Apple has released security updates for QuickTime and its Java runtime for Macs that rectify a whole bunch of serious security vulnerabilities. In a bizarre twist, the company is not presenting them as a security fix, despite the very real risk posed to millions of affected users.
We fired up QuickTime on a PC and promptly received a popup window alerting us that the update “is highly recommended.” But nowhere is there any mention of vulnerabilities that can be milked by a cyber criminal halfway around the world. We’ve yet to install either update on a Mac, but according to this post on Ryan Naraine’s Zero Day blog, the Java update similarly omits any mention of security vulnerabilities.
Do you think this failure to plainly warn end users is a simple oversight or a misdirected attempt by Apple not to alarm its user base?