1983 Apple Keynote
Video is an electronic medium for the recording, copying, playback, broadcasting, and display of moving visual media.
Demonstration of proof-of-concept attack on iOS’s Mail app. Apple was notified about technical details of this vulnerability on 2015-01-15
iOS 8.3 Mail.app inject kit
It was filed under Radar #19479280 back in January, but the fix was not delivered in any of the iOS updates following 8.1.2. Therefore I decided to publish the proof of concept code here.
The exploit got a nice CVE-2015-3710 sticker and was fixed by Apple in iOS 8.4 and OS X 10.10.4. Kudos to Apple for prompt response once it was published publicly.
Framework7: Vladimir Kharlampidi (http://www.idangero.us/framework7/) – Framework7’s CSS code was used for the login dialog styling
The code detects that the research subject has already visited the page in the past (using cookies) and it stops displaying the password prompt to reduce suspicion.
The e-mail address and password are submitted via GET to framework.php, which then saves them to the mydata.txt file, sends them out via e-mail to the specified „collector” e-mail address and then returns the research subject back to Mail.app using redirect to message://dummy.
The password field has autofocus enabled. We then use focus detection to hide the login dialog once the password field loses its focus (e.g. after the subject clicks on OK and submits the password). Why even bother with this redirect nonsense when you can put <form> directly inside the HTML e-mail?
Keychain attack demo: steal iCloud authentication token
Keychain Vulnerability of Google Chrome on OS X
BID Attack on OS X Yosemite
The most interesting features on MacOSX 10.10
Top 10 Mac OS X Yosemite Tips & Tricks
Top 7 Hidden Tricks in OS X Yosemite
The Apple Worldwide Developers Conference (WWDC), is a conference held annually in California by Apple Inc. The conference is used by Apple to showcase its new software and technologies for software developers. Attendees can participate in hands-on labs with Apple engineers, as well as in-depth sessions that cover a wide variety of topics. Until 2007, the number of attendees varied between 2,000 and 4,200; however, during WWDC 2007, Steve Jobs noted that there were more than 5,000 attendees. The WWDC events held from 2008 to 2015 were capped, and sold out at 5,000 attendees (5,200 including special attendees).
The WWDC 2014 was held from June 2 to 6, 2014 in Moscone West.
For the first time, the opportunity to purchase tickets was given at random to developers who were members of an Apple developer program at the time of the conference announcement, and who registered at Apple’s developer web site. Apple also gave 200 free tickets to students as Students Scholarships. The keynote began on June 2 and Apple unveiled several new software items, including iOS 8—the largest update to iOS since the release of the App Store—and OS X Yosemite, which features a completely redesigned interface inspired by iOS. No new hardware was announced at WWDC 2014, but the new Swift programming language was announced, along with a surplus of developer kits and tools for iOS 8. Bastille performed at the Yerba Buena Gardens,
and attendees received a black windbreaker with the letters „WWDC” across the front and the number „14” stitched on the back, along with a US$25 iTunes gift card to commemorate the 25th anniversary of WWDC.