Wikileaks publishes two more Mac-specific exploits from CIA Vault 7 files

Posted by:
Date: Friday, July 28th, 2017, 05:49
Category: Hacks, News, security, Software

If you’re interested in security, you’ll like this.

Wikileaks has just Wikileaks published two more Mac exploits from the so-called CIA Vault 7 under the name Project Imperial. The new exploits—Achilles and SeaPea—affect older versions of OS X, such as Mac OS X 10.6 Snow Leopard and Mac OS X 10.7 Lion.

The exploits behave as follows:

(more…)

iTunes 12.6 out the door, now includes “rent once, watch anywhere” feature

Posted by:
Date: Wednesday, March 22nd, 2017, 05:14
Category: iOS, iTunes, News, Software, TvOS

This could come in handy.

Apple on Tuesday released iTunes 12.6, complete with a new “rent once, watch anywhere” movie rental and playback feature.

The new addition, according to Apple, allows you to rent a movie on one device and watch it on another device.

Previously, it was possible to rent from iPhone, for example, then be restricted to that device to finish playback.

(more…)

WikiLeaks releases 8,700+ CIA-related documents, show agency efforts towards hacking Android systems, iPhones, operating systems and smart TVs

Posted by:
Date: Wednesday, March 8th, 2017, 05:43
Category: Android, Google, Hack, Hardware, iOS, iPhone, macOS, News, privacy, Samsung, security

This is pretty much one for the ages.

WikiLeaks has released more than 8,700 documents that have apparently originated from the CIA’s Center for Cyber Intelligence, with some of the leaks saying the agency had 24 “weaponized” and previously undisclosed exploits for the Android operating system as of 2016.

Some of the Android-specific exploits were developed by the CIA, while others hailed from the U.S. National Security Agency, U.K. intelligence agency GCHQ, and cyber arms dealers.

Among the smartphone-related tools developed by the CIA were assets that allow the agency to bypass encryption found in WhatsApp, Confide and other applications known to use encryption. These tools, according to WikiLeaks analysis, capture audio and message traffic before encryption has a chance to be applied.

(more…)

1Password for Mac updated to 6.6.1, includes improved Touch Bar support, new subscription model

Posted by:
Date: Tuesday, February 28th, 2017, 05:28
Category: MacBook Pro, News, security, Software, Touch Bar

It’s a nifty program and it just got a little bit better.

1Password for Mac has just been updated to version 6.1.1. The new version includes enhanced Touch Bar support for the MacBook Pro as well as a new payment model that centers around subscriptions.

The software, which generally listed around $65, is being priced towards a more affordable number and now features free trials via the Mac App Store.

(more…)

Apple patches “Fruitfly” malware, which relied on pre-OS X system calls

Posted by:
Date: Thursday, January 19th, 2017, 05:30
Category: Developer, News, security, Software

Apple appears to have nixed the “Fruitfly” malware strain.

The malware, which has been patched over, relied on antiquated code predating OS X. Although older, the Fruitfly malware had been used in real-world attacks on biomedical research groups according to security software maker Malwarebytes.

Fruitfly operated by communicating with two command-and-control servers, and can perform actions like typing, webcam and screen captures, and moving and clicking a mouse cursor, Malwarebytes said in a blog post on Wednesday. It also maps other devices on a network and tries to connect to them.

(more…)

Some newer MacBook Pro units arriving with System Integrity Protection feature disabled

Posted by:
Date: Friday, November 18th, 2016, 05:06
Category: MacBook Pro, macOS, News, OS X, security, Software

macbook_pro_sip_off

This is kind of strange.

Since the days of OS X El Capitan, Apple has activated a protection feature called System Integrity Protection, which is designed to keep your Mac safe from malware by restricting the permissions of the root user account and preventing unauthorized access to protected files and folders.

The program runs behind the scenes and is generally enabled by default in Mac running OS X El Capitan. Developer Jonathan Wight noticed that the System Integrity Protection feature has been disabled on newer Macs, prompting developer Steven Troughton-Smith to do an informal Twitter survey asking users about the status of their new machines.

(more…)

Touch Bar-equipped 2016 MacBook Pro notebooks do away with classic startup chime sound

Posted by:
Date: Tuesday, November 1st, 2016, 05:04
Category: MacBook Pro, News, Software, Touch Bar

stop-mac-boot-chime

The Apple startup chime you know and love has gone the way of the dodo with the new Touch Bar-equipped MacBook Pro.

Pingie noticed that the new notebook’s NVRAM reset instructions lacked a reference to the startup chime. They later said they were able to confirm the change after getting their hands on a new MacBook Pro.

It’s thought that the classic chime sound – or lack of it – is part of the MacBook Pro’s new startup feature. The notebook is designed to turn on as soon as you open the laptop cover, or when it’s connected to an external power source while the lid is open.

(more…)

Komplex trojan surfaces for macOS, thought to exploit vulnerability in MacKeeper antivirus software

Posted by:
Date: Tuesday, September 27th, 2016, 14:52
Category: Hack, News, security, Software

trojanhorse

Yet another chunk of malware for OS X/macOS to worry about.

Security researchers at Palo Alto Networks have identified a new trojan known as “Komplex”, which can download, execute, and delete files from an infected Mac. Interestingly, the Trojan will also save a PDF document to the infected system concerning the Russian space program.

The PDF document details planned Russian space projects from 2016 to 2025, but also acts as a decoy.

(more…)

Apple releases iTunes 12.5.1 update

Posted by:
Date: Tuesday, September 13th, 2016, 12:09
Category: iOS, iTunes, News, Software

itunes122logo

Apple released iTunes 12.5.1 today and you’ll need it if you want to use iTunes to install iOS 10 on your devices through your computer.

The new version of iTunes, a 268 megabyte download, contains the following fixes and new features:

– Now with an all-new Apple Music design, which brings greater clarity and simplicity to every aspect of the experience.

(more…)

Apple releases Security Update 2016-001 for OS X Yosemite, El Capitan users

Posted by:
Date: Friday, September 2nd, 2016, 05:55
Category: News, security, Software

blog_basic-computer-security-tips_132796727-806x393

Because security updates are a good thing.

On Thursday, Apple released Security Update 2016-001 for users of OS X 10.10 Yosemite and OS X 10.11 El Capitan. The fix covers assorted zero-day exploits that could allow full access to a device and updates Safari to version 9.3.5 to patch security holes in the browser as well.

The exploits require the user to open a URL from an SMS message, which then executes remote binary files in the OS that dig into the kernel and allow unauthorized software to be installed—in iOS this effectively jailbreaks your device behind your back.

(more…)