Tag - Phishing
Adobe on Wednesday has released an emergency patch for its Flash Player browser plug-in due to a critical flaw that is being actively exploited in the wild. Flash Player 126.96.36.199 and earlier for Windows and Macintosh systems are affected by the issue, as is version 188.8.131.526 for Linux 11.x versions. The attack, called APT3 for the China-based organization from which it originates, uses spam "phishing" emails targeted at industry professionals to gain credentials used to steal intellectual property data.
As part of a slew of recent security flaws found in Apple's two operating systems (most of which, it should be noted, are either not serious or are remarkably unlikely to become common), a security researcher has turned up an issue in the iOS Mail app that has the potential to become a widespread problem. As a result, users should be wary of any pop-up dialogue boxes in iOS Mail that ask for the user to re-login to a given email service.
The Internet Corporation for Assigned Names and Numbers (ICANN), the organization which allocates IP addresses and oversees the use of domain names, has been the latest high-profile victim of hacking. The non-profit confirmed its systems were accessed by unauthorized individuals earlier this month, following a "spear phishing" attack in late November.
Despite JP Morgan Chase claiming that it isn't seeing enhanced fraud activity, two states have launched an investigation of the event that caused the reveal of 76 million household's information, with the promise of more to come. A recent regulatory filing showed the leak, with customers' names, addresses, phone numbers, and email addresses stolen -- the bank, however, claims no financial information was stolen.
Late Wednesday afternoon, Electronic Arts reported that it had finally closed a serious vulnerability on its web servers that allowed hackers to host a fake "Apple ID" page -- part of a phishing scam that attempted to trick users into visiting the fake page and supplying personal information and credit card details that Electronista reported on earlier today. Netcraft, which originally spotted the compromised pages, reported the problem to EA on Tuesday night.
A web server owned by game publisher Electronic Arts has been compromised and used in a phishing attack against users of Apple services, a security firm has claimed. The server, apparently used to host a calendar under the ea.com domain, is said to be used to try and acquire the Apple ID credentials of potential victims by posing as an account verification site.
Webroot has launched the latest versions of its SecureAnywhere range of home computer security suites. The new Webroot SecureAnywhere Antivirus, Internet Security Plus, and Internet Security Complete adds new detection technology for protecting against new malware and phishing attacks, along with a redesigned interface for easier monitoring.
A new flood of phishing emails have been spotted by readers and Twitter users that ask Apple owners to log in and change their password so they can "get back into your Apple account," possibly a reference to the recent Developer Center downtime that has locked most developers out of their accounts while Apple overhauls security for the services. The emails thus far contain the usual poor spelling, grammar, phrasing and other flaws that immediately mark them out as scams, but may still trick some unwary users or impatient developers trying to gain Dev Center access.
Smartphone users on at least 48 cellular carriers may be vulnerable to traffic hijacking and phishing attacks, according to researchers from the University of Michigan. A paper to be presented this week at the IEEE Symposium on Security and Privacy alleges that researchers were able exploit a carrier security feature to hijack connections to Facebook, Twitter, Windows Live Messenger, and the AdMob advertising network, and to spoof traffic for banks and financial institutions.
Though most Mac users already know never to send their login information for any site in response to an e-mail (often posing as the user's bank, brokerage firm, Apple or other name-brand internet companies), variations on the phishing e-mail continue to pop up, particularly just before and after Christmas. The Mac Observer's Bryan Chaffin reports getting a new one specifically aimed at MobileMe users.
Now AAPL Stock: 100.35 ( -0.06 )
Trade-up program expands in Europe
Smartphone users in France, Italy, and Spain will have until at least August of this year to trade in old iPhone, Windows Phone, or Android models at Apple Stores, and put the reward towards a new iPhone -- thanks to an expansion of Apple's trade-in program into those countries. The money given for the trade-in must be applied towards a new iPhone on a two-year payment plane, and traders must qualify under a credit check as part of the program. Interested customers can apply for the trade-in at their nearest Apple Store. http://bit.ly/1qPsldD
NBCUniversal adds Bravo, Syfy, E! to Apple TV
NBCUniversal has launched three new apps channels for Apple TV users. Bravo Now, Syfy Now and E! Now brings users access full seasons of current and past episodes of most of NBCUniversal's catalog. The Bravo Now app includes shows like "The Real Housewives of New York Cit," "Below Deck Mediterranean," comedy "Odd Mom Out" and "Top Chef." The Syfy Now app offers up shows like "The Magicians," thriller "12 Monkeys" and the reality show "Face Off." The E! Now app serves up shows like "Keeping Up with the Kardashians," "Botched," "#RichKids of Beverly Hills," Caitlyn Jenner's "I Am Cait," and "WAGS." While some content is free, most content requires users to authenticate via their cable satellite or telco TV provider. http://bit.ly/20K4Pea
Apple rolls out Arabic version of Apple.com
Apple has rolled out a new version of its Apple.com website for Arabic language users in the United Arab Emirates. The site utilizes a right-to-left reading format where it has been updated, although the upgrade is still in progress with a number of page links still in the original English language left-to-right format. Of particular note is that the site debuts an all-new custom Arabic font created by the Tarek Atrissi Design agency, giving it a highly contemporary look and feel. The new support for Arabic on its host website follows the introduction of full support for right-to-left languages in iOS 9, and the addition of Arabic support to Siri late last year. http://apple.co/20JHGIM
Adobe previews Photoshop content-aware crop
Adobe has previewed a new 'content-aware crop' feature from the next version of its Photoshop CC. The new feature is similar to its 'content-aware fill' from the current version of Photoshop CC, and potentially saves users time when cropping photos in a way that might otherwise leave blank white space in the frame. Adobe's 'content-aware' tech automatically assesses the blank space and seamlessly fills the blank space with the nearest related content in the space when a photo is expanded or rotated without the need to manually clone that part of the image. The feature allows users to move a horizon by adding more sky or ground, change the aspect ratio by adding content around the edges of the image and fill in the corners of an image when rotated during a crop. Adobe says the feature is coming soon and will be automatically available to Creative Cloud subscribers. http://adobe.ly/20JDFEu
Markzware updates Q2ID for QuarkXPress 12 files
Graphic design file conversion tool maker Markzware has launched a new version of its Q2ID tool. The InDesign plugin enables users to open QuarkXPress files within a new InDesign (INDD) document, without rebuilding the QXP document from scratch -- the new version includes support for QuarkXPress 12 files. Q2ID Subscription members can download the new version as part of their annual plan. A single-user can purchase the plugin for $200, with other licensing options available. http://bit.ly/1Z4dS9t
PopChar X 7.5 arrives
Ergonis Software has released PopChar X 7.5, an improved version of the company's tool for finding and inserting special characters and exploring fonts. PopChar X 7.5 adds support for combined emojis in the Apple Color Emoji font, enhances the "Font Info" view, and adds many further enhancements that improve overall speed and stability. PopChar X 7.5 retails for €30 ($34), and is free for anyone who owns a license for PopChar X 7 or purchased a license for PopChar X 6 on or after March 1, 2014 [4.5MB]
Safari Technology Preview release 5 arrives