Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security...
11.5K views | +0 today
Follow
Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security...
Everything related to the (in)security of Apple products
Curated by Gust MEES
Your new post is loading...
Your new post is loading...
Scooped by Gust MEES
Scoop.it!

Apple releases Java update with 12 security fixes

Apple releases Java update with 12 security fixes | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple has shipped a Java update for Mac operating systems with 12 security fixes, including one that plugs a hole exploited by a recent variant of the Flashback malware.

 

                                ===> UPDATE!!! <===

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple updates Java after malware spreads

Apple updates Java after malware spreads | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Enterprise users of Java for the Mac OS X should ensure their machines are updated with the latest security patch from Apple, released Tuesday.

 

The update, for both Lion (10.7.3) and Snow Leopard (10.6.8) versions of the platform, closes a dozen holes in Java 1.6.0_29, "the most serious of which may allow an untrusted Java applet to execute arbitrary code outside the Java sandbox," according to Apple.

 

That presumably refers to CVE-2012-0507, which researchers at F-Secure said Monday was being used to spread the latest variant of the password-stealing Flashback trojan.

 

===> Computers can be infected simply by users visiting a malicious web page, a scenario known as a drive-by download. <===

 

                                      ===> UPDATE!!! <===

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac Trojan infects machines via unpatched Java bug

Mac Trojan infects machines via unpatched Java bug | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

Unfortunately, Mac users haven't received a patch for that particular vulnerability since Apple hasn't yet ported it to Java for Macs. In addition to all that, there are rumors that an exploit for another unpatched Java flaw is being offered for sale on online forums.

 

===> The researchers advise Mac users to disable their Java client for the time being in order to avoid infection. <===

more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

Mac backdoor Trojan embedded inside boobytrapped Word documents

Mac backdoor Trojan embedded inside boobytrapped Word documents | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
A backdoor Trojan horse, which would allow a remote hacker to access your Mac computer without your knowledge and potentially snoop on your files and activity, has been discovered hidden inside a b...
more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

OSX/Lamadai.A: The Mac Payload on Malware Targeting Tibetan NGOs

OSX/Lamadai.A: The Mac Payload on Malware Targeting Tibetan NGOs | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
This analysis is focused on the OS X payload of a reported attack against Tibetan NGOs and the network protocol used to communicate with the C&C server.
more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

New Mac OS X malware variant spotted in the wild | ZDNet

New Mac OS X malware variant spotted in the wild | ZDNet | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Security researchers from Sophos, have intercepted a currently circulating Mac OS X malware variant of the OSX/Imuler trojan horse.

 

Upon execution the malware will delete the original infection file and only leave an image file of Irina Shayk. It will also open a backdoor on the infected host, transferring private information from the infected host to a remote Web server.

 

===> End and corporate users are advised to turn on “Show all filename extensions” option in Finder in order to differentiate between different file types and avoid interacting with malicious applications. <===

more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

New Mac OS X malware variant spotted in the wild

New Mac OS X malware variant spotted in the wild | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Security researchers from Intego, have intercepted a new variant of the Imuler trojan horse targeting Mac OS X users.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Flashback Mac OS X malware exploiting (old) Java security holes | ZDNet

Flashback Mac OS X malware exploiting (old) Java security holes | ZDNet | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
If a Mac OS X user visits a web page, and their Java is not up to date, the malware infection will occur without their intervention.

 

===> UPDATE asap! <===

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mise à jour Java pour OS X Lion et Snow Leopard

Mise à jour Java pour OS X Lion et Snow Leopard | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

Une révision Java pour OS X Lion est disponible [1.0/2012-001 - 64 Mo Mo - OS X 10.7] ainsi que pour Snow Leopard [1.0 - Update 7 - 76 Mo - OS X 10.6]. Elle apporte des correctifs de sécurité et d'autres participant à sa stabilité.

 

===> Cette mise à jour comble tout particulièrement une importante faille exploitée par un malware qui pouvait être récupéré depuis un site web et capable ensuite d'exécuter avec les droits d'administrateur un applet Java contenant un code nuisible... <===

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Java update for OS X patches Flashback malware exploit

Java update for OS X patches Flashback malware exploit | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

Apple responds to Flashback malware development with a Java update in less than a week. 

 

Following the recent Flashback malware developments for OS X where unpatched vulnerabilities in the latest Java runtime for OS X were being exploited, Apple has issued an update that brings Java up-to-date and patches these vulnerabilities.


The patch is available via Software Update for systems that have Java installed, but can also be downloaded from the following Apple support Web pages. The update is available only for OS X 10.6 and 10.7, since Apple has stopped supporting prior versions of OS X.

 

                                    ===> UPDATE!!! <===

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

New Trojan variant can install without password | Macworld

New Trojan variant can install without password | Macworld | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
A new variant of the Flashback Trojan that appeared last year can install itself on a Mac without need for an administrator's password.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

MacControl Trojan Being Used in Targeted Attacks Against OS X Users

MacControl Trojan Being Used in Targeted Attacks Against OS X Users | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
MacControl Trojan malware is being used in targeted APT attacks against Mac users. Researchers at Alienvault have found that the malicious program is targeting Tibetan officials and is being run from China.

 

 

 

===> Welcome to the age of targeted attacks, Mac users!!! <===

 

Perhaps having grown tired of owning Windows machines around the world for the last few years, attackers in China now have taken up the challenge of ===> going after Macs with the same kind of targeted attack tactics that have served them so well in the Windows world. <===

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

More Mac Malware (Word Exploit) Targeting NGOs

More Mac Malware (Word Exploit) Targeting NGOs | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
F-Secure Security Labs brings you the latest online security news from around the world. Ensure that you are up-to-date with the latest online threats to guarantee your online wellbeing.
more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

Topless supermodel photos used to spread Mac malware

Topless supermodel photos used to spread Mac malware | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
The Mac Imuler Trojan uses images of FHM supermodel Irina Shayk to do its dirty work.

 

Somehow I doubt that Mac users are any smarter than their Windows cousins when it comes to resisting temptation.

 

We're all human, after all. And there is a (probably significant) proportion of the population which isn't adverse to searching the web for nude pictures of supermodels.

 

Of course, the bad guys who spread malware know about human weakness all too well - and exploit it regularly to trick computer users into clicking on files and installing malicious code that exposes them to risks.

 

===> By default, Mac OS X doesn't display file extensions. Which means, that Mac users might be duped into believing that the file they are about to click on is a JPG image, rather than an application. <===

 

 

more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

New OS X malware variant attacks unpatched Macs | ZDNet

New OS X malware variant attacks unpatched Macs | ZDNet | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

A new malware variant sets out to punish those who haven’t been keeping up to date with updates.

 

Patching OS X is so simple, but yet there are people who still put it off. A new malware variant sets out to punish those who haven’t been keeping up to date with updates.

 

The new variant is a Trojan horse called ‘Flashback.G’ and is makes use of two exploits found on older versions of the Java runtime. Users with macs running OS X 10.6 ‘Snow Leopard’ are particularly at risk since this version came with Java preinstalled while 10.7 ‘Lion’ did not.

 

According to security firm Intego, this malware uses three tricks to try to get itself installed onto a system: read more...

more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

Sécurité : Les Mac davantage ciblés par les attaques en 2011

Sécurité : Les Mac davantage ciblés par les attaques en 2011 | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Sécurité : Les Mac davantage ciblés par les attaques en 2011 - Sécurité - D'après un document mis en ligne par F-Secure Labs, en 2011,...
more...
No comment yet.