The IT Nerd

Yesterday I posted a story that an exploit that leverages a disclosure that a security researcher has made is in the wild and is posing a threat to users. It also leaves the users with no practical way to protect themselves. Today, Stefan Esser who discovered the bug Tweeted this:

Looks like dropping DYLD_PRINT_TO_FILE exploit resulted in Apple having fixed it in OS X 10.10.5 beta "2" – suddenly they can work "faster"

— Stefan Esser (@i0n1c) July 31, 2015

The beta that Esser is referring to hit the streets on July 30th. That means that it could be in the hands of users by mid month or sooner. The “work faster” comment made by Esser is a reference to the fact that Esser disclosed the bug on July 15 because he didn’t see any response from Apple on this and Apple 15 days later comes up with a fix. Though some including yours truly suggested that he might have disclosed this improperly.

Still, this whole episode doesn’t paint Apple in the most positive light. They really need to get serious about how they deal with security issues because the days of them flying under the radar from a security perspective are over.

This entry was posted on August 5, 2015 at 1:48 pm and is filed under Products with tags Apple. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.