Smashing Security podcast #254: A dead hamster, a brass pen, and The Beatles – Graham Cluley Security News
Smashing Security podcast #254: A dead hamster, a brass pen, and The Beatles Graham Cluley Security News
Tag Archive for: brass
Apple brass discussed disclosing 128-million iPhone hack, then decided not to
Getty Images
In September 2015, Apple managers had a dilemma on their hands: should, or should they not, notify 128 million iPhone users of what remains the worst mass iOS compromise on record? Ultimately, all evidence shows, they chose to keep quiet.
The mass hack first came to light when researchers uncovered 40 malicious App Store apps, a number that mushroomed to 4,000 as more researchers poked around. The apps contained code that made iPhones and iPads part of a botnet that stole potentially sensitive user information.
128 million infected.
An email entered into court this week in Epic Games’ lawsuit against Apple shows that, on the afternoon of September 21, 2015, Apple managers had uncovered 2,500 malicious apps that had been downloaded a total of 203 million times by 128 million users, 18 million of whom were in the US.
“Joz, Tom and Christine—due to the large number of customers potentially affected, do we want to send an email to all of them?” App Store VP Matthew Fischer wrote, referring to Apple Senior Vice President of Worldwide Marketing Greg Joswiak and Apple PR people Tom Neumayr and Christine Monaghan. The email continued:
If yes, Dale Bagwell from our Customer Experience team will be on point to manage this on our side. Note that this will pose some challenges in terms of language localizations of the email, since the downloads of these apps took place in a wide variety of App Store storefronts around the world (e.g. we wouldn’t want to send an English-language email to a customer who downloaded one or more of these apps from the Brazil App Store, where Brazilian Portuguese would be the more appropriate language).
The dog ate our disclosure
About 10 hours later, Bagwell discusses the logistics of notifying all 128 million affected users, localizing notifications to each users’ language, and “accurately includ[ing] the names of the apps for each customer.”
Alas, all appearances are that Apple never followed through on its plans. An Apple representative could point to no evidence that such an email was ever sent. Statements the…
Cubs brass takes steps to bolster computer security – Chicago Sun-Times
|
Cubs brass takes steps to bolster computer security
Chicago Sun-Times BOSTON — The computer security breach that exposed the Houston Astros' private trade memos to the public a few days ago sent shock waves through the game and gave the Cubs one more priority task for July. “It is scary for all of us,” Cubs general … |
Top brass to discuss U.S. Air Force role in cyber warfare – Chicago Tribune
|
Top brass to discuss U.S. Air Force role in cyber warfare
Chicago Tribune WASHINGTON (Reuters) – Twenty top U.S. Air Force generals are due to discuss cyber warfare in a November meeting aimed at clarifying the service's role in this new and increasingly important arena of military conflict. The four-star generals prepared … |