• chevron_right

      “MFA Fatigue” attack targets iPhone owners with endless password reset prompts

      news.movim.eu / ArsTechnica · Wednesday, 27 March - 18:10

    iPhone showing three password reset prompts

    Enlarge / They look like normal notifications, but opening an iPhone with one or more of these stacked up, you won't be able to do much of anything until you tap "Allow" or "Don't Allow." And they're right next to each other. (credit: Kevin Purdy)

    Human weaknesses are a rich target for phishing attacks. Making humans click "Don't Allow" over and over again in a phone prompt that can't be skipped is an angle some iCloud attackers are taking—and likely having some success.

    Brian Krebs' at Krebs on Security detailed the attacks in a recent post , noting that "MFA Fatigue Attacks" are a known attack strategy . By repeatedly hitting a potential victim's device with multifactor authentication requests, the attack fills a device's screen with prompts that typically have yes/no options, often very close together. Apple's devices are just the latest rich target for this technique.

    Both the Kremlin-backed Fancy Bear advanced persistent threat group and a rag-tag bunch of teenagers known as Lapsus$ have been known to use the technique, also known as MFA prompt bombing , successfully.

    Read 11 remaining paragraphs | Comments

    • chevron_right

      Apple overhauls its entire Windows app suite, including iCloud and Apple Music

      news.movim.eu / ArsTechnica · Thursday, 8 February - 19:35 · 1 minute

    • The new iCloud for Windows app, which does a surprisingly good job of looking like a native Windows 11 app. It also respects the system dark mode setting.

    Big news for people who prefer iPhones but also prefer to use Windows PCs: Apple has quietly overhauled its entire suite of Windows apps, including non-beta versions of the Apple Music, Apple TV, and Devices apps that it began previewing for Windows 11 users over a year ago . Collectively, these apps replace most of the functionality from the iTunes for Windows app; iTunes for macOS was discontinued all the way back in 2019 . Apple has also released a major iCloud for Windows update with an overhauled design.

    All of the apps are currently available in the Microsoft Store. While the previews that Apple released last year required Windows 11 22H2 or newer, the final versions of all four new apps also work in Windows 10 for people who have chosen not to upgrade or whose PCs do not meet the system requirements.

    The Apple Music and Apple TV apps both offer access to Apple's streaming music and video libraries for people with subscriptions, though both apps will also import and play your local music and video libraries from iTunes if you have them.

    Read 8 remaining paragraphs | Comments

    • chevron_right

      Apple details reasons to abandon CSAM-scanning tool, more controversy ensues

      news.movim.eu / ArsTechnica · Saturday, 2 September, 2023 - 10:33 · 1 minute

    Apple logo obscured by foliage

    Enlarge (credit: Leonardo Munoz/Getty )

    In December, Apple said that it was killing an effort to design a privacy-preserving iCloud photo scanning tool for detecting child sexual abuse material (CSAM) on the platform. Originally announced in August 2021, the project had been controversial since its inception. Apple first paused it that September in response to concerns from digital rights groups and researchers that such a tool would inevitably be abused and exploited to compromise the privacy and security of all iCloud users. This week, a new child safety group known as Heat Initiative told Apple that it is organizing a campaign to demand that the company “detect, report, and remove” child sexual abuse material from iCloud and offer more tools for users to report CSAM to the company.

    wired-logo.png

    Today, in a rare move, Apple responded to Heat Initiative, outlining its reasons for abandoning the development of its iCloud CSAM scanning feature and instead focusing on a set of on-device tools and resources for users known collectively as “Communication Safety” features. The company's response to Heat Initiative, which Apple shared with WIRED this morning, offers a rare look not just at its rationale for pivoting to Communication Safety, but at its broader views on creating mechanisms to circumvent user privacy protections, such as encryption, to monitor data. This stance is relevant to the encryption debate more broadly, especially as countries like the United Kingdom weigh passing laws that would require tech companies to be able to access user data to comply with law enforcement requests.

    “Child sexual abuse material is abhorrent and we are committed to breaking the chain of coercion and influence that makes children susceptible to it,” Erik Neuenschwander, Apple's director of user privacy and child safety, wrote in the company's response to Heat Initiative. He added, though, that after collaborating with an array of privacy and security researchers, digital rights groups, and child safety advocates, the company concluded that it could not proceed with development of a CSAM-scanning mechanism, even one built specifically to preserve privacy.

    Read 9 remaining paragraphs | Comments

    • chevron_right

      Il reste 1 mois pour sauvegarder son « flux de photos » iCloud, avant sa suppression

      news.movim.eu / Numerama · Tuesday, 27 June, 2023 - 09:55

    Avant le lancement d'iCloud Photos, Apple proposait la fonction « Mon flux de photos », qui synchronisait automatiquement les 1 000 dernières images de son iPhone avec son iPad ou son Mac. « Mon flux de photos » s'arrêtera le 26 juillet 2023. [Lire la suite]

    Abonnez-vous aux newsletters Numerama pour recevoir l’essentiel de l’actualité https://www.numerama.com/newsletter/

    • chevron_right

      Avec iCloud sur Windows 11, vos photos privées ne le sont plus vraiment

      news.movim.eu / JournalDuGeek · Tuesday, 18 April, 2023 - 17:00

    icloud-windows-11-158x105.jpg iCloud Windows 11

    Microsoft propose une meilleure intégration des photos d'iCloud sur Windows 11. Malheureusement, l'outil proposé par Apple a un problème et les photos masquées restent visibles depuis l'OS de Microsoft.

    Avec iCloud sur Windows 11, vos photos privées ne le sont plus vraiment

    • chevron_right

      Comment bien configurer un smartphone ou un iPad pour un enfant ?

      news.movim.eu / Numerama · Sunday, 19 February, 2023 - 08:40

    Votre enfant se sert de votre vieil iPhone ou votre ancienne tablette ? Il est probable que n'utilisiez pas les outils d'Apple et Google dédiés à l'utilisation d'un appareil par un enfant. C'est dommage, ils sont pourtant très utiles pour sécuriser leur expérience (et protéger votre compte en banque). [Lire la suite]

    Abonnez-vous aux newsletters Numerama pour recevoir l’essentiel de l’actualité https://www.numerama.com/newsletter/

    • chevron_right

      Comment activer le chiffrement de bout en bout sur iCloud ?

      news.movim.eu / Numerama · Sunday, 29 January, 2023 - 14:09

    La « protection avancée des données » permet de sécuriser au maximum les contenus de son compte iCloud en empêchant Apple d'y accéder, y compris en cas d'urgence. Il s'agit d'un réglage optionnel. [Lire la suite]

    Abonnez-vous aux newsletters Numerama pour recevoir l’essentiel de l’actualité https://www.numerama.com/newsletter/

    • chevron_right

      La nouvelle mise à jour de l’iPhone peut lire les clés de sécurité physiques

      news.movim.eu / Numerama · Wednesday, 18 January, 2023 - 18:00

    clé de sécurité

    iOS 16.3, disponible la semaine du 23 janvier, va ajouter le support des clés de sécurité physiques aux iPhone et iPad. Cette nouvelle méthode d'authentification vise à sécuriser les comptes des utilisateurs. [Lire la suite]

    Abonnez-vous aux newsletters Numerama pour recevoir l’essentiel de l’actualité https://www.numerama.com/newsletter/