Mac Developer: “Huge” number of Mac apps vulnerable to hijacking, and a fix is elusive | Ars Technica
“Huge” number of Mac apps vulnerable to hijacking, and a fix is elusive | Ars Technica Camtasia, uTorrent, and a large number of other Mac apps are susceptible to man-in-the-middle attacks that install malicious code, thanks to a vulnerability in Sparkle, the third-party software framework the apps use to receive updates.
I've never been a fan of auto-updates. I mean, have you seen any of the Terminator movies? A huge network of unix machines with the ability to patch their own software? That's a recipe for disaster.
Labels: app security