Month of Apple bugs planned for January

A patch a day keep the hackers at bay

Got Tips?

Security researchers plan to release details of previously undisclosed Mac OS X or Apple application security bugs every day in January. The Month of Apple Bugs project is the brainchild of Kevin Finisterre and the folks behind November's Month of Kernel Bugs (MoKB) project.

The security researchers told the Washington Post that, as with Apple bugs featured during the MoKB project, Apple would receive no advanced notice of the forthcoming security problems. The security researchers hope to use the project to dispel the perception that Apple systems are free of the security bugs that have long plagued Windows users.

"OS X users still think their system is bulletproof, and some people are interested on making it look that way," LMH of the MoKB project told the Washington Post.

Quite what Apple's response to the project might be, or how much will come of it, remains unclear. A planned month of Oracle Database bugs protect due to take place this month was cancelled almost as soon as it was announced. Cesar Cerrudo, founder and chief exec of the Argeniss Security Research Team, is yet to publically explain why he dropped the protect, which was designed to push Oracle into releasing software fixes more quickly.

Back in the present time, Apple posted a Mac OS X security update on Tuesday (2006-008) which fixes a security bug that meant that whatever appeared on a users' web cam could be uploaded onto a remote server. Ooh er, Missus. ®


Keep Reading

You, Apple Mac fan. Put down the homemade oat-milk latte, you need to patch a load of security bugs, too

Patch Thursday is for you, Patch Tuesday is for everyone else

Facebook to blab bugs it finds if it thinks code owners aren’t fixing fast enough

And reveals half a dozen WhatsApp bugs into the bargain

First, Patch Tuesday. Now, Oh Hell, Monday: Microsoft emits bonus fixes for Visual Studio, Windows 10 security bugs

In brief Plus: A warning to SharePoint operators

US-CERT lists the 10 most-exploited security bugs and, yeah, it's mostly Microsoft holes people forgot to patch

Update, update, update. Plus: Flash, Struts, Drupal also make appearances

Citrix warns of patch-ASAP-grade bugs in its working-from-home products, just as we're all working from home

Expect Citrix Endpoint Management gear to come under attack soon

The seven deadly sins letting hackers hijack America's govt networks: These unpatched bugs leave systems open

'Unauthorized access to elections support systems' detected tho 'no evidence to date that integrity of elections data has been compromised'

Video encoders using Huawei chips have backdoors and bad bugs – and Chinese giant says it's not to blame

Telecom kit maker points finger in the general direction of Middle Kingdom's complicated supply chain

We're almost into the third decade of the 21st century and we're still grading security bugs out of 10 like kids. Why?

Disclosure Infosec veteran Marc Rogers on why we need a better system to rate vulnerabilities

Biting the hand that feeds IT © 1998–2020