This Week's Sponsor:

DEVONTHINK

Store, Organize, and Work the Smart Way


Posts tagged with "security"

App Preview: Harald By Stealthy Cactus Software

We’ve been there before: you just finished a ridiculously long report on the colonization of Mars and you’re ready to toss the excess scrap work into the trash bin. In your sleep deprived daze, grouped with those pictures of space aliens and rock robots is your digital manifesto, hot of the press and steaming as it’s shredded with a click of the empty button. Come tomorrow morning, you find that file is damned near irrecoverable before the paper is due. Those bogus moments always creep up when we’re either brain dead or because of pesky Mac viruses (I guess I can’t slip that unicorn in here can I?), but you can prevent the total obliteration of your files by safeguarding them with Harald.

Don’t risk accidental deletions, Scoble’s children, or my habit of renaming your files in Dropbox with your critical documents. Harald is the knight in shining armor for files that shouldn’t ever end up in the trash can. Accidentally delete a file? Harald will block your eagerness to hit that delete button in favor of reminding you that the file is of great importance. Does it save the day? You betcha. Simply select your files, tap that menubar icon, and mark them for protection under the Harald shield. It’s pretty easy, and if you don’t believe me, you’ll want to check out the teaser video after the break. It’s coming to the Mac App Store soon, so prepare a meager $3.99 for when it launches.

Read more


Woman Tries To Get Past Airport Security with 44 iPhones Around Her Body

Looks like we have another “this is just wrong” story here. If yesterday’s suicide attempt from a woman who lost her iPhone wasn’t enough, here’s what we have today on the menu: a woman who wanted to become an iPhone smuggler and tried to a) get past airport security with 44 iPhones around her body in b) typical Georgian outfit. Picture the scene. 44 iPhone 4’s below the outfit to get them into Israeli without paying taxes. Must have sounded like a good plan to the woman.

The Ben-Gurion International Airport security staff of course got suspicious over this woman who was walking slowly, asked if there were any problems and the woman replied “she was not feeling well”. Perhaps 44 iPhones are a bit too much for anyone? Anyway, security called a full body scan and surprise, they found a Cupertino treasure in there.

You know what’s missing from this curious story? A white iPhone. Just because. [Engadget via Haaretz]


Extra Security For Your Mac with Hands Off

Available at $0.99 in the Mac App Store, Hands Off is a very simple, yet clever utility that will come in handy if you’ve always wanted an easy way to block access to your Mac when you’re not around – without having to turn the computer off or log out. How does that happen? Well, Hands Off can block the keyboard and the trackpad with a shortcut that can be activated at any time. Say you’re going away from your Mac for a few minutes and you don’t want your kids, or anyone, to press keyboard keys and create problems, Hands Off can help you by completely blocking keystrokes and trackpad recognition. When in “Locked” mode, the keyboard and trackpad won’t do anything.

For extra security or “keyboard cat” prevention, Hands Off is just great. You can use “readable hotkeys” (CMD instead of ⌘), change the global shortcut and even turn on Growl notifications. Combine this with Prowl, and you’ll get remote notifications if someone ever finds the right combination to unlock your Mac’s keyboard and mouse.

Hands Off works as advertised, although I noticed things can get pretty messy if a VNC client tries to remotely access your Mac when the computer is locked. I had to kill the app from the VNC client before actually being able to use my Mac, but it took a minute for the app to quit because it started beachballing in the dock. I guess an update is needed to fix this little inconvenience with VNC clients and local blocking. Anyway, Hands Off just works and it’s available at .99 cents.

Go get it.


Security Cam for iPhone Keeps An Eye On Your Stuff, With Motion Detection

Now this is an interesting app I’ve recently discovered in the App Store. Months ago, I began thinking about setting up a homemade wireless security system in my house; I saw that the system could be easily put in place with a couple of hundred dollars, and I was getting serious about purchasing all I needed to get it up and running. As usual with my personal projects I dream about and save in my “someday” list, it didn’t happen. Work got in the way, priorities changed, I didn’t set up a home security system. As my to-do list suggests, I may actually do it “someday”.

Home security and monitoring, anyway, is a personal requirement (and hobby, I guess, or obsession) that can change according to one’s needs, workplace and items to protect from unwanted eyes and hands. This is why I think Security Cam, a $0.99 app for iPhone, may be just what the average user is looking for. Read more


iGotYa Takes Photos and GPS Location Of The Guy Who Stole Your iPhone

The iGotYa app is one those utilities you don’t know you need until you try it and see its potential. Available in the Cydia Store at $5.99 (Big Boss repo), iGotYa can take a picture of whoever tries to unlock your phone with the wrong passcode, using the front facing camera. We all want to keep an eye on our iPhones, right? iGotYa, combined with Apple’s Find My iPhone remote functionalities, is the ultimate tool to make sure you know who’s trying to mess with your iPhone.

The app requires a front facing camera, meaning that it will only run on the iPhone 4 and iPod touch 4th gen. As a picture is taken in the lockscreen, iGotYa can send it via WiFi or 3G to a specified email address, also attaching GPS information in the email message. So if you ended up losing your iPhone because of someone you took it, not only you’ll know where he is, you’ll also get to see his face. And he won’t know while attempting to unlock the stolen phone.

iGotYa will cost you 6 buck, but it’s that sort of investment you will not regret. Check out the demo video below. [Gizmodo via Redmond Pie] Read more


Short URLS Suck, OS X & iOS Malware To Become More “Sophisticated” According To McAfee

McAfee Logo

McAfee Logo

When short URLs first arrived on the scene, I was rather excited at the prospect of simply using a good looking “designer” URL to vainly share links on Twitter. Short URLs provide brand reassurance: MacStories, Engadget, Gizmodo, TechCrunch, and other sites now sport custom short URLs that verify the links we share lead back to our site. However, links from Bit.ly, CloudApp cl.ly links, and Twitter’s t.co links have become nothing more than a nuisance. If I use a service like TinyGrab, I know their short URLs will most likely lead to a snapshot someone has taken of their material. With more anonymous (everything) URL shorteners, there’s no way to verify its trust without using software that allows you to preview the long URL before you click through. We’ve seen their validity ruined plenty of times on Twitter through various attacks such as the cross-site request forgery attack that amused us for a few hours earlier this year, but I’ve simply lost trust in these “brands.”

While I didn’t need McAfee to be skeptical of weird Twitter users asking me if I want a free iPad, they predict short URLs will continue to annoy the tech savvy as the computer-illiterate continue to click through short URLs to whatever tomfoolery exists on the other side. McAfee’s other big claim: OS X could be the next target for malware kiddies.

Read more


Disk Drill Is An Amazingly Simple Recovery App For HDDs

When we lose deleted files on our hard drives we tend to think of this information as unrecoverable. On a Wednesday afternoon it’s easy to forget that those nightly cleanup scripts aren’t going to do you any favors when you’re looking to reuse some stock images for an updated web template. And those deleted music files? It turns out that you liked that dirty ol’ garage band after all. In times of panic we resort to Google and often extreme utilities to scrounge our Macs for every last bit of recoverable data possible before sifting through the garbage of unreadable file names and Quick Look previews. We not only advise that you read John Gruber’s advice on the matter and keep consistent backups, but we’ve reviewed a brand new Mac utility that’s not only free during beta, it’s really (really) slick.

Read more


New “antid0te” Jailbreak Hack to Bring ASLR to iOS Devices

While iOS devices are hardened with DEP (Data Execution Prevention) and application sandboxing to aid in preventing malicious code from touching running processes, you find it combination with ASLR (Address Space Layout Randomization) which makes it difficult for attackers to find where processes are located in the first place. ASLR isn’t currently implemented in iOS devices, but a German hacker has developed a new Jailbreaking method which may provide Jailbreakers with some additional peace of mind.

Read more


Apple Is Improving Security of Push Notifications

Seems like Apple is changing quite a few things for developers today. First they announced promo codes have gone international, now, as reported by iClarified, Apple apparently sent out a notification to some developers informing them that, starting December 22, Apple will improve the system behind the Push Notification Service to use more secure connections.

On December 22, 2010, the production Apple Push Notification service will begin to use a 2048-bit TLS/SSL certificate that provides a more secure connection between your provider server and the Apple Push Notification service.

To ensure you can continue to validate your server’s connection to the Apple Push Notification service, you will need to update your push notification server with a copy of the 2048-bit root certificate from Entrust’s website. This will not require a change to your iOS apps – this update only applies to provider servers.

Developers who have released apps that rely on push notifications will need to update their provider servers with the new certificate. More info available here.