Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security...
11.3K views | +6 today
Follow
 
Scooped by Gust MEES
onto Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security...
Scoop.it!

More Mac malware attacking minority groups in China

More Mac malware attacking minority groups in China | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
A targeted Mac malware attack strikes a minority group in China, exploiting an old Microsoft Word vulnerability.

 

Although many Mac users might clutch onto the hope that their operating system will ask for an administrator's username and password before installing any software, you won't see any such message pop-up with an attack like this as it is a userland Trojan and you will not be prompted for administrator credentials.

 

Once again, Mac users need to remember to not be complacent about the security of their computers. Although there is much less malware for Mac than there is for Windows, that is going to be no compensation if you happen to be targeted by an attack like this.

 

Mac users, just like Windows users, need to pay attention to the latest security patches and ensure that their software is kept properly up-to-date.

If you're not already doing so, run anti-virus software on your Macs.

 

If you're a home user, there really is no excuse at all as we offer a free anti-virus for Mac consumers.

 

 

 

 

Gust MEES's insight:

===> If you're a home user, there really is no excuse at all as we offer a free anti-virus for Mac consumers. <===

 

Check also:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

 

more...
No comment yet.
Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security...
Everything related to the (in)security of Apple products
Curated by Gust MEES
Your new post is loading...
Your new post is loading...
Rescooped by Gust MEES from 21st Century Learning and Teaching
Scoop.it!

Immune No More: An Apple Story

Immune No More: An Apple Story | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
For a very long time, Apple and its pseudo-religious user-base prided itself on being a platform free of malware; those days are inarguably and unequivocally over. Its emergence as the early winner...
Gust MEES's insight:

 

A MUST read!!!

 

Learn more:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
Scooped by Gust MEES
Scoop.it!

Apple's macOS High Sierra will launch with a major security hole | #Apple #CyberSecurity #NobodyIsPerfect

Apple's macOS High Sierra will launch with a major security hole | #Apple #CyberSecurity #NobodyIsPerfect | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Just hours before Apple is expected to roll out the new version of its desktop and notebook operating system, macOS High Sierra, a security researcher dropped a zero-day.

Patrick Wardle, a former NSA hacker who now serves as chief security researcher at ‎Synack, posted a video of the hack -- a password exfiltration exploit -- in action.

Passwords are stored in the Mac's Keychain, which typically requires a master login password to access the vault.

But Wardle has shown that the vulnerability allows an attacker to grab and steal every password in plain-text using an unsigned app downloaded from the internet, without needing that password.

Wardle tested the exploit on High Sierra, but said that older versions of macOS and OS X are also vulnerable.

He tweeted a short video demonstrating the hack.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=MacOS

 

Gust MEES's insight:
Just hours before Apple is expected to roll out the new version of its desktop and notebook operating system, macOS High Sierra, a security researcher dropped a zero-day.

Patrick Wardle, a former NSA hacker who now serves as chief security researcher at ‎Synack, posted a video of the hack -- a password exfiltration exploit -- in action.

Passwords are stored in the Mac's Keychain, which typically requires a master login password to access the vault.

But Wardle has shown that the vulnerability allows an attacker to grab and steal every password in plain-text using an unsigned app downloaded from the internet, without needing that password.

Wardle tested the exploit on High Sierra, but said that older versions of macOS and OS X are also vulnerable.

He tweeted a short video demonstrating the hack.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=MacOS

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Some Mac users are getting hit with ransomware -- here's what to do | #CyberSecurity #Apple 

Some Mac users are getting hit with ransomware -- here's what to do | #CyberSecurity #Apple  | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Several Mac users are complaining about getting locked out of their computers for a bitcoin ransom.

 

Learn more / En savoir plus / Mehr erfahren:

 

 http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=RANSOMWARE

 

Gust MEES's insight:
Several Mac users are complaining about getting locked out of their computers for a bitcoin ransom.

 

Learn more / En savoir plus / Mehr erfahren:

 

 http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=RANSOMWARE

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

iOS 11 : coupés via le centre de contrôle, Wi-Fi et Bluetooth restent actifs | #Apple #Privacy #Tracking

iOS 11 : coupés via le centre de contrôle, Wi-Fi et Bluetooth restent actifs | #Apple #Privacy #Tracking | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

Apple confirme bien ce comportement qu'il n'associe pas à un bug. L'iPhone a en fait régulièrement besoin d'utiliser ce type de...

 

Learn more / En savoir plus / Mehr erfahren:

 

 

https://gustmees.wordpress.com/2013/12/21/privacy-in-the-digital-world-shouldnt-we-talk-about-it/

 

https://gustmees.wordpress.com/?s=privacy

 

Gust MEES's insight:

Apple confirme bien ce comportement qu'il n'associe pas à un bug. L'iPhone a en fait régulièrement besoin d'utiliser ce type de...

 

Learn more / En savoir plus / Mehr erfahren:

 

 

https://gustmees.wordpress.com/2013/12/21/privacy-in-the-digital-world-shouldnt-we-talk-about-it/

 

https://gustmees.wordpress.com/?s=privacy

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Creepy spyware has infected Macs for years, and we're only just realizing it now | #Apple #CyberSecurity

Creepy spyware has infected Macs for years, and we're only just realizing it now | #Apple #CyberSecurity | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
A researcher discovered malware dubbed Fruitfly that he thinks was designed for "probably perverse reasons."

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Fruitfly

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
A researcher discovered malware dubbed Fruitfly that he thinks was designed for "probably perverse reasons."

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Fruitfly

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Fruit Fly 2: Mysteriöse Mac-Malware seit Jahren aktiv | #Apple #CyberSecurity

Fruit Fly 2: Mysteriöse Mac-Malware seit Jahren aktiv | #Apple #CyberSecurity | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Auch Mac-Nutzer sind nicht vor Schadsoftware sicher: Eine Malware soll seit mehr als fünf Jahren aktiv sein, aber nur einige hundert Nutzer befallen haben. Die Software ermöglicht einen weitgehenden Zugriff auf den Rechner und private Informationen.
Mehrere hundert Mac-Nutzer in den USA und Kanda sind offenbar mit einer bislang unbekannten Malware infiziert worden. Diese soll bereits seit mehr als fünf Jahren aktiv sein, wie Motherboard berichtet.

 

Die Malware sammelt nach Angaben des Sicherheitsforscher Patrick Wardle Informationen wie Tastatureingaben und sendet diese an verschiedene Command-und-Control-Server. Über den Infektionsweg ist bislang nichts bekannt. Details zur Malware will Wardle auf den Sicherheitskonferenzen Black Hat und Defcon bekanntgeben.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Fruitfly

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
Auch Mac-Nutzer sind nicht vor Schadsoftware sicher: Eine Malware soll seit mehr als fünf Jahren aktiv sein, aber nur einige hundert Nutzer befallen haben. Die Software ermöglicht einen weitgehenden Zugriff auf den Rechner und private Informationen.
Mehrere hundert Mac-Nutzer in den USA und Kanda sind offenbar mit einer bislang unbekannten Malware infiziert worden. Diese soll bereits seit mehr als fünf Jahren aktiv sein, wie Motherboard berichtet.

 

Die Malware sammelt nach Angaben des Sicherheitsforscher Patrick Wardle Informationen wie Tastatureingaben und sendet diese an verschiedene Command-und-Control-Server. Über den Infektionsweg ist bislang nichts bekannt. Details zur Malware will Wardle auf den Sicherheitskonferenzen Black Hat und Defcon bekanntgeben.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Fruitfly

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac users face increased ransomware threats | #Apple #CyberSecurity #NobodyIsPerfect #Awareness

Mac users face increased ransomware threats | #Apple #CyberSecurity #NobodyIsPerfect #Awareness | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple Inc. has a reputation for building secure devices, but don’t become too complacent because ransomware threats to Mac users are on the rise.

While ransomware attacks against Microsoft Windows-based computers and servers remain far more prevalent, security researchers have detected new Mac threats in recent years and expect to see new threats in the future.

 

Protect your Mac from ransomware
Mac users are clearly not free from the threat of ransomware. While not at epidemic proportions, ransomware attacks against Macs have seen widespread success by breaking into systems that were assumed secure. Fortunately, users today have access to a variety of backup options. You can add an extra layer of protection to your Mac computer by stepping beyond the Apple ecosystem of TimeMachine nearline backups and iCloud synchronization and embracing a third-party cloud backup solution.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=RANSOMWARE

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
Apple Inc. has a reputation for building secure devices, but don’t become too complacent because ransomware threats to Mac users are on the rise.

While ransomware attacks against Microsoft Windows-based computers and servers remain far more prevalent, security researchers have detected new Mac threats in recent years and expect to see new threats in the future.

 

Protect your Mac from ransomware
Mac users are clearly not free from the threat of ransomware. While not at epidemic proportions, ransomware attacks against Macs have seen widespread success by breaking into systems that were assumed secure. Fortunately, users today have access to a variety of backup options. You can add an extra layer of protection to your Mac computer by stepping beyond the Apple ecosystem of TimeMachine nearline backups and iCloud synchronization and embracing a third-party cloud backup solution.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=RANSOMWARE

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac users beware! Hackers are selling 'the most sophisticated' Mac malware ever | #MacSpy #CyberSecurity

Mac users beware! Hackers are selling 'the most sophisticated' Mac malware ever | #MacSpy #CyberSecurity | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

Just because you’re using a Mac doesn’t mean you’ve escaped the malware threat.

 

Two new security threats, a malware-as-a-service (MaaS) platform and a ransomware-as-a-service (RaaS) program, are designed to specifically target machines running Apple macOS.

 

Two new security threats, a malware-as-a-service (MaaS) platform and a ransomware-as-a-service (RaaS) program, are designed to specifically target machines running Apple macOS.

The MaaS platform, known as "MacSpy," responds to what its authors feel is an ongoing lack of "sophisticated malware for Mac users". Of course, that perception is not entirely accurate. We've seen numerous sophisticated malware strainsdeveloped for Macs over the past year or so.

 

It's true, however, that MacSpy takes this budding proliferation to the next level by making macOS malware more accessible to users with low levels of technical expertise.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

 

Gust MEES's insight:

Just because you’re using a Mac doesn’t mean you’ve escaped the malware threat.

 

Two new security threats, a malware-as-a-service (MaaS) platform and a ransomware-as-a-service (RaaS) program, are designed to specifically target machines running Apple macOS.

 

Two new security threats, a malware-as-a-service (MaaS) platform and a ransomware-as-a-service (RaaS) program, are designed to specifically target machines running Apple macOS.

The MaaS platform, known as "MacSpy," responds to what its authors feel is an ongoing lack of "sophisticated malware for Mac users". Of course, that perception is not entirely accurate. We've seen numerous sophisticated malware strainsdeveloped for Macs over the past year or so.

 

It's true, however, that MacSpy takes this budding proliferation to the next level by making macOS malware more accessible to users with low levels of technical expertise.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Transparenzbericht: Apple hat offenbar ersten National Security Letter erhalten | #Privacy #Datenschutz

Transparenzbericht: Apple hat offenbar ersten National Security Letter erhalten | #Privacy #Datenschutz | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Zum ersten Mal hat Apple den Erhalt eines National Security Letters im halbjährlichen Transparenzbericht aufgeführt. Die Zahl der Anfragen der US-Regierung zur nationalen Sicherheit stieg außerdem erneut sprunghaft an.

 

Learn more / En savoir plus / Mehr erfahren:

 

https://gustmees.wordpress.com/2013/12/21/privacy-in-the-digital-world-shouldnt-we-talk-about-it/

 

https://gustmees.wordpress.com/?s=privacy

 

Gust MEES's insight:
Zum ersten Mal hat Apple den Erhalt eines National Security Letters im halbjährlichen Transparenzbericht aufgeführt. Die Zahl der Anfragen der US-Regierung zur nationalen Sicherheit stieg außerdem erneut sprunghaft an.

 

Learn more / En savoir plus / Mehr erfahren:

 

https://gustmees.wordpress.com/2013/12/21/privacy-in-the-digital-world-shouldnt-we-talk-about-it/

 

https://gustmees.wordpress.com/?s=privacy

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple users advised to update their software now, as new security patches released | #Updates #CyberSecurity

Apple users advised to update their software now, as new security patches released | #Updates #CyberSecurity | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Welcome to the post-WannaCryptor world, where every computer user understands the importance of creating secure backups and applying security patches in a timely fashion.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Updates

 

http://www.scoop.it/t/securite-pc-et-internet/?&tag=Updates

 

Gust MEES's insight:
Welcome to the post-WannaCryptor world, where every computer user understands the importance of creating secure backups and applying security patches in a timely fashion.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Updates

 

http://www.scoop.it/t/securite-pc-et-internet/?&tag=Updates

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Server-Hack: Handbrake-Download war mehrere Tage mit Malware verseucht | #Apple #Mac #CyberSecurity 

Server-Hack: Handbrake-Download war mehrere Tage mit Malware verseucht | #Apple #Mac #CyberSecurity  | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Die Mac-Version 1.0.7 von Handbrake war mehrere Tage am Wochenende mit dem Trojaner Proton infiziert.

 

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=HandBrake

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:

Die Mac-Version 1.0.7 von Handbrake war mehrere Tage am Wochenende mit dem Trojaner Proton infiziert. 

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=HandBrake

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Popular Mac App Developers Issue Urgent Malware Warning | #CyberSecurity #Apple #Awareness #NobodyIsPerfect

Popular Mac App Developers Issue Urgent Malware Warning | #CyberSecurity #Apple #Awareness #NobodyIsPerfect | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

It’s been a rough week in Mac security. First, Checkpoint warned users of a Trojan spreading in Europe that was the first of its kind. And now, one of the most prominent video transcoding apps for Mac has a malware problem.

Popular BitTorrent Client Transmission Gets Infected With Malware Again


For the second time in five months, the Transmission BitTorrent client for Mac has been infected…


The developers of the transcoding software Handbrake have issued a statement that warns one of the mirror sites to download the software has been compromised by hackers. The post explains that anyone who has downloaded the software between May 2nd and 6th of this year has a 50/50 chance of being infected. But, it’s probably a good idea just to double check if you’ve downloaded it anytime recently.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:

It’s been a rough week in Mac security. First, Checkpoint warned users of a Trojan spreading in Europe that was the first of its kind. And now, one of the most prominent video transcoding apps for Mac has a malware problem.

Popular BitTorrent Client Transmission Gets Infected With Malware Again


For the second time in five months, the Transmission BitTorrent client for Mac has been infected…


The developers of the transcoding software Handbrake have issued a statement that warns one of the mirror sites to download the software has been compromised by hackers. The post explains that anyone who has downloaded the software between May 2nd and 6th of this year has a 50/50 chance of being infected. But, it’s probably a good idea just to double check if you’ve downloaded it anytime recently.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Dok : un nouveau malware vise les Mac | #Apple #CyberSecurity #Awareness

Dok : un nouveau malware vise les Mac | #Apple #CyberSecurity #Awareness | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

CheckPoint signale un nouveau malware visant les utilisateurs européens de Mac. Baptisé Dok, celui-ci est diffusé via une campagne de phishing...

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Dok

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:

CheckPoint signale un nouveau malware visant les utilisateurs européens de Mac. Baptisé Dok, celui-ci est diffusé via une campagne de phishing...

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Dok

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

MacOS High Sierra: MacOS-Keychain kann per App ausgelesen werden | #Apple #CyberSecurity #NobodyIsPerfect 

MacOS High Sierra: MacOS-Keychain kann per App ausgelesen werden | #Apple #CyberSecurity #NobodyIsPerfect  | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
MacOS-Keychain kann per App ausgelesen werden
Der Sicherheitsforscher Patrick Wardle hat demonstriert, dass Apples Keychain unter MacOS mit einer App komplett ausgelesen werden kann. Diese muss aber zunächst an Apples Gatekeeper vorbei.


Der Hacker Patrick Wardle hat nach eigenen Angaben eine Sicherheitslücke in der aktuellen Version von Apples Desktop-Betriebssystem High Sierra gefunden, die es bösartigen Applikationen ermöglicht, Passwörter aus Apples Keychain auszulesen. Normalerweise müssen Nutzer einzelne Passwörter durch Eingabe eines Master-Passworts freigeben.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=MacOS

 

Gust MEES's insight:
MacOS-Keychain kann per App ausgelesen werden
Der Sicherheitsforscher Patrick Wardle hat demonstriert, dass Apples Keychain unter MacOS mit einer App komplett ausgelesen werden kann. Diese muss aber zunächst an Apples Gatekeeper vorbei.


Der Hacker Patrick Wardle hat nach eigenen Angaben eine Sicherheitslücke in der aktuellen Version von Apples Desktop-Betriebssystem High Sierra gefunden, die es bösartigen Applikationen ermöglicht, Passwörter aus Apples Keychain auszulesen. Normalerweise müssen Nutzer einzelne Passwörter durch Eingabe eines Master-Passworts freigeben.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=MacOS

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

High Sierra Reportedly Has a Password Problem | #Apple #CyberSecurity #macOS #NobodyIsPerfect 

High Sierra Reportedly Has a Password Problem | #Apple #CyberSecurity #macOS #NobodyIsPerfect  | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple’s latest macOS, High Sierra, rolls out today with plenty of nice security upgrades, including invasive ad tracker blocking in Safari and weekly firmware validation. But the new OS apparently comes with a security problem, too—a security researcher at Synack has already discovered a way to snatch passwords from High Sierra.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
Apple’s latest macOS, High Sierra, rolls out today with plenty of nice security upgrades, including invasive ad tracker blocking in Safari and weekly firmware validation. But the new OS apparently comes with a security problem, too—a security researcher at Synack has already discovered a way to snatch passwords from High Sierra.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Turning Off Wifi, Bluetooth in iOS 11 Not as Easy as It Seems | #Apple #Privacy 

Turning Off Wifi, Bluetooth in iOS 11 Not as Easy as It Seems | #Apple #Privacy  | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

If you're an iPhone user who's downloaded iOS 11, you'll want to pay attention to this recent Tweet from F-Secure's head of hardware security Andrea Barisani.

 

iOS 11 comes with a new Control Center that opens when you swipe up from the bottom of the screen. But ironically, the app seems to be lacking some control. When you tap the Bluetooth and Wifi icons, while the phone disconnects from any current Bluetooth or Wifi connections, it doesn’t turn off those features completely.

 

That means new Bluetooth or Wifi connections can still be made. In order to make sure those features are off completely, you’ll need to go into the separate Settings app and turn them off there.

From a security and privacy perspective, it’s important to understand this distinction because turning off Bluetooth and Wifi when you’re not using them prevents your device from broadcasting information about itself.

 

Learn more / En savoir plus / Mehr erfahren: 

 

https://gustmees.wordpress.com/2013/12/21/privacy-in-the-digital-world-shouldnt-we-talk-about-it/

 

https://gustmees.wordpress.com/?s=privacy

 

 

Gust MEES's insight:

If you're an iPhone user who's downloaded iOS 11, you'll want to pay attention to this recent Tweet from F-Secure's head of hardware security Andrea Barisani.

 

iOS 11 comes with a new Control Center that opens when you swipe up from the bottom of the screen. But ironically, the app seems to be lacking some control. When you tap the Bluetooth and Wifi icons, while the phone disconnects from any current Bluetooth or Wifi connections, it doesn’t turn off those features completely.

 

That means new Bluetooth or Wifi connections can still be made. In order to make sure those features are off completely, you’ll need to go into the separate Settings app and turn them off there.

From a security and privacy perspective, it’s important to understand this distinction because turning off Bluetooth and Wifi when you’re not using them prevents your device from broadcasting information about itself.

 

Learn more / En savoir plus / Mehr erfahren: 

 

https://gustmees.wordpress.com/2013/12/21/privacy-in-the-digital-world-shouldnt-we-talk-about-it/

 

https://gustmees.wordpress.com/?s=privacy

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac malware is spreading at a frightening rate, claims report | #CyberSecurity #Awareness #NobodyIsPerfect

Mac malware is spreading at a frightening rate, claims report | #CyberSecurity #Awareness #NobodyIsPerfect | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Macs are becoming an increasingly big target for malware authors, and a new report has pointed to a massive increase this year in the likes of viruses aimed at Apple’s machines (which were once regarded as relative safe havens in comparison to Windows PCs).

The findings from Malwarebytes show that as of July 2017, there has been a huge leap of 230% in Mac malware compared to the previous year.

Some categories of malicious software are increasing at an even faster rate than this, namely adware and potentially unwanted programs (PUPs) according to the security firm, although it didn’t clarify any percentage rates in these cases.

Malwarebytes also observed that the Mac App Store is currently awash with a ‘tidal wave’ of scam software.

As Betanews reports, the authors of the study looked to the future, predicting that: “In 2018, Mac malware will increase but PUPs will see the largest growth. These are not very well policed and are free to proliferate unchecked.

“Mac users are already experiencing some of this now, with an explosion of fake anti-virus apps in the Mac App Store. These are not well controlled by Apple and not commonly known of even within the security community.”

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
Macs are becoming an increasingly big target for malware authors, and a new report has pointed to a massive increase this year in the likes of viruses aimed at Apple’s machines (which were once regarded as relative safe havens in comparison to Windows PCs).

The findings from Malwarebytes show that as of July 2017, there has been a huge leap of 230% in Mac malware compared to the previous year.

Some categories of malicious software are increasing at an even faster rate than this, namely adware and potentially unwanted programs (PUPs) according to the security firm, although it didn’t clarify any percentage rates in these cases.

Malwarebytes also observed that the Mac App Store is currently awash with a ‘tidal wave’ of scam software.

As Betanews reports, the authors of the study looked to the future, predicting that: “In 2018, Mac malware will increase but PUPs will see the largest growth. These are not very well policed and are free to proliferate unchecked.

“Mac users are already experiencing some of this now, with an explosion of fake anti-virus apps in the Mac App Store. These are not well controlled by Apple and not commonly known of even within the security community.”

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac-Malware Fruitfly kann Maus und Tastatur bedienen sowie Webcam einschalten | #Apple #CyberSecurity 

Mac-Malware Fruitfly kann Maus und Tastatur bedienen sowie Webcam einschalten | #Apple #CyberSecurity  | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

Fruitfly blieb wahrscheinlich mehrere Jahre unentdeckt. Die neue Variante der Malware erlaubt es Angreifern, aus der Ferne die vollständige Kontrolle zu übernehmen...

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Fruitfly

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:

Fruitfly blieb wahrscheinlich mehrere Jahre unentdeckt. Die neue Variante der Malware erlaubt es Angreifern, aus der Ferne die vollständige Kontrolle zu übernehmen...

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Fruitfly

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple-ID: Polizei warnt vor neuer Phishing-Welle | #Apple #CyberSecurity #Awareness

Apple-ID: Polizei warnt vor neuer Phishing-Welle | #Apple #CyberSecurity #Awareness | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Mit gefälschten E-Mails und Webseiten wollen Kriminelle Zugangsdaten von Apple-Nutzern erschleichen. Die Phishing-Seiten setzen auf "gute Optik" und geben sich durch https-Verschlüsselung einen seriösen Anschein, warnt die Polizei Niedersachsen.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
Mit gefälschten E-Mails und Webseiten wollen Kriminelle Zugangsdaten von Apple-Nutzern erschleichen. Die Phishing-Seiten setzen auf "gute Optik" und geben sich durch https-Verschlüsselung einen seriösen Anschein, warnt die Polizei Niedersachsen.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

MacOS a aussi son ransomware-as-a-service | #Apple #CyberSecurity 

MacOS a aussi son ransomware-as-a-service | #Apple #CyberSecurity  | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Sécurité : Fortinet publie l’analyse d’un ransomware destiné à viser les utilisateurs de macOS. Mais si celui-ci se distingue par un fonctionnement de type as-a-service, il ne présente pas la même sophistication que ses semblables.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
Sécurité : Fortinet publie l’analyse d’un ransomware destiné à viser les utilisateurs de macOS. Mais si celui-ci se distingue par un fonctionnement de type as-a-service, il ne présente pas la même sophistication que ses semblables.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Die 7 gefährlichsten Computer-Programme | #CyberSecurity #OS #BSI

Die 7 gefährlichsten Computer-Programme | #CyberSecurity #OS #BSI | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Finger weg von dieser Software: Viele Programme sind ganz schön gefährlich, weil sie drastische Sicherheitslücken aufweisen. Das Bundesamt für Sicherheit in der Informationstechnik warnt jedes Jahr vor aktueller Software mit großen Schwachstellen. Wir zeigen, welche Programme davon betroffen sind.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

http://www.scoop.it/t/securite-pc-et-internet/

 

Gust MEES's insight:
Finger weg von dieser Software: Viele Programme sind ganz schön gefährlich, weil sie drastische Sicherheitslücken aufweisen. Das Bundesamt für Sicherheit in der Informationstechnik warnt jedes Jahr vor aktueller Software mit großen Schwachstellen. Wir zeigen, welche Programme davon betroffen sind.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

http://www.scoop.it/t/securite-pc-et-internet/

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple fixes dozens of security bugs for iPhones, Macs | #CyberSecurity #Updates

Apple fixes dozens of security bugs for iPhones, Macs | #CyberSecurity #Updates | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple has squashed dozens of security bugs in its latest releases of its iPhone, iPad, and Mac operating systems.

The Cupertino, Calif.-based company rolled out 23 security fixes in iOS 10.3.2 and another 30 fixes in macOS 10.12.5, both of which were released on Monday.

Among the bugs, two bugs in iBooks for iOS could allow an attacker to arbitrarily open websites and execute malicious code at the kernel level. Over a dozen flaws were found in WebKit, which renders websites and pages on iPhones and iPads, that could allow several kinds of cross-site scripting (XSS) attacks.

A separate flaw in iBooks for macOS desktops and notebooks could allow an application to escape its secure sandbox, a technology used to prevent data loss or theft in the case of an app compromise.

Almost half of the bugs found were attributed to Google's Project Zero, the search giant's in-house vulnerability-finding and security team.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Updates

 

http://www.scoop.it/t/securite-pc-et-internet/?&tag=Updates

 

 

 

Gust MEES's insight:
Apple has squashed dozens of security bugs in its latest releases of its iPhone, iPad, and Mac operating systems.

The Cupertino, Calif.-based company rolled out 23 security fixes in iOS 10.3.2 and another 30 fixes in macOS 10.12.5, both of which were released on Monday.

Among the bugs, two bugs in iBooks for iOS could allow an attacker to arbitrarily open websites and execute malicious code at the kernel level. Over a dozen flaws were found in WebKit, which renders websites and pages on iPhones and iPads, that could allow several kinds of cross-site scripting (XSS) attacks.

A separate flaw in iBooks for macOS desktops and notebooks could allow an application to escape its secure sandbox, a technology used to prevent data loss or theft in the case of an app compromise.

Almost half of the bugs found were attributed to Google's Project Zero, the search giant's in-house vulnerability-finding and security team.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Updates

 

http://www.scoop.it/t/securite-pc-et-internet/?&tag=Updates

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

MacOS : un malware en cadeau avec le téléchargement d'Handbrake | #Apple #CyberSecurity 

MacOS : un malware en cadeau avec le téléchargement d'Handbrake | #Apple #CyberSecurity  | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

Quoi de mieux pour piéger l'utilisateur de se faire passer pour une source légitime ? Des pirates ont ainsi réussi à s'introduire dans les serveurs de l'éditeur d'Handbrake et ont remplacé le logiciel d'encodage vidéo par une version piégée. Du coup, entre le 2 et le 6 mai dernier, si vous avez téléchargé (ou mis à jour) l'application vous avez toutes les chances (une chance sur deux pour être précis) d'avoir obtenu une version corrompue avec un joli malware en cadeau (OSX.PROTON).

 

Afin de vérifier si son Mac est infecté, il suffit d’ouvrir le Moniteur d’activité (localisé dans le dossier 'Utilitaires' d’Applications) et de regarder si le processus 'activity_agent' est en cours d’exécution. Si tel est le cas, cela veut dire que le malware est actif sur la machine.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=HandBrake

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:

Quoi de mieux pour piéger l'utilisateur de se faire passer pour une source légitime ? Des pirates ont ainsi réussi à s'introduire dans les serveurs de l'éditeur d'Handbrake et ont remplacé le logiciel d'encodage vidéo par une version piégée. Du coup, entre le 2 et le 6 mai dernier, si vous avez téléchargé (ou mis à jour) l'application vous avez toutes les chances (une chance sur deux pour être précis) d'avoir obtenu une version corrompue avec un joli malware en cadeau (OSX.PROTON).

 

Afin de vérifier si son Mac est infecté, il suffit d’ouvrir le Moniteur d’activité (localisé dans le dossier 'Utilitaires' d’Applications) et de regarder si le processus 'activity_agent' est en cours d’exécution. Si tel est le cas, cela veut dire que le malware est actif sur la machine.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=HandBrake

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Malware warning for Mac users, after HandBrake mirror download server hacked | #CyberSecurity #Apple

Malware warning for Mac users, after HandBrake mirror download server hacked | #CyberSecurity #Apple | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
A mirror download server for the popular tool HandBrake video file-transcoding app has been compromised by hackers, who replaced its Mac edition with malware.
The first most Mac users will know about the security incident will be when they visit the app’s website, at https://handbrake.fr, and see a link to a “Security Alert”:

 

Anyone who has downloaded HandBrake on Mac between [02/May/2017 14:30 UTC] and [06/May/2017 11:00 UTC] needs to verify the SHA1 / 256 sum of the file before running it.

Anyone who has installed HandBrake for Mac needs to verify their system is not infected with a Trojan. You have 50/50 chance if you’ve downloaded HandBrake during this period.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=HandBrake

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
A mirror download server for the popular tool HandBrake video file-transcoding app has been compromised by hackers, who replaced its Mac edition with malware.
The first most Mac users will know about the security incident will be when they visit the app’s website, at https://handbrake.fr, and see a link to a “Security Alert”:

 

Anyone who has downloaded HandBrake on Mac between [02/May/2017 14:30 UTC] and [06/May/2017 11:00 UTC] needs to verify the SHA1 / 256 sum of the file before running it.

Anyone who has installed HandBrake for Mac needs to verify their system is not infected with a Trojan. You have 50/50 chance if you’ve downloaded HandBrake during this period.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=HandBrake

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Dok: OSX malware uses stolen certs and reads HTTPS traffic | #Apple #CyberSecurity #Awareness

Dok: OSX malware uses stolen certs and reads HTTPS traffic | #Apple #CyberSecurity #Awareness | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Mac users beware as researchers have found yet another reason to rattle the false sense of security some may have concerning Macs and viruses.  


Checkpoint researchers spotted a Mac OSX malware, dubbed OSX/Dok that has been signed with an Apple signature and reads HTTPS traffic, Check Point lead researcher Ofer Caspi said in a 27 April blog post.


It is unclear how the Apple signature got into the hands of the malware's developers and that the signature is the reason why the malware has been able to bypass some native Apple protections and malware could allow an attacker to intercept a victim's web communications and worse.


The malware primarily targets European users, mainly in Germany and in Austria, and could allow an attacker to redirect victims to a remote proxy server controlled by its operator, where the attacker could steal banking credentials, hijack online accounts and leak sensitive information.


The malware was spread via phishing campaigns and at the time the malware was detected and analysed, it was still floating under the radar of Apple and by other third party security products leading researchers said.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Dok

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

 

Gust MEES's insight:
Mac users beware as researchers have found yet another reason to rattle the false sense of security some may have concerning Macs and viruses.  


Checkpoint researchers spotted a Mac OSX malware, dubbed OSX/Dok that has been signed with an Apple signature and reads HTTPS traffic, Check Point lead researcher Ofer Caspi said in a 27 April blog post.


It is unclear how the Apple signature got into the hands of the malware's developers and that the signature is the reason why the malware has been able to bypass some native Apple protections and malware could allow an attacker to intercept a victim's web communications and worse.


The malware primarily targets European users, mainly in Germany and in Austria, and could allow an attacker to redirect victims to a remote proxy server controlled by its operator, where the attacker could steal banking credentials, hijack online accounts and leak sensitive information.


The malware was spread via phishing campaigns and at the time the malware was detected and analysed, it was still floating under the radar of Apple and by other third party security products leading researchers said.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Dok

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Malware Uses Apple Developer Certificate to Infect MacOS and Spy on HTTPS Traffic | #Apple #CyberSecurity

Malware Uses Apple Developer Certificate to Infect MacOS and Spy on HTTPS Traffic | #Apple #CyberSecurity | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

A malware research team has discovered a new piece of Mac malware that reportedly affects all versions of MacOS and is signed with a valid developer certificate authenticated by Apple (via The Hacker News).

The malware has been dubbed "DOK" and is being disseminated through an email phishing campaign which researchers at CheckPoint say is specifically targeting macOS users, making it the first of its kind.

The malware works by gaining administration privileges in order to install a new root certificate on the user's system. This enables it to gain access to all communications between the host Mac and the internet, including traffic flowing through connections encrypted with SSL.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:

A malware research team has discovered a new piece of Mac malware that reportedly affects all versions of MacOS and is signed with a valid developer certificate authenticated by Apple (via The Hacker News).

The malware has been dubbed "DOK" and is being disseminated through an email phishing campaign which researchers at CheckPoint say is specifically targeting macOS users, making it the first of its kind.

The malware works by gaining administration privileges in order to install a new root certificate on the user's system. This enables it to gain access to all communications between the host Mac and the internet, including traffic flowing through connections encrypted with SSL.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.