January 2018

Apple releases new security updates to address Spectre

Apple released macOS High Sierra 10.13.2 Supplemental Update that includes security improvements to Safari and WebKit to mitigate the effects of Spectre vulnerability (CVE-2017-5753 and CVE-2017-5715).  Apple also provided a security update for Safari 11.0.2 for OS X El Capitan 10.11.6 and macOS Sierra 10.12.6, with fixes for the same Spectre vulnerabilities. The MacOS High Sierra update will already upgrade Safari to version 11.0.2 (13604.4.7.1.6) or version 11.0.2 […]

Apple releases new security updates to address Spectre Read More »

WPA3 – new WiFi standard

The Wi-Fi Alliance introduced a new WiFi protocol and standard WPA3 that will enhance Wi-Fi network security protections and simplify Wi-Fi security configuration for users and service providers. The Wi-Fi Alliance organization sets the standards for Wi-Fi safety and has certified 35,000 Wi-Fi products. The new standard will be the first since WPA2 was established over a decade ago

WPA3 – new WiFi standard Read More »

Meltdown and Spectre vulnerabilities

US-CERT issued a security update regarding the latest Intel processor design flaws. According to the vulnerability note, the CPU hardware implementations are vulnerable to side-channel attacks. The two vulnerabilities are referred to as Meltdown and Spectre. An excerpt from the advisory:  “CPU hardware implementations are vulnerable to side-channel attacks referred to as Meltdown and Spectre. These attacks are described in detail by Google Project

Meltdown and Spectre vulnerabilities Read More »

Trackmageddon exposes millions of GPS tracking devices

Vulnerabilities dubbed “Trackmageddon” were discovered in online services of (GPS) location tracking devices. The vulnerabilities could allow third parties unauthorized access to location data of all location tracking devices managed by a vulnerable online service. Other types of data impacted include, serial number (i.e., IMEI), assigned phone number, model/type name and custom assigned names. The latter two

Trackmageddon exposes millions of GPS tracking devices Read More »