Apple, Mac, iOS4,...
Follow
Find
7.0K views | +0 today
Apple, Mac, iOS4, iPad, iPhone and (in)security...
Everything related to the (in)security of Apple products
Curated by Gust MEES
Your new post is loading...
Scooped by Gust MEES
Scoop.it!

Apple releases Java update with 12 security fixes

Apple releases Java update with 12 security fixes | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple has shipped a Java update for Mac operating systems with 12 security fixes, including one that plugs a hole exploited by a recent variant of the Flashback malware.

 

                                ===> UPDATE!!! <===

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mise à jour Java pour OS X Lion et Snow Leopard

Mise à jour Java pour OS X Lion et Snow Leopard | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Une révision Java pour OS X Lion est disponible [1.0/2012-001 - 64 Mo Mo - OS X 10.7] ainsi que pour Snow Leopard [1.0 - Update 7 - 76 Mo - OS X 10.6]. Elle apporte des correctifs de sécurité et d'autres participant à sa stabilité.

 

===> Cette mise à jour comble tout particulièrement une importante faille exploitée par un malware qui pouvait être récupéré depuis un site web et capable ensuite d'exécuter avec les droits d'administrateur un applet Java contenant un code nuisible... <===

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple updates Java after malware spreads

Apple updates Java after malware spreads | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Enterprise users of Java for the Mac OS X should ensure their machines are updated with the latest security patch from Apple, released Tuesday.

 

The update, for both Lion (10.7.3) and Snow Leopard (10.6.8) versions of the platform, closes a dozen holes in Java 1.6.0_29, "the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox," according to Apple.

 

That presumably refers to CVE-2012-0507, which researchers at F-Secure said Monday was being used to spread the latest variant of the password-stealing Flashback trojan.

 

===> Computers can be infected simply by users visiting a malicious web page, a scenario known as a drive-by download. <===

 

                                      ===> UPDATE!!! <===

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac Trojan infects machines via unpatched Java bug

Mac Trojan infects machines via unpatched Java bug | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Unfortunately, Mac users haven't received a patch for that particular vulnerability since Apple hasn't yet ported it to Java for Macs. In addition to all that, there are rumors that an exploit for another unpatched Java flaw is being offered for sale on online forums.

 

===> The researchers advise Mac users to disable their Java client for the time being in order to avoid infection. <===

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac Flashback Exploiting Unpatched Java Vulnerability

Mac Flashback Exploiting Unpatched Java Vulnerability | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

A new Flashback variant (Mac malware) has been spotted exploiting CVE-2012-0507 (a Java vulnerability). We've been anticipating something like this for a while now.

 

Oracle released an update that patched this vulnerability back in February… for Windows.

 

===> But — Apple hasn't released the update for OS X (yet). <===

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

OS X : exploitation d'une vieille faille Word

OS X : exploitation d'une vieille faille Word | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Dissimulé dans un document Word, un malware tente d'exploiter une vieille faille pour infecter OS X.
more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

Opera for Mac OS X patches 6 security holes

Opera for Mac OS X patches 6 security holes | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
The Opera Web browser for Mac OS X has been recently updated to version 11.62, with the latest update patching six security holes.
more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

Mac backdoor Trojan embedded inside boobytrapped Word documents

Mac backdoor Trojan embedded inside boobytrapped Word documents | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
A backdoor Trojan horse, which would allow a remote hacker to access your Mac computer without your knowledge and potentially snoop on your files and activity, has been discovered hidden inside a b...
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

MacControl Trojan Being Used in Targeted Attacks Against OS X Users

MacControl Trojan Being Used in Targeted Attacks Against OS X Users | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
MacControl Trojan malware is being used in targeted APT attacks against Mac users. Researchers at Alienvault have found that the malicious program is targeting Tibetan officials and is being run from China.

 

 

 

===> Welcome to the age of targeted attacks, Mac users!!! <===

 

Perhaps having grown tired of owning Windows machines around the world for the last few years, attackers in China now have taken up the challenge of ===> going after Macs with the same kind of targeted attack tactics that have served them so well in the Windows world. <===

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Des malwares tentent d’exploiter une ancienne vulnérabilité d’Office sur Mac OS X

Des malwares tentent d’exploiter une ancienne vulnérabilité d’Office sur Mac OS X | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Bien qu’une faille dans Office Mac ait été identifiée et corrigée par Microsoft depuis 2009, des logiciels malveillants cherchent à s’attaquer par son intermédiaire aux systèmes Mac OS X qui n’ont pas été mis à jour.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

More Mac Malware (Word Exploit) Targeting NGOs

More Mac Malware (Word Exploit) Targeting NGOs | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
F-Secure Security Labs brings you the latest online security news from around the world. Ensure that you are up-to-date with the latest online threats to guarantee your online wellbeing.
more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

Sécurité IT : mon Safari pour du phishing

Sécurité IT : mon Safari pour du phishing | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Une faille de sécurité grouille dans les arcanes de Safari. Elle permet à un site Internet d’afficher dans la barre d’adresse une fausse URL. Major Security en appelle à la vigilance face au phishing.

 

Or, un tel mutisme n’a d’égal que le risque grandissant que courent les utilisateurs de Safari, plus exposés encore au phishing.

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Are you having a (Mac) Flashback?

Are you having a (Mac) Flashback? | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

On Monday, I provided steps on how to avoid your Mac being compromised by the Flashback trojan. Today I will provide information on how to locate a Flashback infection.

 

To better understand the steps below, it is better to also know a bit about Flashback. It's an OS X malware family that modifies the content displayed by web browsers. To achieve this, it interposes functions used by the Mac's browsers.

 

The hijacked functions vary between variants but generally include CFReadStreamRead and CFWriteStreamWrite: read more...

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Bogus Apple gift card offer leads to phishing

Bogus Apple gift card offer leads to phishing | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

An email purportedly sent by Apple and offering to long term customers the possibility of buying a gift card worth a 100 Australian dollars for the price of 9 has been targeting Australian Apple devotees, warns Hoax-Slayer.

 

Dear Apple Customer, Apple is rewarding its long-term customers," states the email, then continues:

 

Your loyalty for our products made you eligible for buying an Apple Discount Card. With this only 9 AU$ Discount Card you will have 100 AU$ credit at any Australian Apple Store or on [Link]

To acquire your Apple Discount Card please click here [Link]

 

Read more...

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

MacPlus : Mac OS X : mise à jour de Java

MacPlus : Mac OS X : mise à jour de Java | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

On évoquait hier le retour du cheval de Troie Flashback, dont la dernière variante infecte les Mac par l'intermédiaire d'une faille Java - une faille corrigée depuis un moment par Oracle, mais qu'Apple tarde à mettre à disposition des des utilisateurs. Cupertino a t-il pris le pouls de la menace ?

 

===> Il est en tout cas assez singulier de voir justement tomber une mise à jour de Java pour Mac OS X, numérotée 1.6.0_31 ! <===

 

===> Apple ne fait pas mention de ce fameux ver, mais indique que cette version apporte des améliorations de compatibilité, sécurité et fiabilité. La mise à jour, à récupérer via le mécanisme traditionnel des préférences système, pèse 66 Mo. <===

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Java update for OS X patches Flashback malware exploit

Java update for OS X patches Flashback malware exploit | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Apple responds to Flashback malware development with a Java update in less than a week. 

 

Following the recent Flashback malware developments for OS X where unpatched vulnerabilities in the latest Java runtime for OS X were being exploited, Apple has issued an update that brings Java up-to-date and patches these vulnerabilities.


The patch is available via Software Update for systems that have Java installed, but can also be downloaded from the following Apple support Web pages. The update is available only for OS X 10.6 and 10.7, since Apple has stopped supporting prior versions of OS X.

 

                                    ===> UPDATE!!! <===

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

New Trojan variant can install without password | Macworld

New Trojan variant can install without password | Macworld | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
A new variant of the Flashback Trojan that appeared last year can install itself on a Mac without need for an administrator's password.
more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

Les antivirus pour Mac, pour quoi faire ?

Les antivirus pour Mac, pour quoi faire ? | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Alors que pendant longtemps, la majeure partie des spécialistes n’imaginait pas que les virus en tous genres puissent arriver sur Mac, cela est désormais une réalité.

 

Les PC ne sont plus l’unique cible des pirates informatiques et des hackers.

 

Face au nombre croissant d’attaques qui subsiste sur internet, il est très important de se munir d’un antivirus pour Mac comme d’un antivirus pour PC. Concernant le système d’exploitation créé par Steve Jobs, il est visé par les cybercriminels car il y a de plus en plus de possesseurs de Mac, ce qui affute leur volonté de perturber de nouveaux utilisateurs.

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Neue Trojaner infiltrieren Macs mit alten Tricks

Neue Trojaner infiltrieren Macs mit alten Tricks | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Derzeit befinden sich mehrere Trojaner im Umlauf, die gezielt Macs infiltrieren und dafür auf Mechanismen setzen, die seit Jahren auch in Windows-Systemen genutzt werden.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Targeted Pro-Tibetan malware attacks hit Mac OS X users

Targeted Pro-Tibetan malware attacks hit Mac OS X users | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

According to a newly published data, Mac OS X users are just as susceptible to targeted attacks, as Windows users are!!!

 

                        ===> Nobody is perfect!!! <===

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Surveillance spyware migrates from Windows to Mac OS X

Surveillance spyware migrates from Windows to Mac OS X | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
An espionage campaign targeting pro-Tibetan groups is employing malware that can seize control of employees' Macs and secretly siphon away confidential data.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac Users Now Also Susceptible to Targeted Attacks

Mac Users Now Also Susceptible to Targeted Attacks | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Mac users are now prime targets as an APT attempts to execute on a Mac OS.

 

This development in targeted attacks just shows that the groups behind campaigns such as this one are taking into consideration changes in the computing landscape, such as the increase in the number of Mac users.

 

===> This adjustment to affect Macs also shows that they are refining their scope, and are really customizing their tools to suit their targets. <===


In this light, and knowing that the MAC OSX arena has seen in its fair share of threats increasing, it is advisable to be aware that MAC OSX can also be targeted, and ===> seen as a new playing field for these groups behind targeted attacks and APTs to further their agenda. <===

 

More on this as we are continuously investigating this. Stay tuned.

more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

OSX/Lamadai.A: The Mac Payload on Malware Targeting Tibetan NGOs

OSX/Lamadai.A: The Mac Payload on Malware Targeting Tibetan NGOs | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
This analysis is focused on the OS X payload of a reported attack against Tibetan NGOs and the network protocol used to communicate with the C&C server.
more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

Detecting and removing the Flashback malware in OS X

Detecting and removing the Flashback malware in OS X | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
The Flashback Trojan's latest iterations have evolved to infect Macs in different ways, but there are methods to detect and remove them. Read this blog post by Topher Kessler on MacFixIt.
more...
No comment yet.
Rescooped by Gust MEES from 21st Century Learning and Teaching
Scoop.it!

Cracks appear in face of Apple's iOS security

Cracks appear in face of Apple's iOS security | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple’s iOS mobile platform, like its desktop-and-notebook sibling Mac OS X, has garnered a reputation for strong security.

 

===> But as new holes in iOS's security crop up, this reputation may be exposed to less-than-friendly fire. <===

 

GM: NOBODY is perfect!

more...
No comment yet.