Last week's Security Bite discussed vulnerabilities in Stolen Device Protection, a new security feature in iOS 17.3. Since then, the Vision Pro has been hitting the market and hogging the headlines. This Sunday, I wanted to give your feed some fresh air and talk about some of my favorite security and privacy features as of iOS 17.3. Admittedly, this gives us more time to take a closer look at Vision Pro's privacy and security protections in the real world.
9to5Mac Security Bite is offered exclusively by: Mosyle, the only Apple integration platform. We're all about making Apple devices ready to use and secure for enterprise use. Our unique, integrated approach to management and security delivers state-of-the-art Apple-specific security solutions for fully automated enforcement and compliance, next-generation EDR, AI-powered Zero Trust, and exclusive privilege management. , combined with the most powerful and modern Apple MDM. It's on the market. The result is the fully automated Apple Unified Platform, which is now trusted by more than 45,000 organizations and powers millions of Apple devices effortlessly and affordably. Masu. Request an extended trial Find out why Mosyle is all about working with Apple today.
This is Security Bite, a weekly security-focused column on 9to5Mac. Every Sunday, Alyn Waichulis It provides data privacy insights, uncovers vulnerabilities, and shines a light on new threats within Apple's vast ecosystem of over 2 billion active devices.s. Stay safeTake care.
Stolen device protection
Stolen device protection was introduced to iPhones in iOS 17.3 last month after reports of an increase in iPhone thefts from restaurants and bars. The thief manually enters the passcode before the user physically steals the device, uses that passcode to change her Apple ID credentials, and saves her password in her keychain to her manager. He is said to have witnessed the attacker accessing his password.
As a result, this feature requires Face ID or Touch ID authentication (with no passcode fallback) before users can change important security settings, such as their Apple ID password or device passcode. Additionally, there will be a one-hour security delay before users can change these security settings.
Despite the vulnerability I reported last week, which Apple is helping address in the iOS 17.4 developer beta, stolen device protection is a big plus for users. There's no harm in just enabling it, so I recommend it to everyone.
- open setting Apps on iPhones running iOS 17.3 or later
- Scroll down and Face ID and passcode (or Touch ID and passcode)
- under Stolen device protection, Tap turn on protection
Lock private Safari windows with Face ID
This year, Apple is adding an extra layer of security to private browsing by incorporating Face ID. In iOS 17, users can now toggle “Require Face ID to unlock private browsing” to protect their tabs. You will need to do this every time you close Safari or lock your iPhone.
This feature is also available on macOS Sonoma by authenticating with a password or Touch ID instead.
- Open of settings Apps on iPhone running any version of iOS 17
- Scroll down and safari
- Please be sure to check Face ID is required to unlock private browsing is on
Better Tracking prevention
Following Safari, Apple has doubled down on the fight against trackers with “stronger protections” in iOS 17. One known way for advertisers to track users on the Internet is by adding tracking parameters to web links. These can also collect your IP address (location information) and device information.
With iOS 17, Safari, Mail, and Messages can now automatically detect these types of URLs and remove tracking in real time. This can be enabled exclusively for all browsing or private browsing only.
- open settings app
- Scroll down to the last option titled. advanced
- Tap Advanced tracking and fingerprint protection
- Please select your preferred option
Automatic deletion of verification code
I use 2FA with SMS verification codes multiple times a day for various services, so this feature is a breath of fresh air in my message feed. After you insert a verification code using Autofill, you can automatically remove the verification code from your messages and emails.
Admittedly, this is more of a convenience feature than a security feature. This may be useful if the service uses predictable verification codes (a big no-no) or in the case of SIM hijacking attacks, but the codes are generally considered useless once they are used .
- open setting Start the app and password
- Tap password options
- toggle on Clean up automatically
Privacy permission for news photos
Apple's new photo privacy permissions are probably one of the first things you'll notice about iOS 17. For apps that have previously allowed access to your photos for more than six months, you'll see a prompt asking if you want to restrict the app's access. Continue to allow full access to the library.
If you select “Restrict access,” you will be asked to select specific images or videos every time you share media with apps. This is a great alternative that allows apps to move around freely on your photo library.
In a world where personal data is increasingly vulnerable and valuable, it's great to see Apple implementing Reminders for iPhone users.
Apple describes this feature in a recent press release:
The new embedded photo picker allows users to share specific photos with the app while keeping the rest of their library private. When an app requests access to a user's entire photo library, the user will be shown detailed information about what they want to share and receive occasional reminders of their choices.
- There are no instructions for this. This is automatically enabled when you install iOS 17.
Automatic check-in of text in messages
Rounding out this list are the all-new safety features Apple has built into Messages in iOS 17. What the company calls “Check-in” allows you to automatically alert friends and family via text when you arrive at your desired destination.
In case something happens, Check-in even goes so far as to alert selected contacts when it realizes you haven't made it to your destination. According to Apple, “When you're not responding, this feature shares useful information such as your exact location, battery level, cell service status, and the last time you used your iPhone.”
Note: Both users must be using some version of iOS 17 for this feature to work
Here's how to set it up:
- open message iOS 17 developer beta apps
- Select the person you want to send the check-in to, then + in the bottom left
- Tap more to reveal more options
- after that check-in
- Once you complete the settings page, you'll see a check-in in your Messages chat. From here you can edit your destination as well as other options such as walking or driving.
I say this because the release of iOS 18 is less than five months away. This year, Apple is expected to make major upgrades to its operating system using artificial intelligence, most notably an overhaul of Siri. During Apple's Q1 2024 earnings conference last week, Tim Cook made some rare comments about the company's investments in AI. You can read more about my colleague Benjamin Mayo here.
More: January's top security headlines
FTC: We use automated affiliate links that generate income. more.
