Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security...
12.0K views | +4 today
Follow
Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security...
Everything related to the (in)security of Apple products
Curated by Gust MEES
Your new post is loading...
Your new post is loading...
Scooped by Gust MEES
Scoop.it!

Watch out for these high-pressure Apple malware scams | #CyberSecurity #Awareness #FSCD

Watch out for these high-pressure Apple malware scams | #CyberSecurity #Awareness #FSCD | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
We noticed a lull in recent months in emails and web pages that SHOUT THAT YOUR MAC IS INFECTED and then offer free advice on what to do next – “free” advice that you should urgently buy a product to remove a threat that doesn’t exist, that is.

But, then it happened.

Like the proverbial buses that keep you waiting for ages and then three come along at once…

…we visited an innocent-sounding website yesterday, only to be bombarded with three different Apple-focused scams in quick succession.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
We noticed a lull in recent months in emails and web pages that SHOUT THAT YOUR MAC IS INFECTED and then offer free advice on what to do next – “free” advice that you should urgently buy a product to remove a threat that doesn’t exist, that is.

But, then it happened.

Like the proverbial buses that keep you waiting for ages and then three come along at once…

…we visited an innocent-sounding website yesterday, only to be bombarded with three different Apple-focused scams in quick succession.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Les mises à jour de sécurité du système d’amorçage des Mac sont défaillantes | #Apple #CyberSecurity

Les mises à jour de sécurité du système d’amorçage des Mac sont défaillantes | #Apple #CyberSecurity | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Dans de nombreux cas, le système EFI des Mac reste vulnérable même si l’on télécharge toutes les mises à jour proposées par Apple. Les utilisateurs concernés peuvent donc être la cible d’attaques Thunderstrike, particulièrement néfastes.

Vous avez un Mac totalement patché et vous vous sentez en sécurité ? Voici une étude qui risque de vous faire déchanter. Les chercheurs en sécurité Rich Smith et Pepjin Bruienne de la société Duo ont analysé le niveau de sécurité du système d’amorçage EFI de 73.324 ordinateurs Mac et – surprise – celui-ci est loin d’être toujours à la hauteur des espérances.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=EFI

 

Gust MEES's insight:
Dans de nombreux cas, le système EFI des Mac reste vulnérable même si l’on télécharge toutes les mises à jour proposées par Apple. Les utilisateurs concernés peuvent donc être la cible d’attaques Thunderstrike, particulièrement néfastes.

Vous avez un Mac totalement patché et vous vous sentez en sécurité ? Voici une étude qui risque de vous faire déchanter. Les chercheurs en sécurité Rich Smith et Pepjin Bruienne de la société Duo ont analysé le niveau de sécurité du système d’amorçage EFI de 73.324 ordinateurs Mac et – surprise – celui-ci est loin d’être toujours à la hauteur des espérances.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=EFI

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

New study finds small percentage of Macs are running insecure firmware | #Apple #CyberSecurity #Updates 

New study finds small percentage of Macs are running insecure firmware | #Apple #CyberSecurity #Updates  | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
If you own a Mac and haven't upgraded to the new High Sierra OS, your system could be vulnerable to threats like Thunderstrike, a malware attack that enters through your computer's Thunderbolt port.

Researchers from Duo Security published a white paper today explaining the potential issues, which was first noticed by 9to5Mac. The firm analyzed 73,324 Mac computers and found that, on average, 4.2 percent of them weren't running the proper firmware, leaving the systems vulnerable to cyber attacks. Luckily for consumers, the vulnerabilities aren't thought to be as risky for home users according to a Duo blog post summarizing the paper — but you should still be sure you're running the right firmware. 

Although Apple has released security updates to protect against Thunderstrike attacks, the researchers found that, for some reason, the critical updates weren't always applied.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
If you own a Mac and haven't upgraded to the new High Sierra OS, your system could be vulnerable to threats like Thunderstrike, a malware attack that enters through your computer's Thunderbolt port.

Researchers from Duo Security published a white paper today explaining the potential issues, which was first noticed by 9to5Mac. The firm analyzed 73,324 Mac computers and found that, on average, 4.2 percent of them weren't running the proper firmware, leaving the systems vulnerable to cyber attacks. Luckily for consumers, the vulnerabilities aren't thought to be as risky for home users according to a Duo blog post summarizing the paper — but you should still be sure you're running the right firmware. 

Although Apple has released security updates to protect against Thunderstrike attacks, the researchers found that, for some reason, the critical updates weren't always applied.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

MacOS High Sierra: MacOS-Keychain kann per App ausgelesen werden | #Apple #CyberSecurity #NobodyIsPerfect 

MacOS High Sierra: MacOS-Keychain kann per App ausgelesen werden | #Apple #CyberSecurity #NobodyIsPerfect  | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
MacOS-Keychain kann per App ausgelesen werden
Der Sicherheitsforscher Patrick Wardle hat demonstriert, dass Apples Keychain unter MacOS mit einer App komplett ausgelesen werden kann. Diese muss aber zunächst an Apples Gatekeeper vorbei.


Der Hacker Patrick Wardle hat nach eigenen Angaben eine Sicherheitslücke in der aktuellen Version von Apples Desktop-Betriebssystem High Sierra gefunden, die es bösartigen Applikationen ermöglicht, Passwörter aus Apples Keychain auszulesen. Normalerweise müssen Nutzer einzelne Passwörter durch Eingabe eines Master-Passworts freigeben.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=MacOS

 

Gust MEES's insight:
MacOS-Keychain kann per App ausgelesen werden
Der Sicherheitsforscher Patrick Wardle hat demonstriert, dass Apples Keychain unter MacOS mit einer App komplett ausgelesen werden kann. Diese muss aber zunächst an Apples Gatekeeper vorbei.


Der Hacker Patrick Wardle hat nach eigenen Angaben eine Sicherheitslücke in der aktuellen Version von Apples Desktop-Betriebssystem High Sierra gefunden, die es bösartigen Applikationen ermöglicht, Passwörter aus Apples Keychain auszulesen. Normalerweise müssen Nutzer einzelne Passwörter durch Eingabe eines Master-Passworts freigeben.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=MacOS

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

High Sierra Reportedly Has a Password Problem | #Apple #CyberSecurity #macOS #NobodyIsPerfect 

High Sierra Reportedly Has a Password Problem | #Apple #CyberSecurity #macOS #NobodyIsPerfect  | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple’s latest macOS, High Sierra, rolls out today with plenty of nice security upgrades, including invasive ad tracker blocking in Safari and weekly firmware validation. But the new OS apparently comes with a security problem, too—a security researcher at Synack has already discovered a way to snatch passwords from High Sierra.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
Apple’s latest macOS, High Sierra, rolls out today with plenty of nice security upgrades, including invasive ad tracker blocking in Safari and weekly firmware validation. But the new OS apparently comes with a security problem, too—a security researcher at Synack has already discovered a way to snatch passwords from High Sierra.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Turning Off Wifi, Bluetooth in iOS 11 Not as Easy as It Seems | #Apple #Privacy 

Turning Off Wifi, Bluetooth in iOS 11 Not as Easy as It Seems | #Apple #Privacy  | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

If you're an iPhone user who's downloaded iOS 11, you'll want to pay attention to this recent Tweet from F-Secure's head of hardware security Andrea Barisani.

 

iOS 11 comes with a new Control Center that opens when you swipe up from the bottom of the screen. But ironically, the app seems to be lacking some control. When you tap the Bluetooth and Wifi icons, while the phone disconnects from any current Bluetooth or Wifi connections, it doesn’t turn off those features completely.

 

That means new Bluetooth or Wifi connections can still be made. In order to make sure those features are off completely, you’ll need to go into the separate Settings app and turn them off there.

From a security and privacy perspective, it’s important to understand this distinction because turning off Bluetooth and Wifi when you’re not using them prevents your device from broadcasting information about itself.

 

Learn more / En savoir plus / Mehr erfahren: 

 

https://gustmees.wordpress.com/2013/12/21/privacy-in-the-digital-world-shouldnt-we-talk-about-it/

 

https://gustmees.wordpress.com/?s=privacy

 

 

Gust MEES's insight:

If you're an iPhone user who's downloaded iOS 11, you'll want to pay attention to this recent Tweet from F-Secure's head of hardware security Andrea Barisani.

 

iOS 11 comes with a new Control Center that opens when you swipe up from the bottom of the screen. But ironically, the app seems to be lacking some control. When you tap the Bluetooth and Wifi icons, while the phone disconnects from any current Bluetooth or Wifi connections, it doesn’t turn off those features completely.

 

That means new Bluetooth or Wifi connections can still be made. In order to make sure those features are off completely, you’ll need to go into the separate Settings app and turn them off there.

From a security and privacy perspective, it’s important to understand this distinction because turning off Bluetooth and Wifi when you’re not using them prevents your device from broadcasting information about itself.

 

Learn more / En savoir plus / Mehr erfahren: 

 

https://gustmees.wordpress.com/2013/12/21/privacy-in-the-digital-world-shouldnt-we-talk-about-it/

 

https://gustmees.wordpress.com/?s=privacy

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Creepy spyware has infected Macs for years, and we're only just realizing it now | #Apple #CyberSecurity

Creepy spyware has infected Macs for years, and we're only just realizing it now | #Apple #CyberSecurity | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
A researcher discovered malware dubbed Fruitfly that he thinks was designed for "probably perverse reasons."

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Fruitfly

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
A researcher discovered malware dubbed Fruitfly that he thinks was designed for "probably perverse reasons."

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Fruitfly

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Fruit Fly 2: Mysteriöse Mac-Malware seit Jahren aktiv | #Apple #CyberSecurity

Fruit Fly 2: Mysteriöse Mac-Malware seit Jahren aktiv | #Apple #CyberSecurity | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Auch Mac-Nutzer sind nicht vor Schadsoftware sicher: Eine Malware soll seit mehr als fünf Jahren aktiv sein, aber nur einige hundert Nutzer befallen haben. Die Software ermöglicht einen weitgehenden Zugriff auf den Rechner und private Informationen.
Mehrere hundert Mac-Nutzer in den USA und Kanda sind offenbar mit einer bislang unbekannten Malware infiziert worden. Diese soll bereits seit mehr als fünf Jahren aktiv sein, wie Motherboard berichtet.

 

Die Malware sammelt nach Angaben des Sicherheitsforscher Patrick Wardle Informationen wie Tastatureingaben und sendet diese an verschiedene Command-und-Control-Server. Über den Infektionsweg ist bislang nichts bekannt. Details zur Malware will Wardle auf den Sicherheitskonferenzen Black Hat und Defcon bekanntgeben.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Fruitfly

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
Auch Mac-Nutzer sind nicht vor Schadsoftware sicher: Eine Malware soll seit mehr als fünf Jahren aktiv sein, aber nur einige hundert Nutzer befallen haben. Die Software ermöglicht einen weitgehenden Zugriff auf den Rechner und private Informationen.
Mehrere hundert Mac-Nutzer in den USA und Kanda sind offenbar mit einer bislang unbekannten Malware infiziert worden. Diese soll bereits seit mehr als fünf Jahren aktiv sein, wie Motherboard berichtet.

 

Die Malware sammelt nach Angaben des Sicherheitsforscher Patrick Wardle Informationen wie Tastatureingaben und sendet diese an verschiedene Command-und-Control-Server. Über den Infektionsweg ist bislang nichts bekannt. Details zur Malware will Wardle auf den Sicherheitskonferenzen Black Hat und Defcon bekanntgeben.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Fruitfly

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac users face increased ransomware threats | #Apple #CyberSecurity #NobodyIsPerfect #Awareness

Mac users face increased ransomware threats | #Apple #CyberSecurity #NobodyIsPerfect #Awareness | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple Inc. has a reputation for building secure devices, but don’t become too complacent because ransomware threats to Mac users are on the rise.

While ransomware attacks against Microsoft Windows-based computers and servers remain far more prevalent, security researchers have detected new Mac threats in recent years and expect to see new threats in the future.

 

Protect your Mac from ransomware
Mac users are clearly not free from the threat of ransomware. While not at epidemic proportions, ransomware attacks against Macs have seen widespread success by breaking into systems that were assumed secure. Fortunately, users today have access to a variety of backup options. You can add an extra layer of protection to your Mac computer by stepping beyond the Apple ecosystem of TimeMachine nearline backups and iCloud synchronization and embracing a third-party cloud backup solution.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=RANSOMWARE

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
Apple Inc. has a reputation for building secure devices, but don’t become too complacent because ransomware threats to Mac users are on the rise.

While ransomware attacks against Microsoft Windows-based computers and servers remain far more prevalent, security researchers have detected new Mac threats in recent years and expect to see new threats in the future.

 

Protect your Mac from ransomware
Mac users are clearly not free from the threat of ransomware. While not at epidemic proportions, ransomware attacks against Macs have seen widespread success by breaking into systems that were assumed secure. Fortunately, users today have access to a variety of backup options. You can add an extra layer of protection to your Mac computer by stepping beyond the Apple ecosystem of TimeMachine nearline backups and iCloud synchronization and embracing a third-party cloud backup solution.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=RANSOMWARE

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Die 7 gefährlichsten Computer-Programme | #CyberSecurity #OS #BSI

Die 7 gefährlichsten Computer-Programme | #CyberSecurity #OS #BSI | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Finger weg von dieser Software: Viele Programme sind ganz schön gefährlich, weil sie drastische Sicherheitslücken aufweisen. Das Bundesamt für Sicherheit in der Informationstechnik warnt jedes Jahr vor aktueller Software mit großen Schwachstellen. Wir zeigen, welche Programme davon betroffen sind.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

http://www.scoop.it/t/securite-pc-et-internet/

 

Gust MEES's insight:
Finger weg von dieser Software: Viele Programme sind ganz schön gefährlich, weil sie drastische Sicherheitslücken aufweisen. Das Bundesamt für Sicherheit in der Informationstechnik warnt jedes Jahr vor aktueller Software mit großen Schwachstellen. Wir zeigen, welche Programme davon betroffen sind.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

http://www.scoop.it/t/securite-pc-et-internet/

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple users advised to update their software now, as new security patches released | #Updates #CyberSecurity

Apple users advised to update their software now, as new security patches released | #Updates #CyberSecurity | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Welcome to the post-WannaCryptor world, where every computer user understands the importance of creating secure backups and applying security patches in a timely fashion.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Updates

 

http://www.scoop.it/t/securite-pc-et-internet/?&tag=Updates

 

Gust MEES's insight:
Welcome to the post-WannaCryptor world, where every computer user understands the importance of creating secure backups and applying security patches in a timely fashion.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Updates

 

http://www.scoop.it/t/securite-pc-et-internet/?&tag=Updates

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Server-Hack: Handbrake-Download war mehrere Tage mit Malware verseucht | #Apple #Mac #CyberSecurity 

Server-Hack: Handbrake-Download war mehrere Tage mit Malware verseucht | #Apple #Mac #CyberSecurity  | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Die Mac-Version 1.0.7 von Handbrake war mehrere Tage am Wochenende mit dem Trojaner Proton infiziert.

 

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=HandBrake

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:

Die Mac-Version 1.0.7 von Handbrake war mehrere Tage am Wochenende mit dem Trojaner Proton infiziert. 

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=HandBrake

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Popular Mac App Developers Issue Urgent Malware Warning | #CyberSecurity #Apple #Awareness #NobodyIsPerfect

Popular Mac App Developers Issue Urgent Malware Warning | #CyberSecurity #Apple #Awareness #NobodyIsPerfect | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

It’s been a rough week in Mac security. First, Checkpoint warned users of a Trojan spreading in Europe that was the first of its kind. And now, one of the most prominent video transcoding apps for Mac has a malware problem.

Popular BitTorrent Client Transmission Gets Infected With Malware Again


For the second time in five months, the Transmission BitTorrent client for Mac has been infected…


The developers of the transcoding software Handbrake have issued a statement that warns one of the mirror sites to download the software has been compromised by hackers. The post explains that anyone who has downloaded the software between May 2nd and 6th of this year has a 50/50 chance of being infected. But, it’s probably a good idea just to double check if you’ve downloaded it anytime recently.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:

It’s been a rough week in Mac security. First, Checkpoint warned users of a Trojan spreading in Europe that was the first of its kind. And now, one of the most prominent video transcoding apps for Mac has a malware problem.

Popular BitTorrent Client Transmission Gets Infected With Malware Again


For the second time in five months, the Transmission BitTorrent client for Mac has been infected…


The developers of the transcoding software Handbrake have issued a statement that warns one of the mirror sites to download the software has been compromised by hackers. The post explains that anyone who has downloaded the software between May 2nd and 6th of this year has a 50/50 chance of being infected. But, it’s probably a good idea just to double check if you’ve downloaded it anytime recently.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Urgent! Update your Mac again, right now… | #CyberSecurity #Apple #NobodyIsPerfect #FSCD

Urgent! Update your Mac again, right now… | #CyberSecurity #Apple #NobodyIsPerfect #FSCD | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
It’s only eight days since Apple’s latest and greatest macOS 10.13 release, better known as High Sierra.

But the first security update has already come out, and we suggest you apply it urgently.

The update is called High Sierra 10.13 Supplemental Update, detailed in the security advistory APPLE-SA-2017-10-05-1.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
It’s only eight days since Apple’s latest and greatest macOS 10.13 release, better known as High Sierra.

But the first security update has already come out, and we suggest you apply it urgently.

The update is called High Sierra 10.13 Supplemental Update, detailed in the security advistory APPLE-SA-2017-10-05-1.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Des failles EFI pour près de 5% des Mac | #Apple #CyberSecurity

Des failles EFI pour près de 5% des Mac | #Apple #CyberSecurity | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

Apple a mal à son EFI. Duo Security a mené une analyse au longs cours concernant l’Extensible Firmware Interface — le programme de démarrage — de 73 000 Mac et surprise, même si des mises à jour de macOS y sont régulièrement appliquées, un certain nombre d’entre eux restent vulnérables à des attaques. La faute à des EFI qui ne sont pas à jour malgré l’application d’une version toute neuve du système d’exploitation.

Dans l’étude, c’est le cas pour 4,2% des machines : 47 des Mac analysés sont susceptibles d’être infectés via la faille Thunderstrike datant de 2014, 31 autres ordinateurs sont vulnérables à la faille Thunderstrike 2 et au “tournevis sonique” mis au point par la CIA (des attaques qui nécessitent toutefois un accès physique aux ordinateurs). Plus inquiétant, 43% des iMac 21,5 pouces lancés fin 2015 se montrent sensibles à ces failles.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:

Apple a mal à son EFI. Duo Security a mené une analyse au longs cours concernant l’Extensible Firmware Interface — le programme de démarrage — de 73 000 Mac et surprise, même si des mises à jour de macOS y sont régulièrement appliquées, un certain nombre d’entre eux restent vulnérables à des attaques. La faute à des EFI qui ne sont pas à jour malgré l’application d’une version toute neuve du système d’exploitation.

Dans l’étude, c’est le cas pour 4,2% des machines : 47 des Mac analysés sont susceptibles d’être infectés via la faille Thunderstrike datant de 2014, 31 autres ordinateurs sont vulnérables à la faille Thunderstrike 2 et au “tournevis sonique” mis au point par la CIA (des attaques qui nécessitent toutefois un accès physique aux ordinateurs). Plus inquiétant, 43% des iMac 21,5 pouces lancés fin 2015 se montrent sensibles à ces failles.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

[Infographic] More Mac malware than ever before | #Apple #CyberSecurity #Awareness

[Infographic] More Mac malware than ever before | #Apple #CyberSecurity #Awareness | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Mac malware is on the rise, shows the analysis of Mac attacks by F-Secure Labs. Most are spyware, but also targeted attacks and ransomware.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
Mac malware is on the rise, shows the analysis of Mac attacks by F-Secure Labs. Most are spyware, but also targeted attacks and ransomware.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple's macOS High Sierra will launch with a major security hole | #Apple #CyberSecurity #NobodyIsPerfect

Apple's macOS High Sierra will launch with a major security hole | #Apple #CyberSecurity #NobodyIsPerfect | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Just hours before Apple is expected to roll out the new version of its desktop and notebook operating system, macOS High Sierra, a security researcher dropped a zero-day.

Patrick Wardle, a former NSA hacker who now serves as chief security researcher at ‎Synack, posted a video of the hack -- a password exfiltration exploit -- in action.

Passwords are stored in the Mac's Keychain, which typically requires a master login password to access the vault.

But Wardle has shown that the vulnerability allows an attacker to grab and steal every password in plain-text using an unsigned app downloaded from the internet, without needing that password.

Wardle tested the exploit on High Sierra, but said that older versions of macOS and OS X are also vulnerable.

He tweeted a short video demonstrating the hack.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=MacOS

 

Gust MEES's insight:
Just hours before Apple is expected to roll out the new version of its desktop and notebook operating system, macOS High Sierra, a security researcher dropped a zero-day.

Patrick Wardle, a former NSA hacker who now serves as chief security researcher at ‎Synack, posted a video of the hack -- a password exfiltration exploit -- in action.

Passwords are stored in the Mac's Keychain, which typically requires a master login password to access the vault.

But Wardle has shown that the vulnerability allows an attacker to grab and steal every password in plain-text using an unsigned app downloaded from the internet, without needing that password.

Wardle tested the exploit on High Sierra, but said that older versions of macOS and OS X are also vulnerable.

He tweeted a short video demonstrating the hack.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=MacOS

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Some Mac users are getting hit with ransomware -- here's what to do | #CyberSecurity #Apple 

Some Mac users are getting hit with ransomware -- here's what to do | #CyberSecurity #Apple  | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Several Mac users are complaining about getting locked out of their computers for a bitcoin ransom.

 

Learn more / En savoir plus / Mehr erfahren:

 

 http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=RANSOMWARE

 

Gust MEES's insight:
Several Mac users are complaining about getting locked out of their computers for a bitcoin ransom.

 

Learn more / En savoir plus / Mehr erfahren:

 

 http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=RANSOMWARE

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac malware is spreading at a frightening rate, claims report | #CyberSecurity #Awareness #NobodyIsPerfect

Mac malware is spreading at a frightening rate, claims report | #CyberSecurity #Awareness #NobodyIsPerfect | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Macs are becoming an increasingly big target for malware authors, and a new report has pointed to a massive increase this year in the likes of viruses aimed at Apple’s machines (which were once regarded as relative safe havens in comparison to Windows PCs).

The findings from Malwarebytes show that as of July 2017, there has been a huge leap of 230% in Mac malware compared to the previous year.

Some categories of malicious software are increasing at an even faster rate than this, namely adware and potentially unwanted programs (PUPs) according to the security firm, although it didn’t clarify any percentage rates in these cases.

Malwarebytes also observed that the Mac App Store is currently awash with a ‘tidal wave’ of scam software.

As Betanews reports, the authors of the study looked to the future, predicting that: “In 2018, Mac malware will increase but PUPs will see the largest growth. These are not very well policed and are free to proliferate unchecked.

“Mac users are already experiencing some of this now, with an explosion of fake anti-virus apps in the Mac App Store. These are not well controlled by Apple and not commonly known of even within the security community.”

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
Macs are becoming an increasingly big target for malware authors, and a new report has pointed to a massive increase this year in the likes of viruses aimed at Apple’s machines (which were once regarded as relative safe havens in comparison to Windows PCs).

The findings from Malwarebytes show that as of July 2017, there has been a huge leap of 230% in Mac malware compared to the previous year.

Some categories of malicious software are increasing at an even faster rate than this, namely adware and potentially unwanted programs (PUPs) according to the security firm, although it didn’t clarify any percentage rates in these cases.

Malwarebytes also observed that the Mac App Store is currently awash with a ‘tidal wave’ of scam software.

As Betanews reports, the authors of the study looked to the future, predicting that: “In 2018, Mac malware will increase but PUPs will see the largest growth. These are not very well policed and are free to proliferate unchecked.

“Mac users are already experiencing some of this now, with an explosion of fake anti-virus apps in the Mac App Store. These are not well controlled by Apple and not commonly known of even within the security community.”

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac-Malware Fruitfly kann Maus und Tastatur bedienen sowie Webcam einschalten | #Apple #CyberSecurity 

Mac-Malware Fruitfly kann Maus und Tastatur bedienen sowie Webcam einschalten | #Apple #CyberSecurity  | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

Fruitfly blieb wahrscheinlich mehrere Jahre unentdeckt. Die neue Variante der Malware erlaubt es Angreifern, aus der Ferne die vollständige Kontrolle zu übernehmen...

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Fruitfly

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:

Fruitfly blieb wahrscheinlich mehrere Jahre unentdeckt. Die neue Variante der Malware erlaubt es Angreifern, aus der Ferne die vollständige Kontrolle zu übernehmen...

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Fruitfly

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple-ID: Polizei warnt vor neuer Phishing-Welle | #Apple #CyberSecurity #Awareness

Apple-ID: Polizei warnt vor neuer Phishing-Welle | #Apple #CyberSecurity #Awareness | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Mit gefälschten E-Mails und Webseiten wollen Kriminelle Zugangsdaten von Apple-Nutzern erschleichen. Die Phishing-Seiten setzen auf "gute Optik" und geben sich durch https-Verschlüsselung einen seriösen Anschein, warnt die Polizei Niedersachsen.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
Mit gefälschten E-Mails und Webseiten wollen Kriminelle Zugangsdaten von Apple-Nutzern erschleichen. Die Phishing-Seiten setzen auf "gute Optik" und geben sich durch https-Verschlüsselung einen seriösen Anschein, warnt die Polizei Niedersachsen.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac users beware! Hackers are selling 'the most sophisticated' Mac malware ever | #MacSpy #CyberSecurity

Mac users beware! Hackers are selling 'the most sophisticated' Mac malware ever | #MacSpy #CyberSecurity | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

Just because you’re using a Mac doesn’t mean you’ve escaped the malware threat.

 

Two new security threats, a malware-as-a-service (MaaS) platform and a ransomware-as-a-service (RaaS) program, are designed to specifically target machines running Apple macOS.

 

Two new security threats, a malware-as-a-service (MaaS) platform and a ransomware-as-a-service (RaaS) program, are designed to specifically target machines running Apple macOS.

The MaaS platform, known as "MacSpy," responds to what its authors feel is an ongoing lack of "sophisticated malware for Mac users". Of course, that perception is not entirely accurate. We've seen numerous sophisticated malware strainsdeveloped for Macs over the past year or so.

 

It's true, however, that MacSpy takes this budding proliferation to the next level by making macOS malware more accessible to users with low levels of technical expertise.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

 

Gust MEES's insight:

Just because you’re using a Mac doesn’t mean you’ve escaped the malware threat.

 

Two new security threats, a malware-as-a-service (MaaS) platform and a ransomware-as-a-service (RaaS) program, are designed to specifically target machines running Apple macOS.

 

Two new security threats, a malware-as-a-service (MaaS) platform and a ransomware-as-a-service (RaaS) program, are designed to specifically target machines running Apple macOS.

The MaaS platform, known as "MacSpy," responds to what its authors feel is an ongoing lack of "sophisticated malware for Mac users". Of course, that perception is not entirely accurate. We've seen numerous sophisticated malware strainsdeveloped for Macs over the past year or so.

 

It's true, however, that MacSpy takes this budding proliferation to the next level by making macOS malware more accessible to users with low levels of technical expertise.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple fixes dozens of security bugs for iPhones, Macs | #CyberSecurity #Updates

Apple fixes dozens of security bugs for iPhones, Macs | #CyberSecurity #Updates | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple has squashed dozens of security bugs in its latest releases of its iPhone, iPad, and Mac operating systems.

The Cupertino, Calif.-based company rolled out 23 security fixes in iOS 10.3.2 and another 30 fixes in macOS 10.12.5, both of which were released on Monday.

Among the bugs, two bugs in iBooks for iOS could allow an attacker to arbitrarily open websites and execute malicious code at the kernel level. Over a dozen flaws were found in WebKit, which renders websites and pages on iPhones and iPads, that could allow several kinds of cross-site scripting (XSS) attacks.

A separate flaw in iBooks for macOS desktops and notebooks could allow an application to escape its secure sandbox, a technology used to prevent data loss or theft in the case of an app compromise.

Almost half of the bugs found were attributed to Google's Project Zero, the search giant's in-house vulnerability-finding and security team.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Updates

 

http://www.scoop.it/t/securite-pc-et-internet/?&tag=Updates

 

 

 

Gust MEES's insight:
Apple has squashed dozens of security bugs in its latest releases of its iPhone, iPad, and Mac operating systems.

The Cupertino, Calif.-based company rolled out 23 security fixes in iOS 10.3.2 and another 30 fixes in macOS 10.12.5, both of which were released on Monday.

Among the bugs, two bugs in iBooks for iOS could allow an attacker to arbitrarily open websites and execute malicious code at the kernel level. Over a dozen flaws were found in WebKit, which renders websites and pages on iPhones and iPads, that could allow several kinds of cross-site scripting (XSS) attacks.

A separate flaw in iBooks for macOS desktops and notebooks could allow an application to escape its secure sandbox, a technology used to prevent data loss or theft in the case of an app compromise.

Almost half of the bugs found were attributed to Google's Project Zero, the search giant's in-house vulnerability-finding and security team.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=Updates

 

http://www.scoop.it/t/securite-pc-et-internet/?&tag=Updates

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

MacOS : un malware en cadeau avec le téléchargement d'Handbrake | #Apple #CyberSecurity 

MacOS : un malware en cadeau avec le téléchargement d'Handbrake | #Apple #CyberSecurity  | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it

Quoi de mieux pour piéger l'utilisateur de se faire passer pour une source légitime ? Des pirates ont ainsi réussi à s'introduire dans les serveurs de l'éditeur d'Handbrake et ont remplacé le logiciel d'encodage vidéo par une version piégée. Du coup, entre le 2 et le 6 mai dernier, si vous avez téléchargé (ou mis à jour) l'application vous avez toutes les chances (une chance sur deux pour être précis) d'avoir obtenu une version corrompue avec un joli malware en cadeau (OSX.PROTON).

 

Afin de vérifier si son Mac est infecté, il suffit d’ouvrir le Moniteur d’activité (localisé dans le dossier 'Utilitaires' d’Applications) et de regarder si le processus 'activity_agent' est en cours d’exécution. Si tel est le cas, cela veut dire que le malware est actif sur la machine.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=HandBrake

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:

Quoi de mieux pour piéger l'utilisateur de se faire passer pour une source légitime ? Des pirates ont ainsi réussi à s'introduire dans les serveurs de l'éditeur d'Handbrake et ont remplacé le logiciel d'encodage vidéo par une version piégée. Du coup, entre le 2 et le 6 mai dernier, si vous avez téléchargé (ou mis à jour) l'application vous avez toutes les chances (une chance sur deux pour être précis) d'avoir obtenu une version corrompue avec un joli malware en cadeau (OSX.PROTON).

 

Afin de vérifier si son Mac est infecté, il suffit d’ouvrir le Moniteur d’activité (localisé dans le dossier 'Utilitaires' d’Applications) et de regarder si le processus 'activity_agent' est en cours d’exécution. Si tel est le cas, cela veut dire que le malware est actif sur la machine.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=HandBrake

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Malware warning for Mac users, after HandBrake mirror download server hacked | #CyberSecurity #Apple

Malware warning for Mac users, after HandBrake mirror download server hacked | #CyberSecurity #Apple | Apple, Mac, MacOS, iOS4, iPad, iPhone and (in)security... | Scoop.it
A mirror download server for the popular tool HandBrake video file-transcoding app has been compromised by hackers, who replaced its Mac edition with malware.
The first most Mac users will know about the security incident will be when they visit the app’s website, at https://handbrake.fr, and see a link to a “Security Alert”:

 

Anyone who has downloaded HandBrake on Mac between [02/May/2017 14:30 UTC] and [06/May/2017 11:00 UTC] needs to verify the SHA1 / 256 sum of the file before running it.

Anyone who has installed HandBrake for Mac needs to verify their system is not infected with a Trojan. You have 50/50 chance if you’ve downloaded HandBrake during this period.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=HandBrake

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

Gust MEES's insight:
A mirror download server for the popular tool HandBrake video file-transcoding app has been compromised by hackers, who replaced its Mac edition with malware.
The first most Mac users will know about the security incident will be when they visit the app’s website, at https://handbrake.fr, and see a link to a “Security Alert”:

 

Anyone who has downloaded HandBrake on Mac between [02/May/2017 14:30 UTC] and [06/May/2017 11:00 UTC] needs to verify the SHA1 / 256 sum of the file before running it.

Anyone who has installed HandBrake for Mac needs to verify their system is not infected with a Trojan. You have 50/50 chance if you’ve downloaded HandBrake during this period.

 

Learn more / En savoir plus / Mehr erfahren:

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security/?&tag=HandBrake

 

http://www.scoop.it/t/apple-mac-ios4-ipad-iphone-and-in-security

 

more...
No comment yet.