In case you’re wondering why you haven’t heard anything from us here for a while, it’s because there really hasn’t been much to say. Normally no news is good news in the security arena, but in this case there’s at least one area where we were actually expecting some news: the MacBook Air break-in from CanSecWest.

Very little has leaked out since this serious vulnerability was exploited at that security conference (and immediately disclosed to Apple). It’s well known to be a Safari 3.1 vulnerability, but not much more. Rumors abound that the flaw was fixed a while ago in the open source project that is the basis for Safari, but no specific fix or update from Apple has been announced (Apple did fix various QuickTime vulnerabilities that could be, but probably aren’t, related). On the other hand, Adobe quickly fixed the flaw in its Flash Player that allowed a Windows Vista laptop to be similarly compromised.

Guess we’ll just have to keep waiting for a while.