ICT Security + Privacy + Piracy + Data Protection - Censorship - Des cours et infos gratuites sur la"Sécurité PC et Internet" pour usage non-commercial... (FR, EN+DE)...
Apple has released an update to its Safari browser, version 6, that plugs 121 security holes, most of which involve the WebKit rendering engine.
The Safari update fixes a staggering 121 vulnerabilities, 117 of those flaws in WebKit, a browser engine designed to render HTML webpages. Most of the WebKit vulnerabilities could result in an unexpected application termination or arbitrary code execution if the user visits a maliciously created website, according to the security update.
Apple also patched two issues with the handling of feed:// URLs – one is a cross-site scripting vulnerability that could be exploited if a user visited a maliciously crafted site, and the other is an access control issue that could be exploited to send files from a user’s system to a remote server.
Another Safari fix resolves a problem in which passwords may autocomplete even when the site specifies that autocomplete should be disabled.
A new Mac Trojan - dubbed Crisis or Morcut - has been spotted but, luckily, not in the wild.
Security firms Intego and Sophos have picked up samples from Virus Total, which shares the samples submitted to it with AV developers, and the fact that it could be found only there shows that the threat is extremely low risk.
Nevertheless, the malware itself is far from harmless.
It can compromise the last two version of Apple's OS X (10.6 and 10.7) and it doesn't require a password to be entered to do it.
Summary: A second cross-platform Trojan downloader has been discovered that detects if you're running Windows, Mac OS X, or Linux, and then downloads the corresponding malware for your platform.
Summary: Phandroid's AndroidForums.com has been hacked. The database that powers the site was compromised and more than 1 million user account details were stolen.
===> If you use the forum, make sure to change your password asap. <===
A malicious app that slurps mobile users' phonebooks and uploads them to a remote server has been spotted being offered both on Google Play and Apple's App Store.
Criminals have created a botnet of Android phones to send spam messages using Yahoo! mail. The malware problems on Android continue to grow and mimic their Windows cousins.
Researchers say criminals are moving their malware heavy lifting from end user PCs to servers in the cloud. Read this blog post by Elinor Mills on Security & Privacy.
In the past, few viruses have targeted Apple operating systems -- but this is gradually changing. The increased popularity of Apple smart devices has led some cybercriminals to exploit a traditionally ignored audience.
IT admins needs to educate their users about this growing threat and implement a business antivirus solution for Macs as they do for PCs.
Summary: A new Mac OS X Trojan referred to as OSX/Crisis silently infects OS X 10.6 Snow Leopard and OS X 10.7 Lion. It then spies on the user by monitoring Adium, Firefox, Microsoft Messenger, Safari, and Skype.
While the mode of infection is currently unknown, this new threat has uniquenesses over past malware for OS X. Read this blog post by Topher Kessler on MacFixIt.
Der Webbrowser des eBook-Readers führt beim Besuch einer präparierten Webseite beliebige Shell-Befehle mit Root-Rechten aus. Die Jailbreak-Community setzt diese Lücke bereits zur Installation von nicht autorisierter Software ein.
If allowed to run, a malicious Java applet checks the user's operating system and delivers a payload customized for that platform, whether it's Windows, Mac OS X, or Linux.
Apples MacOS X Moutain Lion wird täglich in Kontakt mit den Update-Servern von Apple treten, um nach neuen Sicherheitsupdates zu suchen und diese dann zu installieren. Apple will so die Sicherheit des Betriebssystems weiter verbessern.
Il semble bien que le mythe du Mac infaillible soit en train de tomber. Après l'épisode Flashback (un malware ciblant exclusivement les ...
La maturité pour Apple ?
Lorsque l'on regarde l'ancienne version de la page, le discours passé d'Apple fait sourire. Il était temps que l'entreprise redescende sur terre, et reconnaisse enfin la vulnérabilité de son OS aux menaces des cybercriminels.
L'épisode Flashback y est certainement pour quelque chose. L'entreprise à la pomme a sûrement pris conscience de quelque chose. On espère que cela la poussera à se focaliser davantage sur la sécurité, de même que ses consommateurs (qui se croient encore trop souvent hors d'atteinte).
To get content containing either thought or leadership enter:
To get content containing both thought and leadership enter:
To get content containing the expression thought leadership enter:
You can enter several keywords and you can refine them whenever you want. Our suggestion engine uses more signals but entering a few keywords here will rapidly give you great content to curate.
Your new post is loading...
