Fuller details have now been published about the EFAIL vulnerabilities in PGP and S/MIME email encryption, at the […]
A major vulnerability has been revealed, and will be detailed very shortly, affecting mail encryption using PGP/GPG and […]
Has someone hacked into your encrypted drive already, or is this another security vulnerability in High Sierra?
High Sierra 10.13.4 may have stopped leakage of APFS encryption passphrases, but that is only a small part of an accident chain going back many years.
I wrote yesterday that macOS High Sierra 10.13.4 finally fixes the leakage of APFS encryption passphrases into the […]
The latest update to High Sierra, bringing it to 10.13.4, does fix the bug discovered by Sarah Edwards […]
Did Apple keep quiet for more than 3 months about the leak of encryption passphrases into High Sierra’s log files?
I previously described a serious vulnerability in macOS High Sierra versions to 10.13.1 which was discovered by Sarah […]
How good is the new unified log’s privacy? Does it live up to Apple’s goal of designing privacy into the system, or is it easily beaten? And how did passwords leak into the log?
Congratulations to Sarah Edwards for unearthing a security vulnerability in macOS 10.13 High Sierra, in which copies of […]