O'Grady's PowerPage

Tag: El Capitan

  • Apple releases Security Update 2018-04 for El Capitan, Sierra operating systems

    It’s a fairly large update, but it helps.

    On Thursday, Apple released Security Update 2018-04 for its El Capitan and Sierra operating systems. The update, a 786 megabyte download via the App Store’s “Update” tab, addresses the following issues:

    AMD
    Available for: macOS High Sierra 10.13.5
    Impact: A malicious application may be able to determine kernel memory layout
    Description: An information disclosure issue was addressed by removing the vulnerable code.
    CVE-2018-4289: shrek_wzw of Qihoo 360 Nirvan Team

    APFS
    Available for: macOS High Sierra 10.13.5
    Impact: An application may be able to execute arbitrary code with kernel privileges
    Description: A memory corruption issue was addressed with improved memory handling.
    CVE-2018-4268: Mac working with Trend Micro’s Zero Day Initiative

    (more…)

  • Security researchers look into “Calisto” malware two years after it surfaces for the Mac

    Roughly two years after their circulation, security researchers have discovered infections of macOS malware named “Calisto”. The malware was seemingly developed in 2016 and may have been a precursor to the “Proton” macOS trojan that started to circulate in 2017.

    Calisto functions as a trojan that takes the form of an unsigned DMG for Intego’s Mac Internet Security X9, an antivirus and security suite. Kaspersky’s Secure List notes it is similar to the official release, so it is likely meant to try and fool users wanting to install the software and acquiring it by other means than directly from Intego itself.

    After asking users to accept an agreement, Calisto asks for the user’s login and password via a convincing authentication box. After the credentials are entered, the software shows an installation error message advising to redownload the official software. By doing this, the malware acquires the user’s login details, which it can then use to perform other actions.

    (more…)

  • Review: Cardhop, Contact management jedi for macOS

    Apple’s Contacts app (formerly Address Book) hasn’t changed much over the years. It’s pretty much a loose database of friends and family, offer the required functionality to support a centralized locations for email addresses, contacts, and phone numbers. But it feels like Apple was forced to make it, against its will.

    Luckily, Flexibits’ Cardhop picks up where Contacts leaves off. Cardhop organizes your contacts via an easy menu in the macOS menu bar, then adds quick actions to message, email, place a call. Other neat features include quick access to groups of contacts (for sending a group email) and the ability to send Facebook messages without having to switch over to a web browser.

    (more…)

  • Apple releases Security Update 2018-001 Sierra and Security Update 2018-001 El Capitan, works to help prevent fallout from Meltdown and Spectre bugs in previous operating systems

    If you’re running either macOS 10.11 El Capitan or macOS 10.12 Sierra, you’re going to want to snag the current security update now.

    On Tuesday, Apple released Security Update 2018-001 Sierra and Security Update 2018-001 El Capitan, which addressed assorted security concerns as well as helped mitigate potential risks from the Meltdown and Spectre issues..

    (more…)

  • Apple releases Safari 11.0.2 for macOS El Capitan 10.11, macOS Sierra 11.2, looks to address Spectre issue with update

    As sick as everyone is of hearing about Spectre and Meltdown, Apple has just released an updated version of Safari that could help with the Spectre vulnerability.

    On Monday, the company released Safari 11.0.2, the new version of its web browser.

    The update, a 75.6 megabyte download, includes security improvements to mitigate the effects of the Spectre issue, which has become a prevalent concern in the security community and affects several years worth of computers and devices.

    (more…)