New Mac malware masquerades as iTerm2, Remote Desktop and other apps

Credit to Author: Thomas Reed| Date: Tue, 21 Sep 2021 11:21:20 +0000

Beware Mac malware passing itself off as the popular power-user tool iTerm2, as well as Microsoft Remote Desktop, SecureCRT, and Navicat Premium.

Categories: Malwarebytes news

Tags:

(Read more…)

The post New Mac malware masquerades as iTerm2, Remote Desktop and other apps appeared first on Malwarebytes Labs.

Read more

Apple hits the alarm with multi-OS emergency update to patch zero-click flaw

Credit to Author: Gregg Keizer| Date: Tue, 14 Sep 2021 13:53:00 -0700

Apple on Monday issued emergency security updates for iOS, macOS and its other operating systems to plug a hole that Canadian researchers claimed had been planted on a Saudi political activist’s device by NSO Group, an Israeli seller of spyware and surveillance software to governments and their security agencies.

Updates to patch the under-active-exploit vulnerability were released for iOS 14; macOS 11 and 10, aka Big Sur and Catalina, respectively; iPad OS 14; and watchOS 7.

According to Apple, the vulnerability can be exploited by “processing a maliciously crafted PDF,” which “may lead to arbitrary code execution.” The phrase “arbitrary code execution” is Apple’s way of saying that the bug was of the most serious nature; Apple does not rank threat level of vulnerabilities, unlike operating system rivals such as Microsoft and Google.

To read this article in full, please click here

Read more

Macs turn on apps signed by Symantec, treat them as malware

Credit to Author: Thomas Reed| Date: Wed, 01 Sep 2021 14:35:42 +0000

Apple has called time on dodgy Symantec certificates, causing software like Citrix’s ReceiverHelper to be identified as malware.

Categories: Malwarebytes news

Tags:

(Read more…)

The post Macs turn on apps signed by Symantec, treat them as malware appeared first on Malwarebytes Labs.

Read more

Apple: It's time to bolster supply chain security

Credit to Author: Jonny Evans| Date: Thu, 26 Aug 2021 08:23:00 -0700

Supply chains are vulnerable to cyberattack and for the good of your business, it’s time to move to secure them as best you can, according to Apple and the White House.

Apple to secure the tech supply chain

That’s one item of news to emerge following a high-level cybersecurity meeting between US President Joseph Biden and big tech firms, including Apple, IBM, Microsoft, Google, Amazon, and others. Most of the companies who attended the meeting have since announced plans to beef-up security resilience and awareness, with a focus on training and security awareness.

To read this article in full, please click here

Read more

How to use iCloud Keychain to audit your passwords

Credit to Author: Jonny Evans| Date: Mon, 16 Aug 2021 08:57:00 -0700

Reports of a massive 100 million account data leak at T-Mobile should encourage any Apple user to double-check password and account security. Here’s how to do that using Keychain.

iCloud Keychain to the rescue

Apple’s built-in password manager is called iCloud Keychain. It securely stores your saved account information such as account names and passwords across all your signed-in devices. It will automatically enter this information for you when you access an app or service.

To read this article in full, please click here

Read more

Apple’s botched CSAM plan shows need for digital rights

Credit to Author: Jonny Evans| Date: Fri, 13 Aug 2021 08:49:00 -0700

Read more

Apple says it won’t expand controversial CSAM technology

Credit to Author: Jonny Evans| Date: Mon, 09 Aug 2021 09:36:00 -0700

Read more