XARA Deconstructed: An In-Depth Look at OS X and iOS Cross-App Resource Attacks

Nick Arnott, writing for iMore:

This week, security researchers from Indiana University released details of four security vulnerabilities they discovered in Mac OS X and iOS. The researchers detailed their discoveries of what they call “cross-app resource attacks” (referred to as XARA) in a whitepaper released Wednesday. Unfortunately, there has been a lot of confusion surrounding their research.

If you’re not at all familiar with the XARA exploits or are looking for a high-level overview, start with Rene Ritchie’s article on what you need to know. If you’re interested in slightly more technical detail on each of the exploits, keep reading.

Terrific layman’s overview. Highly recommended.

Thursday, 18 June 2015