|
Title: Box fixes security flaw in Mac desktop Sync app Post by: HCK on February 10, 2015, 09:00:19 am Box fixes security flaw in Mac desktop Sync app
<article> <section class="page"> <p>Online file storage and sharing service Box has patched the Mac version of its desktop app after a developer found it exposed potentially sensitive bits of data, including API keys, internal user IDs, URLs and passwords.</p><p>Mac users should ensure they’re on the updated 4.0.6035 version, wrote Pepijn Bruienne, a Mac development and operation specialist senior at the University of Michigan, who found the problem.</p><p>The error was probably an unintentional one by Box, Bruienne wrote in a blog post (http://enterprisemac.bruienne.com/2015/02/07/box-cutting-how-i-stumbled-onto-a-serious-security-flaw-in-box-sync-for-mac/). He reported the issue to the company in early January. Box told him on Friday that it had released an updated version.</p><p class="jumpTag"><a href="/article/2881492/box-fixes-flaw-in-mac-desktop-sync-app.html#jump">To read this article in full or to leave a comment, please click here[/url]</p></section></article> Source: Box fixes security flaw in Mac desktop Sync app (http://www.macworld.com/article/2881492/box-fixes-flaw-in-mac-desktop-sync-app.html#tk.rss_all) |