Security – Page 164 – PossibleThreat Articles

How Apple is improving single sign-on

June 28, 2022 0 Comments iOS, MacOS, mobile device management, Security

Credit to Author: Jonny Evans| Date: Tue, 28 Jun 2022 07:59:00 -0700

Among a slew of announcements at WWDC this year were some important changes to Apple’s support for single sign-on (SSO). Here’s what’s coming when new updates ship this fall.

SSO + BYOD = iOS 16, iPadOS 16

Apple first introduced SSO support at WWDC 2019 with Sign in with Apple, which also saw the introduction of extensions to enable this kind of authentication. It allowed a user to access a service or website using their Apple ID, and meant support for identity providers, the use of highly secure token-based signatures and the tools service providers required to implement these systems.

To read this article in full, please click here

ComputerWorld Independent

Time for a mid-year browser security check

June 27, 2022 0 Comments Browsers, Security

Credit to Author: Susan Bradley| Date: Mon, 27 Jun 2022 09:24:00 -0700

We’ve reached the mid-point of 2022 and when it comes to security, I feel like we’re not making much headway. I still see people report they’re getting scammed, ransomed, and attacked on a regular basis — and for many users the browser is becoming the most important part of whatever platform you use. So now is a good time to review your browsers, and any extensions you’ve installed to beef up security.

Note, I said browsers —plural. While enterprises might want to standardize on only one browser for better control, for small businesses and individual users, I recommend installing more than one. (I often use three different browsers.)

Why is this important? Because attackers (and trackers) go after browsers. In fact, it’s good to think of your browser a separate operating system, and act accordingly to protect it. Though I focus mainly on Windows issues, these guidelines and recommendations apply to Mac OS, Ubunto, Mint, and others.

To read this article in full, please click here

Security Wired

How to Use Microsoft Defender on All Your Devices

June 27, 2022 0 Comments Security, Security / Security Advice

Credit to Author: Reece Rogers| Date: Mon, 27 Jun 2022 11:00:00 +0000

If you use a mix of Apple, Android, and Windows gadgets, you’re in luck: The security tool is now available to any Microsoft 365 subscriber.

Security Wired

The Post-Roe Privacy Nightmare Has Arrived

June 25, 2022 0 Comments Security, Security / Cyberattacks and Hacks, Security / Privacy, Security / Security News

Credit to Author: Andrew Couts| Date: Sat, 25 Jun 2022 13:00:00 +0000

Plus: Microsoft details Russia’s Ukraine hacking campaign, Meta’s election integrity efforts dwindle, and more.

Security Wired

How to Move Your WhatsApp Chats Across Devices and Apps

June 25, 2022 0 Comments Security, Security / Privacy

Credit to Author: Matt Burgess| Date: Sat, 25 Jun 2022 11:00:00 +0000

It’s never been easier to switch between iPhone and Android—and to get your messages out of the Meta ecosystem entirely.

ComputerWorld Independent

The surveillance-as-a-service industry needs to be brought to heel

June 24, 2022 0 Comments Android, Apple, iOS, Mobile, Security, small and medium business

Credit to Author: Jonny Evans| Date: Fri, 24 Jun 2022 09:40:00 -0700

Here we go again: another example of government surveillance involving smartphones from Apple and Google has emerged, and it shows how sophisticated government-backed attacks can become and why there’s justification for keeping mobile platforms utterly locked down.

What has happened?

I don’t intend to focus too much on the news, but in brief it is as follows:

Google’s Threat Analysis Group has published information revealing the hack.
Italian surveillance firm RCS Labs created the attack.
The attack has been used in Italy and Kazakhstan, and possibly elsewhere.
Some generations of the attack are wielded with help from ISPs.
On iOS, attackers abused Apple’s enterprise certification tools that enable in-house app deployment.
Around nine different attacks were used.

The attack works like this: The target is sent a unique link that aims to trick them into downloading and installing a malicious app. In some cases, the spooks worked with an ISP to disable data connectivity to trick targets into downloading the app to recover that connection.

To read this article in full, please click here

Security Wired

Google Warns of New Spyware Targeting iOS and Android Users

June 24, 2022 0 Comments Security, Security / Cyberattacks and Hacks, Security / Security News

Credit to Author: Lily Hay Newman| Date: Thu, 23 Jun 2022 17:30:32 +0000

The spyware has been used to target people in Italy, Kazakhstan, and Syria, researchers at Google and Lookout have found.

Security Wired

Brave Now Lets You Customize Search Results—for Better or Worse

June 23, 2022 0 Comments Security, Security / Privacy

Credit to Author: Matt Burgess| Date: Wed, 22 Jun 2022 15:59:55 +0000

The privacy-focused company’s new Goggles tool allows users to weed out the noise—whatever that might mean.

ComputerWorld Independent

Apple says it’s time your business ran BIMI

June 23, 2022 0 Comments Apple, email clients, iOS, MacOS, Security

Credit to Author: Jonny Evans| Date: Thu, 23 Jun 2022 06:41:00 -0700

Apple will add another obstacle against successful phishing attacks in iOS 16, iPadOS 16, and macOS Ventura, which will show a company’s official logo to help recipients recognize genuine from fake emails.

Brand Indicators for Message Identification

Apple’s forthcoming operating systems will support Brand Indicators for Message Identification (BIMI). This is a specification to enable the use of brand-controlled logos within emails and will be a way to tell recipients that an email genuinely comes from the company concerned. Google has supported BIMI since 2021.

To read this article in full, please click here

QuickHeal Security