A Bluetooth vulnerability was released this week for devices using up to version 5.1 of the Bluetooth specification allowing an attacker to influence the key length of the encryption key needed to setup a secure connection between to devices. According to the Bluetooth SIG (Special Interest Group), an attacker can attempt to perform this attack if two vulnerable devices are wit
Blog Entries
If you have ever gathered connection metrics using URLSessionTaskTransactionMetrics then you may have noticed that this year Apple has now exposed a few TLS properties to the public API. The first is negotiatedTLSCipherSuite and the next negotiatedTLSCipherSuite. The reason this is interesting is that these values seem to have been around since iOS 7, but now are being released in the Security framework in the new iOS 13 beta. These properties will be very useful for connection diagnostics
Project Catalyst - Build for Desktop and Mobile
Featured Post
Following up with my WWDC 2019 Wishlist article, it looks like my wishlist item, "full release of Marzipan" did come to fruition with the release of Project Catalyst now on macOS 10.15 Catalina. With this release, developers can now port their existing iPad applications to also run on macOS. Pretty amazing right, but what does this mean for iPad developers and macOS developers that work currently in their own isol
Today after reviewing the public disclosure from Jonathan Letischuh on Medium about the Zoom webcam exploit I decided to take a look at my local copy of macOS 10.15 and detail my tests for anyone wanting to test this on their machine or prevent this from happening to them too. This exploit is covered in full detail at