Posted by Maxim Weinstein
Fri, 28 Mar 2008 14:09:00 GMT
According to the Mac Observer, a MacBook Air was compromised via what sounds like a drive-by download style attack in a hacking competition:
On the first day of the event, contestants unsuccessfully attempted to remotely hack into the Mac, a Windows PC, and a Linux PC. On the second day, however, Mr. Miller was able to gain control over the MacBook Air in only two minutes by directing a contest organizer to visit a specially crafted Web site with the laptop.
Although the exploit code is not “in the wild” as the security industry likes to say, this still sends the message that the Mac is not immune to such attacks, even if Windows is the more commonly-exploited platform.
Posted in all | Tags apple, mac, malware, stopbadware, windows
Posted by Maxim Weinstein
Mon, 24 Mar 2008 20:32:00 GMT
Bloggers have recently reported that the current version of the Apple Software Update tool for Windows, which is bundled with some of Apple’s current products, such as QuickTime and iTunes, offers the user “updates” for applications (e.g., the Safari web browser) that are not currently installed on the machine. Choosing to install the offered updates, all of which are selected by default, reportedly results in the additional applications being downloaded and installed. This differs from many automatic update applications, which offer only to update software that is already installed on the user’s machine.
Gizmodo reported the practice on Friday:
If you pop open Apple software Update in Windows, you’ll see a fresh item in there today: Safari 3.1. Even if you don’t already have it installed. This is the first time they’ve used Software Update to push Safari on Windows users that didn’t already have it. What’s up with the new, more aggressive thrust?
John Lilly, CEO of the Mozilla Foundation, which oversees the development of open source web browser Firefox, also reported and commented on the behavior:
What Apple is doing now with their Apple Software Update on Windows is wrong. It undermines the trust relationship great companies have with their customers, and that’s bad — not just for Apple, but for the security of the whole Web. What they did yesterday was to use their updater for iTunes to also install their Safari Web browser…
StopBadware.org has not at this time evaluated the products in question. As we are committed to consistently and fairly applying our badware guidelines, we have added the current Windows versions of Apple Software Update tool, QuickTime player, and iTunes to our testing queue. When we have completed our evaluation, we will post our findings.
Posted in all | Tags apple, itunes, stopbadware
Posted by Laureli Mallek
Wed, 05 Mar 2008 15:58:00 GMT
Apple traditionally has not been a target of hackers, yet that may be changing. Two articles this week note that increased popularity and some specific security holes in programs pose potential weaknesses.
Jeremy Kirk, at PC World, explains that increased popularity of the operating system correlates to increase likelihood for attacks. Apple has been actively releasing security updates and several companies have developed products for OS X security.
PayPal has recently requested that users transition away from Safari. The program does not provide adequate phishing protection. Michael Barrett a Senior Researcher at Paypal, and a StopBadware board member, had this to say: “Our recommendation at this point, to our customers, is use Internet Explorer 7 or 8 when it comes out, or Firefox 2 or Firefox 3, or indeed Opera.”
Just goes to show that vigilance (and downloading security updates) is important for all operating systems available.
Tags apple, mac, stopbadware
Posted by Erica George
Wed, 16 Jan 2008 18:45:00 GMT
According to security vendor F-Secure, MacSweeper is a new player to avoid in the rogue security software game, and is likely the first fraudulent anti-spyware product targeted to Mac users.
Rogue security software coerces users into downloading supposedly beneficial software that instead is either malicious or simply ineffective. This type of software uses scare tactics, such as pop-up alerts that claim spyware has been detected on a user’s machine, and usually offers a free system scan. The scan reports finding numerous problems and offers a way to fix them – if only the user will download or buy the full version of the software. Depending on the specific piece of rogue software, that full download might itself carry badware, or it might just be a wasted expense.
The emergence of rogue anti-spyware targeting Mac users could ironically be evidence of a positive trend – an increasing demand from Mac owners for security products. Regardless of your choice of operating system, it’s important to stay up to date on computer security issues that might affect your machine. One of the key ways to protect yourself is by using legitimate, frequently updated anti-virus and anti-spyware programs.
But how can you tell if a security product is safe? First,
don’t let yourself be easily fooled by scare tactics or other forms of social engineering. Many rogue software pop-up ads are designed to look like official alerts from operating systems, so verify the source of a message before agreeing to a download. Look for telltale signs like misspelled words and poor grammar that you wouldn’t expect from a legitimate application, or hyperbole and sensationalist statements about what may be wrong with your computer.
Luckily, you’re not on your own in trying to tell if an application is a fraud or the real deal – you can also check the software’s reputation. Search the internet for mentions of the software you’re considering downloading, and keep your eyes out for complaints. Try searching for the name of the software along with terms like “rogue,” “malware,” “fraud” and “scam.” Find sources of recommendations you trust, and see what others are saying about the products those trusted sources recommend. Before pulling out your credit card, make sure you’ve researched the software and the vendor who makes it.
Posted in all | Tags apple, fraud, mac, rogueantispyware, socialengineering
Posted by Erica George
Mon, 05 Nov 2007 18:44:00 GMT
At StopBadware, we often talk with regular internet users, from the novice to the sophisticated, about internet security and precautions users can take. One comment we hear again and again is the belief that some operating systems – such as Mac OS X – are immune to badware.
The truth is, badware production is driven by the potential for monetary gain, and while the market share of the Mac operating system is not high, it’s starting to be recognized as a potentially valuable target.
The security world has long known that it was possible to create a virus that would affect Mac OS X – several researchers have demonstrated various “proof of concept” viruses that, because they were created by the good guys, were never released into the wild.
Last week saw the first public debut of a trojan apparently created for Mac OS X by organized criminal producers of badware. The trojan relies on social engineering pulls – the lure of pornography, and the confidence of Mac users – to convince users to download and install it, posing as a “codec” required to view video files.
For more on this issue, see StopBadware co-director Jonathan Zittrain’s blog post or check out the coverage at the SunBelt Software blog.
Posted in all | Tags apple, badware, codecs, mac, osx, trojans
|
