Large Number of Mac Apps Susceptible to Hijacking from Sparkle Updater Vulnerability
According to a report from Ars Technica, a pair of vulnerabilities in the framework that some Mac apps use to receive automatic updates leaves them open to man-in-the-middle attacks. The flaw was first discovered by a security researcher named Radek in late January. Apps that use a vulnerable version of Sparkle and an unencrypted HTTP...