Home » Archive

Articles in the Security Category

Mac, Security »

[26 Jan 2015 | No Comment | 249 views]

ClamXav 2.7.1 shipped last week and was quickly superseded by v2.7.2. Now, Mark Allen et al are back with ClamXav 2.7.3, which ties up a number of loss ends and issues. So, if you’re the “set it and forget it” …

Mac, Security, Software »

[26 Jan 2015 | No Comment | 427 views]

Blah, blah, blah… Adobe Flash Player security is a black hole of malware malaise and hacker attack vectors… blah, blah, blah. Last week’s well publicized Flash Player 16.0.0.287 has already been superseded by Flash Player 16.0.0.296, which (as of this …

Mac, Security »

[26 Jan 2015 | No Comment | 454 views]

Live by the sword, die by the sword. Google Project Zero is all about identifying, reporting and then publicizing zero day exploits. Their most recent target is Apple’s OS X desktop operating system, though the vulnerabilities and exploits posted aren’t …

Mac, Security »

[22 Jan 2015 | No Comment | 591 views]

Yesterday, we noticed that the Mac App Store version of ClamXav hadn’t been updated since July of last year. Obviously, that didn’t seem right, so we posted a question on the ClamXav support forums, asking for clarification.
And, happily, we got …

Mac, Security, Software »

[21 Jan 2015 | 3 Comments | 815 views]

A workaday update for ClamXav, including an updated engine, scheduler fix and fixes for a number of Sentry-specific issues. However, the Mac App Store version of ClamXav hasn’t been updated since July 2014.
• ClamXav 2.7.1 (download)
— Updates engine to …

Mac, Security »

[23 Dec 2014 | No Comment | 995 views]

Surely, this is just a coincidence? Perhaps, but never call me Shirley. On the heels of yesterday’s first-ever silent Mac security update from Apple comes ClamXav 2.7. This significant point update includes the latest ClamAV engine, as well as a …

Mac, Security »

[23 Dec 2014 | No Comment | 814 views]

Mac security, we used to take you for granted! Last Friday, December 19, the US government issued an alert about a security problem uncovered in a Carnegie Mellon University bulletin. And, well, here is the result — Apple has delivered …

Mac, Reviews, how to, Security »

[5 Nov 2014 | No Comment | 895 views]

According to Emil Kvarnhammar with Swedish security firm Truesec, Rootpipe is a privilege escalation vulnerability. So, without user cooperation or without knowing the user’s password, an attacker can take over an unprotected Mac using Rootpipe.
“It all started when I was …

Mac, Security »

[23 Oct 2014 | No Comment | 291 views]

While all of the major browser vendors have patched the Poodle SSL 3 vulnerability, the said same major browser vendors all agree that SSL 3 should no longer be used. Apple is doing its part, telling its developer partners that …

Mac, Security »

[18 Oct 2014 | No Comment | 704 views]

Poodle, would a rat dog, often really big ones, by any other name be less psychotic? The world’s Secure Socket Layer (SSL) problems* just won’t stay fixed and Mac security is affected. Apple has issued a Poodle patch for OS …

Mac, Security »

[15 Oct 2014 | No Comment | 620 views]

Golly gosh gee whiz, people, if you haven’t updated Flash Player 15, Office 11 and/or Java 7 in awhile, you really should get busy with the updates, because Mac security issues need some patch love and there’s plenty go ’round.
And, …

Mac, Security »

[5 Oct 2014 | No Comment | 297 views]

iWorm, which isn’t a worm at all but a plain jane trojan, has been generating some rather absurd headlines and coverage. And, would you believe that only 17,000 or so actual Macs have been infected?
Sample iWorm Headlines
— Hackers Have Found …

Mac, Reviews, how to, Security »

[4 Oct 2014 | 3 Comments | 1,215 views]

First things first… iWorm is not a worm at all, but actually your plain old, garden variety Trojan. This is important because, whereas worms are self-replicating and can infect innocent bystanders, a Trojan requires that the victim voluntarily install the …

Mac, Security »

[30 Sep 2014 | No Comment | 619 views]

Gonna bash update the Shellshock Mac security issue right out of my Mac. Although Apple announced last week that very, very few Macs (ie those running with server functions turned on) were susceptible to the Shellshock security flaw.
Regardless, as promised, …

Mac, Security »

[18 Sep 2014 | No Comment | 439 views]

Tick tock. When it comes to Mac security, time is always against us because the hackers are invariably a step ahead. Though Apple hasn’t yet posted the details, best install Security Update 2014-004 for OS X Lion and OS X …