iOS Security Flaws And Other Tech Headlines for 2/24-2/28

by Modis on February 28, 2014

No Gravatar

New iOS Flaw Makes Devices Susceptible to Keylogging

According to researchers, there’s a new flaw in iOS that makes it possible for hackers to easily track every single touch, including messages sent via text, a user makes on his or her iPhone or iPad. The issue affects devices running iOS versions 7.0.4, 7.0.5, and 7.0.6, as well as those running on 6.1.x, whether they are jailbroken or not. Hackers can monitor activity via an app that bypasses Apple’s review process. The user data can be sent to a remote server, and reconstructed to reveal every character input. Apple has yet to say when a patch will be released.

Microsoft TypeScript Moves to Visual Studio

TypeScript, Microsoft’s superset JavaScript language, designed for creating complex applications, is now a full member of the company’s flagship Visual Studio integrated development environment (IDE). Introduced in 2012, TypeScript is not a new language, but rather a language based on the same ECMA script that JavaScript is based on. This is Microsoft’s answer to the increasing number of applications being built using JavaScript. TypeScript must go through a compiler, but can be output as JavaScript so it can run in any browser. Compiling the code allows TypeScript to offer features found in other typical programming languages such as C++ and Java.

House Passes Bill to Allow Phone Unlocking, with a Catch

This week, the House of Representatives passed a bill that would allow you to unlock your phone to switch to another mobile provider, so long as you were not unlocking your phone for the purpose of “bulk resale.” This bill is a win for many of us, as common sense would dictate, if you paid for the phone (which you do when you either pay full price, or fulfill the terms of your contract) it belongs to you, and you are free to take it to whatever service you would like. However, the terminology within the bill may confuse the issue when it comes to resellers. It should not be a problem for people who just want to switch to another carrier, but the bill still has to go through Senate before we will know its fate.

Poor SSL Implementation in WhatsApp Could Have Made Eavesdropping Easily

WhatsApp has been in the news a lot lately as the mobile messaging app that Facebook agreed to purchase for $19 billion. While it may be an attractive addition to the popular social network, it’s also attractive to the NSA and criminal hackers. WhatsApp’s encryption is full of weaknesses, which don’t really protect users messaging the way users may have been led to believe. The secure sockets layer (SSL) protection was only supported to version 2 of the protocol, a version susceptible to many well-known attacks that allow anyone monitoring the connection to decipher, and possibly manipulate the traffic as it is passing through. Before Facebook releases it again, there’s sure to be a code audit and some majority security work for the programmers to handle.

LigerMobile Framework to Set Bar Higher for Hybrid App Development

Online marketing company Reachlocal, is releasing its LigerMobile framework. An open source tool designed to build hybrid applications for both iOS and Android platforms, it seeks to create a better user experience. The convention approach emulates native behavior in JavaScript, but this approach will instead use page-to-page transitions as native animations. Developers who use this platform are given a template prototype application in HTML5, and then can decide how much native coding, in either Objective-C for iOS or in Java for Android, they need to add. Other JavaScript languages, such as CoffeeScript or AngularJS can also be used with LigerMobile.

Related Posts

Leave a Comment

Previous post:

Next post: