations Podcast

TMO Daily Observations

It’s security time on TMO’s Daily Observations. Kelly Guimont and John Martellaro join Jeff Gamet to talk about Apple hiring security specialist Jonathan Zdziarski, plus they talk about why two-factor authentication is so important. They also talk about what an awesome asset Tom Negrino has been to the Apple community.

Someone Is Slipping Malware Into Android Devices in the Supply Chain

· · Editorial

Android assembly line with a hacker breaking into them

Get this: someone is slipping malware into Android devices while they’re still in the supply chain. Security firm Check Point found evidence that malware, adnets, spyware, and even ransomware was installed on some 36 Android devices before customers touched them. Devices from Samsung, LG, Xiaomi, ZTE, Lenovo, Asus, and Oppo were included in Check Point’s report. Bryan Chaffin explains.

Apple Already Patched Most CIA Hacks From Wikileaks Report

· · News

iPhone and bug

According to the Wikileaks Vault 7 information dump, the CIA has been hard at work developing hacks to get into the data on our iPhones. Most of the exploits listed in the report, however, are already patched and Apple is working on taking care of the remaining few.

Wikileaks, CIA, and iPhone Hacks - TMO Daily Observations 2017-03-08

· · The Mac Observer's Daily Observations Podcast

TMO Daily Observations

With the Wikileaks report out saying the CIA developed hacking tools to get into our iPhones, John Martellaro joins Jeff Gamet to look at Apple’s security measures for our mobile devices. They also look at the negative message Apple is sending customers by not giving us solid information about the Mac, and Kelly Guimont drops by for a few minutes, too.

iOS 10 Spying Possible With iCloud Backups

· · News

A scary piece from Motherboard brings to attention a tool for iOS 10 spying. A company called Mobistealth sells a special monitoring tool that can pull data from iCloud backups. And the device doesn’t need to be jailbroken to work.

Apple Buys RealFace, but that Doesn't Mean We're Unlocking iPhones with Our Face Yet

· · Analysis

Apple may use iris scanning in the iPhone 8

Apple added another facial recognition company to its stable. This time it’s RealFace, the company behind the photo picker app Pickeez. Reports speculate Apple bought the company so it can jump into using facial recognition instead of Touch ID to unlock our iPhones. That may be Apple’s long-term plan, but don’t count on Touch ID going away any time soon.