Apple Removes Antivirus Knowledge Base Article
03 December 2008 08:00 EST
Chris Barylick
Following up on yesterday's article regarding Apple's inclusion of a support page on its web site recommending that users purchase antivirus software for their Macs, the company on Tuesday removed the page from its web site.
"We have removed the KnowledgeBase article because it was old and inaccurate," said Apple spokesman Bill Evans. "The Mac is designed with built-in technologies that provide protection against malicious software and security threats right out of the box.”
According to Macworld, the web page seemed to work against Apple's recent marketing campaigns, which tend to imply that Windows PCs require antivirus protection far more than the Mac does.
Albeit the page was removed, Apple still provided some element of a warning against viral activity:
“Since no system can be 100% immune from every threat, running anti-virus software may offer additional protection," said Evans.
As always, let us know what you think in the comments or forums.
Digg This |
Post to del.icio.us |
Post to Furl
Category: Security
Buy from: Apple
...............................................................................................
Recent Apple Knowledge Base Article Advocates Use of Anti-Viral Utilities Under Mac OS X
02 December 2008 08:12 EST
Chris Barylick
In a recent update to its Knowledge Base web library, Apple has published that it wanted to "encourage" users to use anti-viral utilities to stay safe online.
The Knowledge Base article, which recommends that users install one or more of three anti-virus products (McAfee VirusScan, Symantec Norton Anti-Virus 11 and Intego VirusBarrier X5), runs counter to years of the company's marketing of its operating systems as essentially impervious to viruses.
Over the years, a handful of viruses have been written that targets Mac's OSX, but most have been demonstration versions only and few have had any significant impact on Apple users.
According to BBC News, one virus, known as AppleScript.THT, could take control of a Mac and grab screenshots or keystrokes.
The new concern may not be viral activity itself but the presence of techniques in which criminals attempt to infiltrate popular webpages in a bid to infect the machine of every visitor while working to steal information such as login names, passwords or other sensitive data.
Let us know what you make of this over in the comments or forums.
Digg This |
Post to del.icio.us |
Post to Furl
Category: Security
Buy from: Apple
...............................................................................................
QuickTime 7.5.5 Update Allows for Secure Digital iTunes Playback via DisplayPort
26 November 2008 10:52 EST
Chris Barylick
Working to salve a controversial situation, Apple on Tuesday night released a new QuickTime 7.5.5 update allowing standard definition iTunes movies to be played over the DisplayPort connections found on late 2008 MacBook, MacBook Pro and MacBook Air notebooks to older displays.
According to AppleInsider, the update is currently only available via Mac OS X's built-in Software update feature to the late 2008 notebooks, addresses a complaint wherein the notebooks would refused to play iTunes Store purchased content on external displays without HDCP support.
This situation includes any display that attaches through the VGA adapter and should also permit similar playback on DVI-equipped displays without HDCP encryption built-in. High definition content isn't immediately affected as TV shows typically aren't required to use the copy protection format.
The revision puts Apple back in line with the typical behavior generally found in other outlets of the movie store and movie disc industry, which often permits less restricted playback for regular DVD or standard television level resolutions but ups the controls and restrictions for HD playback.
If you've gotten the update and tried it out, please let us know what you make of it in the comments or forums.
Digg This |
Post to del.icio.us |
Post to Furl
Category: Security
Buy from: Apple
...............................................................................................
Current Kensington Locks Incompatible with Late 2008 Apple Notebooks
31 October 2008 08:18 EST
Chris Barylick
Ok, I'm not sure if anyone saw this one coming.
According to MacNN, a number of users have complained that the late 2008 MacBook and MacBook Pro notebooks are incompatible with current Kensington locks. Though Apple lists the feature as a "Kensington lock slot", assorted owners have reported that the thickness of the aluminum on the notebooks prevents standard locks from being used.
A response from Kensington's technical support department was claimed to read "we are sorry to inform you that the security slot of your laptop 'late 2008' Aluminum MacBook is not compatible with Kensington locks."
As of now, Kensington has recommended using a K-Slot adapter manufactured by the company, though the process would involve gluing a plastic piece to the notebook, something many users might be hesitant to do.
It is unclear if the issue only applies to certain lock manufacturers. Kensington lists the thickness tolerances for the lock slot depth as 2.5mm to 4mm. Companies could already be working on new locks to fit the design, but detailed information regarding the new lock slot is limited.
If you've seen this issue on your end, please let us know in the comments or forums.
Digg This |
Post to del.icio.us |
Post to Furl
Category: Security
Buy from: Apple
...............................................................................................
Yoggie Bringing "Security Computers" to Mac Market
13 October 2008 01:58 EST
Chris Barylick
Ok, this could be interesting.
According to Engadget, accessory maker Yoggie has broughts its "security computers" to the Mac market.
The devices, which function as Linux-based computers in their own right, arrive as the company's Gatekeeper ExpressCard and Gatekeeper Pico USB stick. The devices include a number of applications that promise to both increase security and take some of the load off of your notebook or desktop.
The units are available for preorder for US$150 and US$119 for the Gatekeeper ExpressCard and Gatekeeper Pico USB, respectively (a 20% discount compared to their usual price and their PC counterparts).
If you've heard anything from your end or tested out security computers of this kind before, let us know over in the comments or forums.
Digg This |
Post to del.icio.us |
Post to Furl
Category: Security
Buy from: Apple
...............................................................................................
Phishing E-Mails Target MobileMe Subscribers
12 August 2008 11:25 EST
Chris Barylick
E-mail scams are just a part of life on the Internet, but this is where it gets annoying.
According to Macworld, an e-mail purporting to be from Apple alerting users to a billing problem has been targeted at MobileMe subscribers.
The e-mail itself looks like an official Apple e-mail regarding MobileMe which states the following:
We were unable to process your most recent payment. Did you recently change your bank, phone number or credit card?”
Users are then invited to click on a link to enter that information, this link opening a web page that does not appear to be affiliated in any way with Apple or its MobileMe service.
A check of the link information reveals that it is registered to a personal Gmail account originating in Bacau, Romania. It is unknown at this time if this is the person who sent the e-mail.
In phishing scams, users send false, official-looking e-mail messages that attempt to entice recipients into revealing private information such as passwords, social security numbers, or financial information.
If you've seen this scam on your end, let us know over in the comments or forums.
Digg This |
Post to del.icio.us |
Post to Furl
Category: Security
Buy from: Apple
...............................................................................................
Learning From a Mistake: Avoiding Break-ins and Guarding Your Mobile Equipment
05 August 2008 01:43 EST
Chris Barylick
I'm not sure how to file this, as I just went through a few hours of talking with the police, my apartment building and my insurance providers and now have an 11 AM appointment to replace a shattered window in the morning.
Still, it's my mistake and if I'm going to try to learn something from it, I may as well put it out there for public consideration.
A couple hours ago, I wandered out to my car to go run some errands. I approached it from the unbroken side and everything looked normal. When I got in, I looked at the passenger seat and took it all in. Someone had smashed the window, sifted through some items and gone through the glove compartment, taking registration information and manuals in the process.
Then I took a gander at the back seat, only to realize that my laptop bag containing my MacBook (the same one I accidentally spilled half a delicious beverage into and paid $800+ to have Apple repair back in April), my computer tools, an external hard drive carrier and the drive itself were now missing.
So, three hours of making calls, making claims and getting claim numbers later, I can offer the following nuggets of wisdom in a bullet-listed format:
Thankfully, no one was hurt, this is part of a spree and there's more of a demand to catch whoever did this and all this stuff can be replaced.
If anyone's looking for me, they'll find me involved in a Rocky-esque series of training montage events with a crazed ex-Green Beret as a means of training to avenge the theft as well as my father's mysterious death oh so many years ago.
As always, let us know what's up in the comments or forums.
Digg This |
Post to del.icio.us |
Post to Furl
Category: Security
Buy from: Apple
...............................................................................................
Apple Releases Security Update 2008-005
01 August 2008 07:17 EST
Chris Barylick
Early Friday, Apple released Security Update 2008-005, its most recent security update collection for the Mac OS X 10.4 and Mac OS X 10.5 operating systems.
The update, which varies in download size depending on version required, can be downloaded and installed through Mac OS X's built-in Software Update feature and offers the following fixes and changes:
CVE-ID: CVE-2008-2830
Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.4, Mac OS X Server v10.5.4
Impact: A local user may execute commands with elevated privileges
Description: A design issue exists in the Open Scripting Architecture libraries when determining whether to load scripting addition plugins into applications running with elevated privileges. Sending scripting addition commands to a privileged application may allow the execution of arbitrary code with those privileges. This update addresses the issue by not loading scripting addition plugins into applications running with system privileges. The recently reported ARDAgent and SecurityAgent issues are addressed by this update. Credit to Charles Srstka for reporting this issue.
CVE-ID: CVE-2008-1447
Available for: Mac OS X v10.4.11, Mac OS X Server v10.4.11, Mac OS X v10.5.4, Mac OS X Server v10.5.4
Impact: BIND is susceptible to DNS cache poisoning and may return forged information
Description: The Berkeley Internet Name Domain (BIND) server is distributed with Mac OS X, and is not enabled by default. When enabled, the BIND server provides translation between host names and IP addresses. A weakness in the DNS protocol may allow remote attackers to perform DNS cache poisoning attacks. As a result, systems that rely on the BIND server for DNS may receive forged information. This update addresses the issue by implementing source port randomization to improve resilience against cache poisoning attacks. For Mac OS X v10.4.11 systems, BIND is updated to version 9.3.5-P1. For Mac OS X v10.5.4 systems, BIND is updated to version 9.4.2-P1. Credit to Dan Kaminsky of IOActive for reporting this issue.
Click the jump for the full story...
Digg This |
Post to del.icio.us |
Post to Furl
Category: Security
Buy from: Apple
...............................................................................................
Security Researcher Warns of Unpatched iPhone Bugs
24 July 2008 08:17 EST
Chris Barylick
Per a report issued by browser vulnerability researcher Aviv Raff, security vulnerabilities in the iPhone's Safari web browser and e-mail application can by used by phishers to trick users into visiting malicious web sites or expose them to a flood of junk mail.
According to Macworld UK, the researcher reported three separate bugs to Apple about two weeks ago; two in the Mail program and one in the Safari browser.
Apple has apparently acknowledged that the two vulnerabilities in Mail are security issues, though the company seems undecided as to whether the Safari flaw meets its security bug criteria, according to Raff. At times, Apple has balked at labeling problems as security vulnerabilities, notably in May when it initially said the so-called "carpet bomb" bug was not security related. A month later, Apple did patch Safari to stymie the kind of attacks that Raff, and other researchers, had outlined.
"By creating a specially-crafted URL, and sending it via an email [message], an attacker can convince the user that the spoofed URL, showed in the Mail application, is from a trusted domain, such as a bank, PayPal or social networks," Raff said in a post to his blog Wednesday afternoon. "When clicking on the URL, the Safari browser will be opened [and] the spoofed URL, showed in the address bar, will still be viewed by the victim as if it is of a trusted domain."
Click the jump for the full story...
Digg This |
Post to del.icio.us |
Post to Furl
Category: Security
Buy from: Apple
...............................................................................................
SecureMac, Intego Cite New Mac OS X Trojan Horse in the Wild
20 June 2008 08:28 EST
Chris Barylick
Recently, security firms SecureMac and Intego separately reported the existence of a new Trojan horse in the wild for Mac OS X. The Trojan, which affects Mac OS X 10.4 and Mac OS X 10.5, is reported to exist in multiple variants and is being distributed from a hacker web site with distribution being aided through iChat and Limewire.
According to Macworld UK, The Trojan horse runs hidden on the system, and allows a malicious user complete remote access to the system, can reportedly transmit system and user passwords, and can avoid detection by opening ports in the firewall and turning off system logging.
The Trojan also reportedly uses a file called "AppleScript.THT" which can log keystrokes, take pictures with a Mac's built-in iSight camera, take screenshots and turn on file sharing. The application also exploits a recently discovered vulnerability with the Apple Remote Desktop Agent, which allows it to run as root.
For users looking to avoid the Trojan, the program has been distributed both as a compiled AppleScript called "ASthtv05" (60 kilobytes in size) or as an application bundle called "ASthtv05" (3.1 megabytes in size). The user must download and open the Trojan horse in order to become infected. Once the Trojan horse is activated, it will move itself into the /Library/Caches/ folder, and add itself to the System Login Items.
SecureMac and Intego have both issued and updated their virus definitions to their software, MacScan 2.5.2 and Intego VirusBarrier X5, respectively.
If you've seen the Trojan on your end or heard anything about it, please let us know over in the comments or forums.
Digg This |
Post to del.icio.us |
Post to Furl
Category: Security
Buy from: Apple
...............................................................................................
Researchers Discover Buffer Overflow Vulnerability in QuickTime 7.3.1
11 January 2008 02:15 EST
Chris Barylick
The good news: QuickTime is an effective media unit for the Mac OS X and Windows operating systems that handles a wide variety of formats and makes playback quick and easy.
The bad news: Sometimes they find a security hole in it that makes you wonder why you bought a computer in the first place.
According to MacNN, Italian researcher Luigi Auriemma has stated that the has discovered a buffer overflow problem in QuickTime 7.3.1 allowing malicious code to be executed. The problem apparently surfaces when QuickTime attempts to launch a Real Time Streaming Protocol link and port 554 is closed. The software will then attempt to access port 80 and trigger an error message that causes the buffer overflow.
Apparently both the Windows and Mac OS X version of QuickTime are affected and the existence of the bug has been confirmed by Alfred Huger, vice president of development at Symantec Security Response. Huger, who observed the proof-of-concept code for the bug, stated that he only managed to crash Quicktime, but, "it's a safe assumption that if you can do that you may be able to execute remote code," he says. "It's very serious."
Click the jump for the full story...
Digg This |
Post to del.icio.us |
Post to Furl
Category: Security
Buy from: Apple
...............................................................................................
Copyright © 1995-2008 Bolt, LLC. All rights reserved.