XARA sets it’s sights on OS X and iOS

18. June 2015 Security 1
Researchers have discovered “a series of high-impact security weaknesses, which enable a sandboxed malicious app, approved by the Apple Stores, to gain unauthorized access to other apps’ sensitive data.” Sounds ominous huh? It is. The researchers built a malicious app, submitted it to Apple, beat all the tests and security screenings and got the app ...

Knock Knock, me again!

29. April 2015 Security 1
Last October I wrote an article about Knock Knock, a tool that checks common hiding places of malware. You can read this article here. Overall a good tool but it was command line only. Immediately after writing the article I was asked both in the comments and via email to do a follow up piece ...

Comments temporarily disabled – Updated

27. April 2015 Security 0
Due to a serious vulnerability discovered in the WordPress platform, comments have been disabled throughout the entire site. As soon as WordPress offers a patch comments will be re-enabled. Update: WordPress has not addressed this issue yet but thanks to a workaround limiting the comment size by Arnaud I was able to allow comments again. ...

Updates for OS X and iOS

08. April 2015 Security 0
Apple today released updates for OS X Yosemite and iOS 8. As usual it is recommended to install these updates as they include a slew of security patches but also bug fixes and enhancements. Some users may also see a separate security update available (Security Update 2015-004) and/or a Safari update (6.2.5 or 7.1.5). The ...

Apple releases security updates, iOS 8.2 and Apple TV 7.1

09. March 2015 Security 0
(Updates may not be available yet for download. They should be available to everyone before the end of the day) Apple today released a security update for it’s most recent three OS X systems, iOS 8.2 and Apple TV 7.1 which also includes security fixes. For OS X 10.8.5 Mountain Lion, 10.9.5 Mavericks and 10.10.2 ...

Java installs adware. If you allow it. Relax people.

06. March 2015 Security 6
Java is now bundled with an Ask.com toolbar. The web is blowing up about it. “Beware”, “Adware”, “shady”, “Sneaking” and other terms are used. Is this just a hype or is there something to these claims? Let’s find out. I set up a brand new Virtual Machine, installed all the latest updates, the latest browsers, ...

Old Mac trojan returns

12. February 2015 Security 1
For the past few days I’ve been keeping an eye on reports stating an old Mac trojan, OpinionSpy, is back. Intego has indeed confirmed the old trojan has found it’s way back to the Mac platform. This time through downloads from download.cnet.com. The application “Free Video Cutter Joiner” will install additional contents if you allow ...

New Flash Player version available

05. February 2015 Security 0
An updated Flash Player, version 16.0.0.305, is now available for download on the Adobe website. This version patches the zero-day exploit I mentioned a few days ago. All users that have Flash Player installed should update asap. If you had previously disabled Flash Player just reverse the instruction I gave in the previously mentioned article. ...

Apple releases updated FlashBack Malware removal tools

03. February 2015 Security 1
It appears Apple has quietly released an updated tool in the fight against fake Flash Player installers. Two updates showed up today: Flashback Removal Security Update 1.0, released 02/02/2015 5:09 PM – “This update removes the most common variants of the Flashback malware.” This update also disables the Java plug-in in Safari. Flashback malware removal ...