Sparkle

By MacRumors Staff

Sparkle Articles

'Huge' Number of Mac Apps Open to Hijacking From Sparkle Updater Vulnerability

Tuesday February 9, 2016 1:42 pm PST by
A pair of vulnerabilities in the framework that some Mac apps use to receive automatic updates leaves them open to man-in-the-middle attacks, according to a report from Ars Technica covering a security flaw that was first discovered by a security researcher named Radek in late January. Apps that use a vulnerable version of Sparkle and an unencrypted HTTP channel for server updates are at risk ...