toggle

AAPL Stock: 105.22 ( + 0.39 )

Subscribe to this page now.

Google increases cash rewards for Chrome bug bounties

10/01, 5:20pm

New $15,000 award for successful submissions, up from $5,000.

Google is increasing the rewards in its bug bounties program, as it tries to make its software more secure. The search company is updating its reward pricing range to between $500 and $15,000 per bug, up from the previous maximum of $5,000 for a high-quality report, with an increased focus on discovering potential vulnerabilities within the Chrome browser.

more

Microsoft, Facebook offer more cash bounties for web software bugs

11/07, 10:12am

Bug bounty offers up to $5,000 for vulnerabilities in server software

Microsoft is teaming up with Facebook to offer more bounties for bugs and flaws in software used to by a vast majority of websites. The Internet bug bounty, HackerOne, sees the two companies paying cash prizes of between $300 and $5,000 in exchange for details for vulnerabilities in server-based software and frameworks such as PHP, Ruby, Rails, OpenSSL, and Apache httpd.

more

Java for Snow Leopard, Lion and Mountain Lion updated over security

10/15, 10:30pm

Apple-provided update fixes issues, uninstalls the old Apple Java applet plug-in

For the fifth time this year, Apple has had to issue an update to Java for all three supported versions of OS X: Snow Leopard (10.6), Lion (10.7) and Mountain Lion (10.8). As has become the norm, the update was issued due to the discovery of "multiple vulnerabilities" in Java 1.6.0_51. The cross-platform development technology has been updated to version 1.6.0_65, and is referred to in Software Update as "Java for Mac OS X 10.6 Update 17" for Snow Leopard and "Java for OS X 2013-005" for newer systems.

more

Microsoft issues security fix for Mac Office 2011

10/08, 9:06pm

Only security issues addressed, affects all Mac Office 2011 editions

On Tuesday, Microsoft issued a new security patch for all versions of its Microsoft Office for Mac 2011 edition, including academic, Standard and Home & Business editions and all the main applications contained therein. The update "fixes critical issues and also helps to improve security. It includes fixes for vulnerabilities that an attacker can use to overwrite the contents of your computer's memory with malicious code." The fix is intended for Intel Macs running OS X 10.5.8 or later.

more

IBM study ranks Mac as most vulernable OS [u]

02/11, 5:15pm

Mac OS vulnerabilities

IBM's security research and development group, X-Force, has released an annual report that suggests Mac is the most vulnerable operating system. The percentage of patched vulnerabilities compared to the total number of disclosed vulnerabilities was used for the rankings, with Mac OS X and OS X Server each leaving 14.3 percent of the problems unresolved. IBM gave the highest score to its own AIX platform, claiming to have fixed over 96 percent of the vulnerabilities, while Microsoft failed to patch between 5.5 percent and 4.1 percent of the reported issues for its Windows operating systems.

more

Security update, 10.5.5 fix vulnerabilities

09/15, 10:10pm

Security Update 2008-006

Apple on Monday unveiled Security Update 2008-006, detailing the various security fixes patched between it and the Mac OS X 10.5.5 update. The updates both resolve a vast number of issues, mostly relating to the remote execution of arbitrary code, many issues resolved were related to performance and password security. Several vulnerabilities could have allowed malicious users to gain access to a list of authenticated users, or to change the password of an unattended station through the login screen.

more

Safari 3.1.2 for Windows fixes security holes

06/19, 9:50pm

Safari 3.1.2 for Windows

Apple on Thursday unveiled a new security update rolled into Safari 3.1.2 for Windows. Which offers users protection against vulnerabilities with the imaging engine, file saving, and malicious code execution. Users could have been affected by maliciously crafted BMP or GIF files, which could allow assailants to learn what is in active memory at any given time. Safari 3.1.2 for Windows is available through Apple Software Update, as well as the company's support page.

more

Major security update fixes AFP, CUPS, more

03/18, 5:15pm

Security Update 2008-002

Apple today unveiled Security Update 2008-002, which provides a number of fixes for several system vulnerabilities found in AFP, CUPS, AppKit, and several other system-level resources. Most of the vulnerabilities revolve around maliciously crafted URLs granting access to system-level privileges, while others allow users to bypass system security. The majority of fixes are for Mac OS X 10.4 Tiger and Tiger Server users, while some apply to the 10.5 Leopard equivalents.

more

Many issues resolved with latest security updates

02/11, 6:00pm

January security updates

Apple's latest Mac OS X Leopard 10.5.2 update and 2008-001 security update for 10.4 Tiger users fixes a number of different vulnerabilities that have existed in a number of different system resources. A stack buffer overflow in Directory Services could allow a local user to execute arbitrary code, while still maintaining system privileges. The issue is resolved by improved bounds checking, and is included with the update.

more

MacNN Sponsor

MacNN Newsletter

FREE Apple, iPhone and Mac Newsletter

  • We will not share your email address with anyone.

    toggle

    Most Popular

    MacNN Sponsor

    Recent Reviews

    Sound Blaster Roar Bluetooth speaker

    There could very well be a new king of the hill for Bluetooth speakers, with Sound Blaster's recent entry into the marketplace. Bring ...

    Kenu Airframe Plus

    Simple, stylish and effective, the Kenu Airframe + portable car mount is the latest addition to Kenu's lineup. Released earlier this ...

    Plantronics Rig Surround 7.1 headset

    Trying to capture the true soundscape of video games can be a daunting task. Looking to surround-sound home theater options, users hav ...

    toggle

    Most Commented