With the Wikileaks report out saying the CIA developed hacking tools to get into our iPhones, John Martellaro joins Jeff Gamet to look at Apple’s security measures for our mobile devices. They also look at the negative message Apple is sending customers by not giving us solid information about the Mac, and Kelly Guimont drops by for a few minutes, too.
Security
iOS 10 Spying Possible With iCloud Backups
A scary piece from Motherboard brings to attention a tool for iOS 10 spying. A company called Mobistealth sells a special monitoring tool that can pull data from iCloud backups. And the device doesn’t need to be jailbroken to work.
iPhone 8: Goodbye Home Button, Hello Function Area
The latest in the steady stream of iPhone 8 reports says the familiar Home button with Touch ID is going away and in its place we’ll get the Function Area. That’s fancy talk for a space at the bottom of the iPhone screen for a row of virtual buttons.
![Deleted Browser History From Safari Gets Saved To iCloud [Updated]](https://www.macobserver.com/wp-content/uploads/2017/02/IMG_0798.webp)
Deleted Browser History From Safari Gets Saved To iCloud [Updated]
In unnerving news, Forbes reports that your web browsing history in Safari gets stored in iCloud, even if you deleted it. Using a special tool, a security analyst accidentally discovered an iCloud record called “tombstone,” and this is where Apple stores the deleted history.
Hackers Post Cellebrite's Smartphone Cracking Tools Online
A hacker dumped 900GB of hacking tools and data used by Cellebrite. The cache of data is on Pastebin, for now, at least. Cellebrite is an Israeli security company that came to public prominence when the FBI used its services to hack into the San Bernadino shooter’s iPhone.
Goodbye iPhone Activation Lock Checker, Presidential Immigration Ban and Apple - TMO Daily Observations 2017-01-30
Apple shut down its iPhone Activation Lock Status checker without any explanation, which raises a few questions. Bryan Chaffin and Dave Hamilton join Jeff Gamet to look at what may be behind Apple’s decision, plus they look at what impact the presidentail executive order banning immigration from certain countries could have on Silicon Valley companies such as Apple.
Apple Patches 8 Security Flaws in Apple TV with tvOS 10.1.1
Apple released tvOS 10.1.1 for Apple TV (4th Generation) on Monday. Apple’s general release notes specify only that, “This update includes general performance and stability improvements.” The Security Content document for the update details eight security flaws that were patched.
Apple Releases Sierra 10.12.3 Update with Fixes for PDF, MacBook Pro with Touch Bar, Security, More
Apple shipped macOS Sierra 10.12.3 on Monday. The update includes some relatively minor bug fixes, an issue with Adobe Premiere Pro on MacBook Pro with Touch Bar, a PDF encryption fix, and more. The update also includes fixes for eight security flaws.
FCC Net Neutrality, Backdoor Hacks, and New Apple Products - ACM 394
Outgoing FCC Chairman Tom Wheeler made a plea for the incoming administration to protect Net Neutrality. Bryan and Jeff discuss whether that plea is likely to fall on deaf ears [spoiler: yes, it will]. They also discuss the implications of the Cellebrite hack, and the fact that Apple released two product updates this week.
Managing Photos, Fixing Your Apple Watch & Resolving Network Issues – Mac Geek Gab 640
Migrating Photos to a new Mac, managing and syncing your family’s photos, speeding up iOS Spotlight searches, fixing an unresponsive Digital Crown on your Apple Watch and resolving website loading delays are just some of the things you’ll learn from your two favorite geeks in this week’s show! Listen as Dave Hamilton and John F. Braun answer your questions and solve your problems.
Vine's Demise, Avoiding Weak Passwords - TMO Daily Observations 2017-01-17
The video sharing social network Vine shut down today, and is being reborn as a Twitter feature. Bryan Chaffin and the Maccast’s Adam Christianson join Jeff Gamet to look at the state of social networks, plus they dive into the importance of strong passwords.
iOS Developers Get More Time To Use ATS
At its World Wide Developers Conference (WWDC) this year, Apple announced that all apps on its platform must support App Transport Security (ATS). The company told developers on Friday, however, that it is extending that deadline.
Congressional Encryption Working Group Backs Encryption, Thoughts on CES - ACM 390
The Congressional Encryption Working Group has issued a year-end report on encryption that finds weakening encryption would harm the national security interests of the United States. Bryan and Jeff discuss the implications, as well as a new request from the Turkish government asking Apple to unlock an iPhone 4s owned by an assassin. They cap the show with a preview of CES expectations.
1Password 6.5 for iOS Adds Native Apple Watch App
AgileBits announced Tuesday the release of 1Password 6.5 for iOS. This release offers device syncing through 1Password.com and gets the iOS version up to date with 1Password 6.5 for Mac. The company also made the Apple Watch app native, which should mean it will be much faster (you can read more about that in the AgileBits blog). In addition to being faster, the native app allows you to access entries to any vault, including vaults stored in 1Password.com—previously, you could only access items in your primary vault. You can download the update through the App Store.
How to Setup a VPN on iPhone with iOS 10
You might (or might not) know about using a VPN to keep your Mac secure. But did you know you can also use a VPN on your iPhone? Here’s how to set one up.
Yahoo's Data Breach, Mac Laptop Battery Time Estimates - TMO Daily Observations 2016-12-15
Yahoo! lost over a billion user’s account information in a data breach. Bryan Chaffin and Dave Hamilton join Jeff Gamet to talk about what happened, and share some tips for protecting your accounts and data from hackers. They also look at some apps for showing the battery time remaining estimate on your Mac laptop.
1B User Accounts Compromised in Massive Yahoo! Data Breach
If you have a Yahoo! login, it’s time to go change your password again. The company says personal information for more than a billion users was stolen, including names and passwords. The security breach happened in August 2013, and is likely the largest ever.
Apple Squashes 11 Security Holes in iOS 10.2
Apple released iOS 10.2 on Monday, and the company was much quicker than normal in releasing the security patch notes for the release. According to those notes, there are 11 security holes fixed in the release. Most of those holes are serious, and some allowed access to various aspects of a device when it should be locked.
macOS Sierra: Launching Apps from Unidentified Developers
macOS Sierra wants to keep you safe from apps that might not have your best interests at heart, say like, ransomware that locks you out of your files until you pay out a couple bitcoin. But what about the apps Sierra won’t let you launch that you know are safe? There’s a fix for that once you know where to look.
macOS Sierra: Enabling Your Mac's Firewall and Stealth Mode
Your Mac is pretty safe on your private home network, but what about when you’re surfing the Web in coffee shops? Anyone with a computer and rudimentary hacking skills could target you, which is why it’s important to make sure your Mac’s built-in firewall is enabled—and that Stealth Mode is turned on, too. Read on to learn how.
macOS Sierra: Disable Auto-Logout if Sierra Enabled It
Some people have reported weird rebooting/logging out problems on their Macs after upgrading to macOS Sierra. Mac Geek Gab listener Ken was one of those folks, and he traced it to an auto-logout preference Sierra appears to have changed for him. Fortunately, resetting it is an easy fix. Bryan Chaffin shows you how.
The Most Important Reason to Upgrade to macOS Sierra: Security
When Apple launches a new version of one of its OSes, say, macOS Sierra, the first thing users think about is the features. If they’re a bit more methodical, they’ll look at their mission critical apps and monitor for updates from those developers. But, above all, a decision to not upgrade (or do it soon) must be balanced against the security updates folded into the new version. John explains.
Can't Remotely Control Your HomeKit Devices? Enable iCloud Two-Factor Authentication
If you upgraded to iOS 10 on your iPhone or iPad, and tvOS 10 on your fourth generation Apple TV and now can’t remotely access your HomeKit devices, there’s probably an easy fix for that. Odds are you haven’t enabled iCloud Two-Factor authentication, which HomeKit in iOS 10 and tvOS 10 requires. Read on to learn how to get set up.
Get Ready for the FBI's New Encryption Back Door Push
The FBI’s fight for government mandated backdoors into our encrypted data and devices is far from over, and Director James Comey says he plans to bring that back to the forefront next year. Mr. Comey says it’s time for an “adult conversation” on the topic, and that law enforcement needs an easy way to access our private data for criminal investigations.