Author Topic: Mac attack  (Read 47283 times)

0 Members and 1 Guest are viewing this topic.

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Re: Mac attack
« Reply #25 on: Thursday, 27 July, 2017 @ 14:43:54 »
Quote
New details emerge on Fruitfly, a near-undetectable Mac backdoor

The malware went largely undetected for several years and is only detectable on a handful of security products, but the "fully featured" Mac backdoor can take control of an entire computer.
http://www.zdnet.com/article/new-analysis-fruitfly-mac-malwware-almost-undetectable-backdoor/


Quote
The number of cases of malware targeting Macs is continuing to surge, growing by 53% over just the first quarter of 2017, according to an analysis from security firm McAfee. And throughout 2016, it grew by a massive 744%.

The reason for this huge and continued growth is adware bundling, McAfee says.

In other words, people are installing apps that come bundled with dodgy software ("adware") that sticks ads on their computer. It's invasive, but it's not necessarily as catastrophic as other types of malware — like ransomware, which encrypts your data and forces you to pay a ransom to get it back (though multiple kinds can come bundled together, of course).

The growth in Mac malware, while alarming, is still nothing compared to the amount of malware for Windows that McAfee identified.
http://uk.businessinsider.com/malware-apple-macos-continues-surge-q1-mcafee-2017-6

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Re: Mac attack
« Reply #26 on: Friday, 06 October, 2017 @ 13:05:55 »
Quote
Crazy but true – Apple’s “show hint” button reveals your actual password

It’s only eight days since Apple’s latest and greatest macOS 10.13 release, better known as High Sierra.

But the first security update has already come out, and we suggest you apply it urgently.
https://nakedsecurity.sophos.com/2017/10/05/urgent-update-your-mac-again-right-now/

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Re: Mac attack
« Reply #27 on: Wednesday, 29 November, 2017 @ 10:54:45 »
Quote
Apple rushes to fix major password bug

Apple has said it is working to fix a serious bug within its Mac operating system.

The flaw in MacOS High Sierra - the most recent version - makes it possible to gain entry to the machine without a password, and also have access to powerful administrator rights.

Considering the power it gives, the bug is remarkably simple, described by security experts as a "howler" and "embarrassing".
http://www.bbc.co.uk/news/technology-42161823

User-applied workaround fix in link above, or here.

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Re: Mac attack
« Reply #28 on: Wednesday, 29 November, 2017 @ 20:27:29 »
Quote
Apple apologises and fixes security flaw

Apple has pushed out an update to fix a major security hole in its Mac operating system, admitting it “stumbled” with its latest software.

The flaw, revealed on Tuesday, made it possible to access a Mac without a password, and also have access to powerful administrator rights.

The latest version of MacOS will automatically download the update.

Users running older versions of MacOS will see a notification prompting an upgrade.
http://www.bbc.co.uk/news/technology-42174168

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Re: Mac attack
« Reply #29 on: Thursday, 30 November, 2017 @ 14:07:44 »
Quote
Apple breaks file sharing on Macs while fixing 'huge' password security flaw

The company quickly acknowledged the problem, releasing a support document guiding users through how to fix the problem caused by the critical bug patch. Unfortunately, to perform the necessary repair, users have to use an advanced feature of the operating system called the Terminal and perform command line actions:

            Open the Terminal app, which is in the Utilities folder of your Applications folder.
            Type sudo /usr/libexec/configureLocalKDC and press Return.
            Enter your administrator password and press Return.
            Quit the Terminal app.

Despite the straightforward explanation and commands provided by Apple, many Mac users will not have experience of running commands within Terminal, a program designed to give advanced users direct, text-based access to underlying systems within macOS.
https://www.theguardian.com/technology/2017/nov/30/apple-macos-high-sierra-fix-breaks-file-sharing-password-security-flaw-emergency-patch

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Re: Mac attack
« Reply #30 on: Friday, 05 January, 2018 @ 15:39:19 »
Quote
Meltdown and Spectre: All Macs, iPhones and iPads affected

Apple has said that all iPhones, iPads and Mac computers are affected by two major flaws in computer chips.

It said there was no evidence that either vulnerability had been exploited yet, but advised downloading software only from trusted sources to avoid "malicious" apps.
http://www.bbc.co.uk/news/technology-42575033

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Re: Mac attack
« Reply #31 on: Wednesday, 17 January, 2018 @ 10:52:13 »
Quote
Beware! A new bug can crash iOS and macOS with a single text message
https://www.grahamcluley.com/chaios-bug-crash-ios-macos-messages/

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Re: Mac attack
« Reply #32 on: Saturday, 03 February, 2018 @ 14:21:06 »
Quote
New Mac cryptominer distributed via a MacUpdate hack

Early this morning, security researcher Arnaud Abbati of SentinelOne tweeted about new Mac malware being distributed via MacUpdate. This malware, which Abbati has named OSX.CreativeUpdate, is a new cryptocurrency miner, designed to sit in the background and use your computer’s CPU to mine the Monero currency.  ......


Finally, be aware that the old adage that “Macs don’t get viruses,” which has never been true, is proven to be increasingly false. This is the third piece of Mac malware so far this year, following OSX.MaMi and OSX.CrossRAT. That doesn’t even consider the wide variety of adware and junk software out there. Do not let yourself believe that Macs don’t get infected, as that will make you more vulnerable.
https://blog.malwarebytes.com/threat-analysis/2018/02/new-mac-cryptominer-distributed-via-a-macupdate-hack/

Hat tip to Madeline for that one

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Re: Mac attack
« Reply #33 on: Wednesday, 13 June, 2018 @ 02:13:09 »
Quote
15-year-old Mac security flaw left millions of Apple customers vulnerable to hackers

Apple customers have been warned that they may have been exposed to hackers “hiding in plain sight” on their Mac devices after a 15-year-old vulnerability was discovered by a cyber security researcher.

The exploit could allow a hacker to install malicious software on devices like MacBooks to access personal, financial and sensitive insider information by fooling security products into thinking it is safe.

This would enable hackers to circumvent antivirus protection by pretending to be Apple, using a technique called “code signing” and sit on the device for years without the owner knowing.
https://www.telegraph.co.uk/technology/2018/06/12/macbook-vulnerability-allowed-hackers-pose-apple/


According to the The Register,

Quote
The trick is quite subtle and relies on a number of preconditions – so exploitation would be difficult in practice. Okta has no evidence of the flaw ever being abused, which isn't to say it's a non-issue, only that it's not exactly a gaping hole.


Okta, the people who discovered it, seem to see things a little differently:

Quote
By exploiting this vulnerability, threat actors can trick even the most security-savvy people and bypass a core security function that most end users don’t know or think about as they go about their digital activities. And, with the proliferation of apps for the workplace and personal use in everybody’s daily lives, bad actors can easily abuse this vulnerability.

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Re: Mac attack
« Reply #34 on: Wednesday, 12 September, 2018 @ 15:17:34 »
Quote
No.1 Adware Removal Tool On Apple App Store Caught Spying On Mac Users

A highly popular top-tier app in Apple's Mac App Store that's designed to protect its users from adware and malware threats has been, ironically, found surreptitiously stealing their browsing history without their consent, and sending it to a server in China.

What's more concerning? Even after Apple was warned a month ago, the company did not take any action against the app.

The app in question is "Adware Doctor," the Mac App Store No. 1 paid utility and also ranked as the fourth most popular paid app on the store, which sells for $4.99 and markets itself to be the "best app" to prevent "malware and malicious files from infecting your Mac."
https://thehackernews.com/2018/09/mac-adware-removal-tool.html


Quote
Apple Removes Several Trend Micro Apps For Collecting MacOS Users' Data

Apple has removed almost all popular security apps offered by well-known cyber-security vendor Trend Micro from its official Mac App Store after they were caught stealing users' sensitive data without their consent.

The controversial apps in question include Dr Cleaner, Dr Cleaner Pro, Dr Antivirus, Dr Unarchiver, App Uninstall, Dr. Battery, and Duplicate Finder for Mac computers.

The apps were removed just two days after Apple kicked out another popular "Adware Doctor" application for collecting and sending browser history data from users' Safari, Chrome, and Firefox to a server in China.

The suspicious behavior of Trend Micro apps was initially reported by a user on the Malwarebytes forum in December 2017.
https://thehackernews.com/2018/09/apple-trendmicro-macos-apps.html

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Re: Mac attack
« Reply #35 on: Thursday, 06 December, 2018 @ 17:25:02 »
Quote
It's December 2018, and a rogue application can still tell your Apple Mac: I'm your El Capitan now
iOS, macOS, tvOS, Safari, and anyone for some reason using iTunes on Windows – get patching
https://www.theregister.co.uk/2018/12/06/apple_macos_ios_security_updates/

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Re: Mac attack
« Reply #36 on: Wednesday, 22 September, 2021 @ 16:24:37 »
Quote
New macOS zero-day bug lets attackers run commands remotely

Security researchers disclosed today a new vulnerability in Apple's macOS Finder, which makes it possible for attackers to run arbitrary commands on Macs running any macOS version up to the latest release, Big Sur.

Zero-days are publicly disclosed flaws that haven't been patched by the vendor which, in some cases, are also actively exploited by attackers or have publicly available proof-of-concept exploits.
https://www.bleepingcomputer.com/news/apple/new-macos-zero-day-bug-lets-attackers-run-commands-remotely/

Offline Maik

  • Administrator
  • Forum Deity
  • *****
  • Posts: 35167
Re: Mac attack
« Reply #37 on: Saturday, 12 February, 2022 @ 13:10:53 »
Quote
Apple zero-day drama for Macs, iPhones and iPads – patch now!

What to do?

*    Update to Monterey 12.2.1: If you have a Mac that is running the latest macOS version, this is for you. See Apple bulletin HT213092.
*    Update to iOS 15.3.1 or iPadOS 15.3.1: If you have a recent iPhone or iPad on the latest version, this is what you need. See Apple bulletin HT213093.
*    Update to Safari 15.3*: For users of the previous two macOS versions, Catalina and Big Sur, the patch comes as a Safari-only update, and doesn’t change your operating system build number. See Apple bulletin HT213091.
https://nakedsecurity.sophos.com/2022/02/11/apple-zero-day-drama-for-macs-iphones-and-ipads-patch-now/