Modernizing Authentication — What It Takes to Transform Secure Access
Apple has released iTunes 10.5.1, fixing a vulnerability that could allow hackers to perform man-in-the-middle attacks.
"The bug in iTunes relates to the way that the application communicates with the iTunes server when it's checking for updates to the software," writes Threatpost's Dennis Fisher.
"The problem was such that an attacker who had a man-in-the-middle position on a user's network could potentially give the user a fraudulent or malicious app that looks like iTunes," Fisher writes.
Go to "Apple Fixes Man-in-the-Middle Bug in iTunes" to read the details.
For regular security news updates, follow eSecurityPlanet on Twitter: @eSecurityP.