“Huge” number of Mac apps vulnerable to hijacking, and a fix is elusive

[Chiefcrowe]

http://arstechnica.com/security/201...-vulnerable-to-hijacking-and-a-fix-is-elusive

 

[KeithP]

attackers with the ability to manipulate the traffic passing between the end user and the server—say, an adversary on the same Wi-Fi network—can inject malicious code into the communication.

If you have a bad guy on your network I would think you have more important things to worry about than this exploit...in the meantime, don't update apps over unsecured wifi networks.

-KeithP

 

[Mushkins]

If you have a bad guy on your network I would think you have more important things to worry about than this exploit...in the meantime, don't update apps over unsecured wifi networks.

-KeithP

Seriously, there's *so* many sensationalized security articles out there about some new big exploit we should all be terrified about! Then you actually read the article and see that the only way it works is if someone already has compromised your network.

If someone has control of a device on your network, you're already hosed, they don't need some cool new exploit.

 

[lxskllr]

Seriously, there's *so* many sensationalized security articles out there about some new big exploit we should all be terrified about! Then you actually read the article and see that the only way it works is if someone already has compromised your network.

If someone has control of a device on your network, you're already hosed, they don't need some cool new exploit.

It's a little more serious than that. With portable computers, people connect to all kinds of networks they don't own. It's an attack vector many would expect to encounter.