iTnews
  • Home
  • News
  • Technology
  • Security

Apple pushes a vulnerable Opera browser

By Dan Raywood on May 20, 2011 11:18AM
Apple pushes a vulnerable Opera browser

Apple users might ditch the App Store and go it alone, experts say.

Apple Mac users could be using an outdated, vulnerable version of Opera.

According to research by Joshua Long, the Apple Mac Store is not alerting users to security risks who may continue to use an unsafe version of the Opera browser.

Opera released a fix for a ‘critical' security issue recently but version 11.0.1, released back in March that is vulnerable to the security bug patched in 11.11, could still be used.

“Users who rely on the App Store to tell them whether their software is up-to-date may not be aware of the security risks and may continue to use an unsafe version of the Opera browser," Long said.

“I have notified Apple and Opera about this issue.  An Opera representative acknowledged that ‘we are waiting for the App store to approve the next version of Opera for Mac. For now the only solution is to go to www.opera.com/download'.”

In a blog, Long also claimed that the current version of Amazon's Kindle app is 1.5.1, while the version in the App Store is still 1.2.3, which was released in January.

“Amazon does not publicly disclose its changelog, so there is no easy way to know whether any security issues exist in Kindle for Mac version 1.2.3”, he said.

He recommended dragging an outdated app from your applications folder into the Trash (which will require an administrator password due to the way the App Store installs apps), then drag the current version of the application from the developer's website into the applications folder.

“Put in simple terms, Apple seems to be falling short of the promise it makes in its promotion of the App Store that it ‘keeps track of your apps and tells you when an update is available' and that ‘you'll always have the latest version of every app you own', Sophos senior technology consultant Graham Cluley said.

“So the key question is, how quickly is Apple going to approve the latest Opera update and other software which might have been updated to secure against critical security vulnerabilities, for the App Store?

“Because if Apple can't update software containing critical security patches to the App Store in a timely fashion, users might be wiser getting their software via a more conventional route.”

This article originally appeared at scmagazineuk.com

Got a news tip for our journalists? Share it with us anonymously here.
Copyright © SC Magazine, US edition
Tags:
app storeapplemacoperasecurityupdatesvulnerabilityweb browser

Partner Content

Why Genworth Australia embraced low-code software development
Promoted Content Why Genworth Australia embraced low-code software development
The Great Resignation has intensified insider security threats
Promoted Content The Great Resignation has intensified insider security threats
Winning strategies for complaints and disputes management in financial services
Promoted Content Winning strategies for complaints and disputes management in financial services
Security "mindset shift" needed to protect organisations
Promoted Content Security "mindset shift" needed to protect organisations

Sponsored Whitepapers

Free eBook: Digital Transformation 101 – for banks
Free eBook: Digital Transformation 101 – for banks
Why financial services need to tackle their Middle Office
Why financial services need to tackle their Middle Office
Learn: The latest way to transfer files between customers
Learn: The latest way to transfer files between customers
Extracting the value of data using Unified Observability
Extracting the value of data using Unified Observability
Planning before the breach: You can’t protect what you can’t see
Planning before the breach: You can’t protect what you can’t see

Events

  • Forrester Technology & Innovation Asia Pacific 2022
By Dan Raywood
May 20 2011
11:18AM
0 Comments

Related Articles

  • Apple defeats class action over Meltdown, Spectre vulns
  • Apple patches zero-day flaw affecting all devices
  • Realtek SDK exposes systems to SIP bug
  • Palo Alto Networks alerted to DoS vulnerability in routers
Share on Twitter Share on Facebook Share on LinkedIn Share on Whatsapp Email A Friend

Most Read Articles

Services Australia sets changeover date for myGov

Services Australia sets changeover date for myGov

NSW Police dumps Bezos-backed Mark43 from core systems overhaul

NSW Police dumps Bezos-backed Mark43 from core systems overhaul

Australian court finds insurer not liable for ransomware clean-up costs

Australian court finds insurer not liable for ransomware clean-up costs

NBN Co proposes to axe CVC across all plans by mid-2026

NBN Co proposes to axe CVC across all plans by mid-2026

Digital Nation

Domino’s invests in observability for zero contact delivery
Domino’s invests in observability for zero contact delivery
Metaverses on the agenda for Dominello, Husic ministerial meeting
Metaverses on the agenda for Dominello, Husic ministerial meeting
Australia will lose 11 percent of jobs to automation by 2040: Forrester
Australia will lose 11 percent of jobs to automation by 2040: Forrester
Criteo to fork out $94.7m for consent breaches
Criteo to fork out $94.7m for consent breaches
COVER STORY: How KPMG, Mirvac and ASX use blockchain to build trust in the property sector
COVER STORY: How KPMG, Mirvac and ASX use blockchain to build trust in the property sector
All rights reserved. This material may not be published, broadcast, rewritten or redistributed in any form without prior authorisation.
Your use of this website constitutes acceptance of nextmedia's Privacy Policy and Terms & Conditions.