Apple, Mac, iOS4,...
Follow
Find
9.8K views | +0 today
 
Scooped by Gust MEES
onto Apple, Mac, iOS4, iPad, iPhone and (in)security...
Scoop.it!

Checking for the new PubSab malware in OS X

Checking for the new PubSab malware in OS X | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

This new minimum-threat malware development for OS X copies Flashback and suggests criminals jump on opportunistic bubbles. 

 

Recently the Flashback malware attacks on OS X gained headlines, not because of the presence of the Trojan, which had been around for some months prior to the increase in attention, but rather because it gained the possibility of installation in a drive-by-download attack that did not require any interaction from the user in order to install.


This development was made possible because of a vulnerability in Java that allowed for a maliciously crafted applet to break the Java sandbox and write files to the disk. Apple has since patched this issue and it, along with other companies, have released Flashback Trojan removal tools to combat the malware; however, in its prime, the malware did reach more than 600,000 Mac users.

 

Read more...

more...
No comment yet.
Apple, Mac, iOS4, iPad, iPhone and (in)security...
Everything related to the (in)security of Apple products
Curated by Gust MEES
Your new post is loading...
Your new post is loading...
Rescooped by Gust MEES from 21st Century Learning and Teaching
Scoop.it!

Immune No More: An Apple Story

Immune No More: An Apple Story | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
For a very long time, Apple and its pseudo-religious user-base prided itself on being a platform free of malware; those days are inarguably and unequivocally over. Its emergence as the early winner...
Gust MEES's insight:

 

A MUST read!!!

 

Learn more:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
Scooped by Gust MEES
Scoop.it!

Sécurité des firmware : Apple a acquis LegbaCore discrètement fin 2015 | Acquisitions

Sécurité des firmware : Apple a acquis LegbaCore discrètement fin 2015 | Acquisitions | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple s'est emparé de LegbaCore, un éditeur de logiciel de sécurité IT spécial firmware. Il avait conçu le ver Thunderstrike 2 qui visait les Mac.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:
Apple s'est emparé de LegbaCore, un éditeur de logiciel de sécurité IT spécial firmware. Il avait conçu le ver Thunderstrike 2 qui visait les Mac.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

Apple updates OS X, iOS 9 with security fixes | ZDNet

Apple updates OS X, iOS 9 with security fixes | ZDNet | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
The company releases iOS 9.2.1 and OS X 10.11.3 with mostly security fixes.


Nine fixes were posted for the Mac platform, including a fix for a flaw that could've allowed an attacker to execute code with kernel privileges. The patch also comes with fix for an issue that prevents some Macs from waking from sleep when connected to some 4K-resolution displays.

Another batch of nine fixes were also posted for the iOS platform, including a WebSheet flaw that could've allowed a malicious captive portal from accessing user cookies.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:
The company releases iOS 9.2.1 and OS X 10.11.3 with mostly security fixes.


Nine fixes were posted for the Mac platform, including a fix for a flaw that could've allowed an attacker to execute code with kernel privileges. The patch also comes with fix for an issue that prevents some Macs from waking from sleep when connected to some 4K-resolution displays.

Another batch of nine fixes were also posted for the iOS platform, including a WebSheet flaw that could've allowed a malicious captive portal from accessing user cookies.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
Gust MEES's curator insight, January 20, 6:39 AM
The company releases iOS 9.2.1 and OS X 10.11.3 with mostly security fixes.


Nine fixes were posted for the Mac platform, including a fix for a flaw that could've allowed an attacker to execute code with kernel privileges. The patch also comes with fix for an issue that prevents some Macs from waking from sleep when connected to some 4K-resolution displays.

Another batch of nine fixes were also posted for the iOS platform, including a WebSheet flaw that could've allowed a malicious captive portal from accessing user cookies.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Rescooped by Gust MEES from 21st Century Learning and Teaching
Scoop.it!

Software with the most vulnerabilities in 2015: Mac OS X, iOS, and Flash | Apple | Nobody Is Perfect

Software with the most vulnerabilities in 2015: Mac OS X, iOS, and Flash | Apple | Nobody Is Perfect | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Which software had the most publicly disclosed vulnerabilities this year? The winner is none other than Apple’s Mac OS X, with 384 vulnerabilities. The runner-up? Apple’s iOS, with 375 vulnerabilities.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/securite-pc-et-internet


Gust MEES's insight:
Which software had the most publicly disclosed vulnerabilities this year? The winner is none other than Apple’s Mac OS X, with 384 vulnerabilities. The runner-up? Apple’s iOS, with 375 vulnerabilities.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/securite-pc-et-internet


more...
Gust MEES's curator insight, January 1, 11:39 AM
Which software had the most publicly disclosed vulnerabilities this year? The winner is none other than Apple’s Mac OS X, with 384 vulnerabilities. The runner-up? Apple’s iOS, with 375 vulnerabilities.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/securite-pc-et-internet


Umberto Orefice's curator insight, January 2, 11:09 AM

Good to know..

Scooped by Gust MEES
Scoop.it!

Cybercriminals will target Apple in 2016, say experts - BBC News | CyberSecurity

Cybercriminals will target Apple in 2016, say experts - BBC News | CyberSecurity | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Cybercriminals are increasingly targeting Apple devices and 2016 will see a rise in attacks on its operating systems, security experts suggest.

According to security firm Symantec, the amount of malware aimed at Apple's mobile operating system (iOS) has more than doubled this year, while threats to Mac computers also rose.

Security firm FireEye also expects 2016 to be a bumper year for Apple malware.

Systems such as Apple Pay could be targeted, it predicts.

Apple is an obvious target for cybercriminals because its products are so popular, said Dick O'Brien, a researcher at Symantec.

While the total number of threats targeting Apple devices remains low compared with Windows and Android, Symantec is seeing the range of threats multiply.

Last year, it was seeing a monthly average of between 10,000 and 70,000 Mac computers infected with malware.

"This is far fewer than Windows desktops and we don't want to scaremonger. Apple remains a relatively safe platform but Apple users can no longer be complacent about security, as the number of infections and new threats rise," said Mr O'Brien.

The number of unique OS X computers infected with malware in the first nine months of 2015 was seven times higher than in all of 2014, its research found.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:

Cybercriminals are increasingly targeting Apple devices and 2016 will see a rise in attacks on its operating systems, security experts suggest.

According to security firm Symantec, the amount of malware aimed at Apple's mobile operating system (iOS) has more than doubled this year, while threats to Mac computers also rose.

Security firm FireEye also expects 2016 to be a bumper year for Apple malware.

Systems such as Apple Pay could be targeted, it predicts.

Apple is an obvious target for cybercriminals because its products are so popular, said Dick O'Brien, a researcher at Symantec.

While the total number of threats targeting Apple devices remains low compared with Windows and Android, Symantec is seeing the range of threats multiply.

Last year, it was seeing a monthly average of between 10,000 and 70,000 Mac computers infected with malware.

"This is far fewer than Windows desktops and we don't want to scaremonger. Apple remains a relatively safe platform but Apple users can no longer be complacent about security, as the number of infections and new threats rise," said Mr O'Brien.

The number of unique OS X computers infected with malware in the first nine months of 2015 was seven times higher than in all of 2014, its research found.



Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

iOS, Mac OS X, WatchOS : le Patch Tuesday made in Apple | CyberSecurity | CyberHygiene | Updates

iOS, Mac OS X, WatchOS : le Patch Tuesday made in Apple | CyberSecurity | CyberHygiene | Updates | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Après Microsoft qui a publié un Patch Tuesday bien fourni en correctifs critiques, c’est au tour d’Apple de mener un grande vague de mises à jour de sécurité sur plusieurs produits. Les OS de la firme de Cupertino sont bien évidement aux premières loges.

Différentes versions de Mac OS X sont concernées : OS X El Capitan 10.11.2, OS X Yosemite 10.10.5, et Mavericks 10.9.5. Au total, la Security Update 2015-008 corrige 54 vulnérabilités dans des services et des composants tel qu’App Sandbox, Bluetooth, Compression, Configuration Profiles, CoreGraphics, CoreMedia Playback, EFI, File Bookmark, Hypervisor, ImageIO, Intel Graphics Driver, IOAcceleratorFamily, IOHIDFamily, IOKit SCSI, Kernel, Keychain Access, OpenGL, Sandbox, Security, etc. A noter que la moitié des failles découvertes sont critiques, car elles peuvent permettre à des pirates d’exécuter du code arbitraire à distance.


Learn more / Mehr erfahren / En savoir plus :


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?tag=Patch+Tuesday+made+in+Apple


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:

Après Microsoft qui a publié un Patch Tuesday bien fourni en correctifs critiques, c’est au tour d’Apple de mener un grande vague de mises à jour de sécurité sur plusieurs produits. Les OS de la firme de Cupertino sont bien évidement aux premières loges.

Différentes versions de Mac OS X sont concernées : OS X El Capitan 10.11.2, OS X Yosemite 10.10.5, et Mavericks 10.9.5. Au total, la Security Update 2015-008 corrige 54 vulnérabilités dans des services et des composants tel qu’App Sandbox, Bluetooth, Compression, Configuration Profiles, CoreGraphics, CoreMedia Playback, EFI, File Bookmark, Hypervisor, ImageIO, Intel Graphics Driver, IOAcceleratorFamily, IOHIDFamily, IOKit SCSI, Kernel, Keychain Access, OpenGL, Sandbox, Security, etc. A noter que la moitié des failles découvertes sont critiques, car elles peuvent permettre à des pirates d’exécuter du code arbitraire à distance.


Learn more / Mehr erfahren / En savoir plus :


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?tag=Patch+Tuesday+made+in+Apple


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple | Mac App Store Security Glitch Forced Users to Reinstall Apps | Nobody Is Perfect

Apple | Mac App Store Security Glitch Forced Users to Reinstall Apps | Nobody Is Perfect | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

A security glitch last night has caused uproar among Mac users after it forced many to reinstall software downloaded from the Mac App Store. It appears the security certificate Apple uses to prevent piracy expired overnight on Wednesday, causing trouble with Mac users’ apps.

Alex Hern, writing for The Guardian, further explained what happened, saying:

“Applications downloaded from the Mac App Store were temporarily unavailable from 10PM UK time, when a security certificate expired, five years after its creation, with no replacement immediately available.”

The issue was first spotted by a Mac and iOS developer, Paul Haddad,

...


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:

A security glitch last night has caused uproar among Mac users after it forced many to reinstall software downloaded from the Mac App Store. It appears the security certificate Apple uses to prevent piracy expired overnight on Wednesday, causing trouble with Mac users’ apps.

Alex Hern, writing for The Guardian, further explained what happened, saying:

“Applications downloaded from the Mac App Store were temporarily unavailable from 10PM UK time, when a security certificate expired, five years after its creation, with no replacement immediately available.”

The issue was first spotted by a Mac and iOS developer, Paul Haddad,

...


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac OS X Malware Soars in 2015

Mac OS X Malware Soars in 2015 | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
“For years, Mac users have watched their PC-using counterparts struggle with cyber-attacks, while enjoying the relative immunity that their hardware provides from malware. This view is becoming increasingly outdated; our research shows that Mac users should be just as worried,” argued Bit9 + Carbon Black Emea MD, David Flower.

“With 45 per cent of businesses now offering Macs as an option to staff, our research should be seen as a timely reminder that every device on the network is a potential target—businesses can’t just rely on a clearly outdated perception of invulnerability.”


Mac malware is set to accelerate over the coming months after having its most prolific year ever so far in 2015, according to new research from endpoint security firm Bit9 + Carbon Black.


After an analysis of the year so far, the vendor concluded that five times more Mac malware appeared in 2015 than the previous five years combined.  


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:
For years, Mac users have watched their PC-using counterparts struggle with cyber-attacks, while enjoying the relative immunity that their hardware provides from malware. This view is becoming increasingly outdated; our research shows that Mac users should be just as worried,” argued Bit9 + Carbon Black Emea MD, David Flower.

“With 45 per cent of businesses now offering Macs as an option to staff, our research should be seen as a timely reminder that every device on the network is a potential target—businesses can’t just rely on a clearly outdated perception of invulnerability.”


Mac malware is set to accelerate over the coming months after having its most prolific year ever so far in 2015, according to new research from endpoint security firm Bit9 + Carbon Black.


After an analysis of the year so far, the vendor concluded that five times more Mac malware appeared in 2015 than the previous five years combined.  


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Hackers claim $1 million bounty after remotely jailbreaking iPhones | Apple | ZERODIUM | Nobody Is Perfect

Hackers claim $1 million bounty after remotely jailbreaking iPhones | Apple | ZERODIUM | Nobody Is Perfect | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple devices are generally considered by security experts to be safe, and rather difficult to hack. But difficult doesn’t mean impossible.

Over the weekend someone proved just how possible it is to hack at least one of these devices, the iPhone.

The hack came about as part of a challenge issued in September by bug bounty startup Zeriodium, which offered up a million dollar bounty for “an exclusive, browser-based, and untethered jailbreak for the latest Apple iOS 9 operating system and devices” that was set to expire on October 31.


This new hack has implications far exceeding the million dollar bounty.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?tag=ZERODIUM



Gust MEES's insight:
Apple devices are generally considered by security experts to be safe, and rather difficult to hack. But difficult doesn’t mean impossible.

Over the weekend someone proved just how possible it is to hack at least one of these devices, the iPhone.

The hack came about as part of a challenge issued in September by bug bounty startup Zeriodium, which offered up a million dollar bounty for “an exclusive, browser-based, and untethered jailbreak for the latest Apple iOS 9 operating system and devices” that was set to expire on October 31.


This new hack has implications far exceeding the million dollar bounty.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?tag=ZERODIUM


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Newly Discovered Exploit Makes Every iPhone Remotely Hackable | Apple

Newly Discovered Exploit Makes Every iPhone Remotely Hackable | Apple | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
The government would love to get its hands on a foolproof way to break into the new highly encrypted iPhone. And it looks like some clever hackers just gave it to them.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?tag=ZERODIUM



Gust MEES's insight:

The government would love to get its hands on a foolproof way to break into the new highly encrypted iPhone. And it looks like some clever hackers just gave it to them.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?tag=ZERODIUM



more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Datenklau: Apple schmeißt 256 Schnüffel-Apps aus dem App Store

Datenklau: Apple schmeißt 256 Schnüffel-Apps aus dem App Store | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple: Prüfprozess überlistet

Die Analysefirma SourceDNA hat nach eigenen Angaben Hunderte Apps gefunden, die unerlaubterweise persönliche Daten von Nutzern gesammelt und weitergegeben haben sollen. Den Experten zufolge sei das das erste Mal, dass iOS-Apps trotz dieser Funktionen erfolgreich Apples Prüfprozess für den Zugang zum App Store überlistet hätten – und dabei entdeckt wurden. Die 256 identifizierten Apps sollen insgesamt rund eine Million Mal heruntergeladen worden sein.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?tag=App-Store-Malware


Gust MEES's insight:

Apple: Prüfprozess überlistet

Die Analysefirma SourceDNA hat nach eigenen Angaben Hunderte Apps gefunden, die unerlaubterweise persönliche Daten von Nutzern gesammelt und weitergegeben haben sollen. Den Experten zufolge sei das das erste Mal, dass iOS-Apps trotz dieser Funktionen erfolgreich Apples Prüfprozess für den Zugang zum App Store überlistet hätten – und dabei entdeckt wurden. Die 256 identifizierten Apps sollen insgesamt rund eine Million Mal heruntergeladen worden sein.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?tag=App-Store-Malware




more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Sécurité : une vulnérabilité détectée dans Gatekeeper | Nobody Is Perfect | Apple

Sécurité : une vulnérabilité détectée dans Gatekeeper | Nobody Is Perfect | Apple | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Au fil des mises à jour d’OS X, Apple a toujours veillé à améliorer les protections du système. Mais comme la perfection n’existe pas, un chercheur a détecté un problème avec Gatekeeper. En effet, il serait possible de contourner cette protection et de laisser des malwares s’exécuter sur le Mac des victimes.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:
Au fil des mises à jour d’OS X, Apple a toujours veillé à améliorer les protections du système. Mais comme la perfection n’existe pas, un chercheur a détecté un problème avec Gatekeeper. En effet, il serait possible de contourner cette protection et de laisser des malwares s’exécuter sur le Mac des victimes.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple: Sicherheitsforscher schmuggelt Malware auf Macs | Nobody Is Perfect

Apple: Sicherheitsforscher schmuggelt Malware auf Macs | Nobody Is Perfect | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Mit einer vergleichsweise simplen Methode hat ein Sicherheitsforscher OS X unsignierten Code untergeschoben und anschließend ausgeführt.


Der leitende Sicherheitsforscher der Unternehmensberater Synack Patrick Wardle hat den Sicherheitsmechanismus Gatekeeper von Apples Betriebssystem OS X umgangen und nicht signierten Code ausgeführt. Welche OS-X-Versionen davon betroffen sind, ist derzeit nicht bekannt. Einem Apple-Sprecher zufolge arbeitet das Unternehmen an einem Patch, schreibt das Technik-Portal Arstechnica .


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:

Mit einer vergleichsweise simplen Methode hat ein Sicherheitsforscher OS X unsignierten Code untergeschoben und anschließend ausgeführt.

Der leitende Sicherheitsforscher der Unternehmensberater Synack Patrick Wardle hat den Sicherheitsmechanismus Gatekeeper von Apples Betriebssystem OS X umgangen und nicht signierten Code ausgeführt. Welche OS-X-Versionen davon betroffen sind, ist derzeit nicht bekannt. Einem Apple-Sprecher zufolge arbeitet das Unternehmen an einem Patch, schreibt das Technik-Portal Arstechnica .


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Fake Flash Player Update Infects Mac with Scareware

Fake Flash Player Update Infects Mac with Scareware | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Anyone who has been using computers for any length of time should (hopefully) be aware of the endless ritual of updating Adobe Flash against security vulnerabilities. Even if you don't run Flash on your computer, you've surely seen the many headlines in the tech media over the years of the importance of keeping Adobe Flash (and its Acrobat PDF Reader stablemate) updated to protect against malicious attack.

So, what better way to trick someone into having their computer infected than by disguising it as an actual Adobe Flash update?

That's precisely what criminals are doing now, in their attempts to infect Apple Mac users with scareware.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:

Anyone who has been using computers for any length of time should (hopefully) be aware of the endless ritual of updating Adobe Flash against security vulnerabilities. Even if you don't run Flash on your computer, you've surely seen the many headlines in the tech media over the years of the importance of keeping Adobe Flash (and its Acrobat PDF Reader stablemate) updated to protect against malicious attack.

So, what better way to trick someone into having their computer infected than by disguising it as an actual Adobe Flash update?

That's precisely what criminals are doing now, in their attempts to infect Apple Mac users with scareware.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security




more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple's iOS 9.2.1 is here, and it fixes a security hole from 2013 | CyberSecurity

Apple's iOS 9.2.1 is here, and it fixes a security hole from 2013 | CyberSecurity | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
New iOS 9.2.1 is now available.


Users of iPhones, iPads and iPods probably didn't give much thought to Tuesday's iOS update, which brings the mobile OS to version 9.2.1.

According to Apple, the update contains "security updates and bug fixes," with the company highlighting an issue that can prevent app installation completion when using an MDM server (more data can be found here).


But it's notable that one of those security updates fixes quite a nasty security bug that's been discovered nearly three years ago.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security




Gust MEES's insight:
New iOS 9.2.1 is now available.


Users of iPhones, iPads and iPods probably didn't give much thought to Tuesday's iOS update, which brings the mobile OS to version 9.2.1.

According to Apple, the update contains "security updates and bug fixes," with the company highlighting an issue that can prevent app installation completion when using an MDM server (more data can be found here).


But it's notable that one of those security updates fixes quite a nasty security bug that's been discovered nearly three years ago.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

iOS 9.2.1 et OS X 10.11.3 : Apple apporte des corrections | CyberSecurity | Updates

iOS 9.2.1 et OS X 10.11.3 : Apple apporte des corrections | CyberSecurity | Updates | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it





Apple publie des mises à jour de ses systèmes d'exploitation iOS et OS X. Elles visent essentiellement à corriger des bugs dont de sécurité.






Learn more / Mehr erfahren / En savoir plus :


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:

Apple publie des mises à jour de ses systèmes d'exploitation iOS et OS X. Elles visent essentiellement à corriger des bugs dont de sécurité.


Learn more / Mehr erfahren / En savoir plus :


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

MacKeeper carelessly leaves 13 million Mac users exposed | Apple | Nobody Is Perfect

MacKeeper carelessly leaves 13 million Mac users exposed | Apple | Nobody Is Perfect | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Researcher Chris Vickery stumbled across over 13 million sensitive account details related to MacKeeper, after using the Shodan search engine to hunt for database servers left open to the internet, that required no authentication.

Sure enough, Vickery's search found four different IP addresses of servers belonging to Kromtech.

And on those servers, Vickery found over 20GB of MacKeeper user data - including names, email addresses, phone numbers, IP addresses, software licenses, system information and users' hashed passwords.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:
Researcher Chris Vickery stumbled across over 13 million sensitive account details related to MacKeeper, after using the Shodan search engine to hunt for database servers left open to the internet, that required no authentication.

Sure enough, Vickery's search found four different IP addresses of servers belonging to Kromtech.

And on those servers, Vickery found over 20GB of MacKeeper user data - including names, email addresses, phone numbers, IP addresses, software licenses, system information and users' hashed passwords.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security



more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple security updates a sign of things to come | CyberSecurity

Apple security updates a sign of things to come | CyberSecurity | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
While Patch Tuesday is a well-known event for Microsoft and Adobe users, Apple product owners this week received a dose of reality when they found themselves on the receiving end of several security updates.

Apple released multiple updates that touch most of its product portfolio and Apple fans can look forward to more of the same as the company's devices are targeted by cybercriminals, according to Symantec blogger and senior information developer Dick O'Brien. While the number of threats is miniscule compared to what Microsoft, Google and Adobe users face, they are increasing.


Learn more / Mehr erfahren / En savoir plus :


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?tag=Patch+Tuesday+made+in+Apple


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:
While Patch Tuesday is a well-known event for Microsoft and Adobe users, Apple product owners this week received a dose of reality when they found themselves on the receiving end of several security updates.

Apple released multiple updates that touch most of its product portfolio and Apple fans can look forward to more of the same as the company's devices are targeted by cybercriminals, according to Symantec blogger and senior information developer Dick O'Brien. While the number of threats is miniscule compared to what Microsoft, Google and Adobe users face, they are increasing.


Learn more / Mehr erfahren / En savoir plus :


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?tag=Patch+Tuesday+made+in+Apple


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Certificat de sécurité expiré = chaos sur Mac App Store | Apple | Apps

Certificat de sécurité expiré = chaos sur Mac App Store | Apple | Apps | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Le non-renouvellement d’un certificat de sécurité par Apple a provoqué une belle pagaille sur Mac App Store. Apple a renouvelé son certificat jusqu’en 2035


En savoir plus / Mehr erfahren / Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:
Le non-renouvellement d’un certificat de sécurité par Apple a provoqué une belle pagaille sur Mac App Store. Apple a renouvelé son certificat jusqu’en 2035


En savoir plus / Mehr erfahren / Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac OS X malware is heating up | Apple | Nobody Is Perfect | CyberSecurity

Mac OS X malware is heating up | Apple | Nobody Is Perfect | CyberSecurity | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
A new threat research report conducted by Bit9+ Carbon Black’s research team found that in 2015, there was 948 malware instances. The number of  OS X malware samples this year is five times greater than in 2010-2014 combined — where there was only 180 malware instances over a four-year period. Based on observations in a 10-week analysis: the research team anticipates MAC OS X malware to surge in the coming months.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:
A new threat research report conducted by Bit9+ Carbon Black’s research team found that in 2015, there was 948 malware instances. The number of  OS X malware samples this year is five times greater than in 2010-2014 combined — where there was only 180 malware instances over a four-year period. Based on observations in a 10-week analysis: the research team anticipates MAC OS X malware to surge in the coming months.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

iOS 9 Can Now Finally Be Remotely Jailbroken | Apple | ZERODIUM | Nobody Is Perfect

iOS 9 Can Now Finally Be Remotely Jailbroken | Apple | ZERODIUM | Nobody Is Perfect | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Bad news iOS 9 users. Someone has developed a way of jailbreaking your iPhone or iPad and spying on you, in a way that is currently unstoppable.


This new hack has implications far exceeding the million dollar bounty.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?tag=ZERODIUM


Gust MEES's insight:
Bad news iOS 9 users. Someone has developed a way of jailbreaking your iPhone or iPad and spying on you, in a way that is currently unstoppable.


This new hack has implications far exceeding the million dollar bounty.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?tag=ZERODIUM


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Hackers Claim Million-Dollar Bounty for iOS Zero Day Attack | Zerodium | Apple | Nobody Is Perfect

Hackers Claim Million-Dollar Bounty for iOS Zero Day Attack | Zerodium | Apple | Nobody Is Perfect | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
HACKING APPLE’S IOS isn’t easy. But in the world of cybersecurity, even the hardest target isn’t impossible—only expensive. And the price of a working attack that can compromise the latest iPhone is apparently somewhere around $1 million.

On Monday, the security startup Zerodium announced that it’s agreed to pay out that seven-figure sum to a team of hackers who have successfully developed a technique that can hack any iPhone or iPad that can be tricked into visiting a carefully crafted web site. Zerodium describes that technique as a “jailbreak”—a term used by iPhone owners to hack their own phones to install unauthorized apps. But make no mistake: Zerodium and its founder Chaouki Bekrar have made clear that its customers include governments who no doubt use such “zero-day” hacking techniques on unwitting surveillance targets.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?tag=ZERODIUM




Gust MEES's insight:
HACKING APPLE’S IOS isn’t easy. But in the world of cybersecurity, even the hardest target isn’t impossible—only expensive. And the price of a working attack that can compromise the latest iPhone is apparently somewhere around $1 million.

On Monday, the security startup Zerodium announced that it’s agreed to pay out that seven-figure sum to a team of hackers who have successfully developed a technique that can hack any iPhone or iPad that can be tricked into visiting a carefully crafted web site. Zerodium describes that technique as a “jailbreak”—a term used by iPhone owners to hack their own phones to install unauthorized apps. But make no mistake: Zerodium and its founder Chaouki Bekrar have made clear that its customers include governments who no doubt use such “zero-day” hacking techniques on unwitting surveillance targets.


Learn more:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?tag=ZERODIUM


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple pulls hundreds of apps that collected personal data

Apple pulls hundreds of apps that collected personal data | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it



A malicious advertising SDK was grabbing device serial numbers and Apple ID email addresses.





Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?tag=App-Store-Malware


Gust MEES's insight:

A malicious advertising SDK was grabbing device serial numbers and Apple ID email addresses.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?tag=App-Store-Malware



more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Yispecter: Sicherheitsfirma warnt vor neuer iOS-Malware | CyberSecurity | MobileSecurity | Apple

Yispecter: Sicherheitsfirma warnt vor neuer iOS-Malware | CyberSecurity | MobileSecurity | Apple | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Die Malware läuft auch auf iPhones und iPads ohne Jailbreak und erhält durch Nutzung privater APIs weitreichenden Zugriff, erklärt eine Sicherheitsfirma. Die Infektion erfolge auf verschiedenen Wegen.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:
Die Malware läuft auch auf iPhones und iPads ohne Jailbreak und erhält durch Nutzung privater APIs weitreichenden Zugriff, erklärt eine Sicherheitsfirma. Die Infektion erfolge auf verschiedenen Wegen.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Researcher demonstrates how malware can bypass OS X's "completely broken" Gatekeeper | Nobody Is Perfect | Apple

Researcher demonstrates how malware can bypass OS X's "completely broken" Gatekeeper | Nobody Is Perfect | Apple | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Virus Bulletin 2015, Prague - Researcher Patrick Wardle says he "loves his Mac, but it's so easy to hack".

At the VB2015 conference in Prague earlier today, Wardle explained to members of the security community how he had uncovered a way to easily waltz past one of the key safeguards that Apple built into its OS X operating system to block unauthorised code, downloaded from the internet, from running.

Generally, Gatekeeper does a reasonable job.

If an app is developed by an unknown developer, or has been tampered with en route to your computer via a man-in-the-middle attack over an unencrypted HTTP connection, then Gatekeeper is supposed to spot it and block it.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:
Virus Bulletin 2015, Prague - Researcher Patrick Wardle says he "loves his Mac, but it's so easy to hack".

At the VB2015 conference in Prague earlier today, Wardle explained to members of the security community how he had uncovered a way to easily waltz past one of the key safeguards that Apple built into its OS X operating system to block unauthorised code, downloaded from the internet, from running.

Generally, Gatekeeper does a reasonable job.

If an app is developed by an unknown developer, or has been tampered with en route to your computer via a man-in-the-middle attack over an unencrypted HTTP connection, then Gatekeeper is supposed to spot it and block it.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

How hackers can access iPhone contacts and photos without a password | Nobody Is Perfect

How hackers can access iPhone contacts and photos without a password | Nobody Is Perfect | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
iPhone users have yet another screenlock bypass vulnerability to watch out for, according to a new video demonstration that shows how the bug can be exploited to gain unauthorized access to photos and contacts.

The hack reportedly works on iOS version 9.0.1, which Apple released Wednesday, although some people say they are unable to reproduce it. The vulnerability makes it possible for someone who gets even a brief moment with an iPhone to rifle through contacts and photos without entering the password. Here it is in action.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


Gust MEES's insight:
iPhone users have yet another screenlock bypass vulnerability to watch out for, according to a new video demonstration that shows how the bug can be exploited to gain unauthorized access to photos and contacts.

The hack reportedly works on iOS version 9.0.1, which Apple released Wednesday, although some people say they are unable to reproduce it. The vulnerability makes it possible for someone who gets even a brief moment with an iPhone to rifle through contacts and photos without entering the password. Here it is in action.


Learn more / En savoir plus / Mehr erfahren:


http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security


more...
No comment yet.