A dangerous piece of Mac malware that hides as a fake Flash warning is a growing security threat to Mac users with one in 10 Macs infected, according to the security firm, Kaspersky.
The Shlayer Trojan has been active since early 2018 and so far it shows no signs of going away quietly. Shlayer has had an enormous amount of success attacking Macs, even though it’s a rather normal piece of malware.
Apple quietly removed 17 sketchy apps from the App Store for delivering malware. All made by one developer based in India, the apps secretly generated money by clicking ad links and opening background windows without users’ knowledge.
Although less malicious than some other malware, the apps still threatened to slow down devices or drain batteries.
Apple’s latest patches for iTunes and iCloud for Windows are out to block potential ransomware attacks.
The software previously contained a vulnerability that allowed malware to piggyback on Apple’s digital signatures and go undetected by antivirus software.
And don’t assume you’re safe if you’ve already uninstalled Apple’s apps.
A new spyware tool reportedly can harvest data from iOS devices and their connected cloud accounts.
The tool, called Pegasus, also works with Android devices. The data it is able to gather even reportedly includes encrypted messages from third-party apps. It does this by fraudulently posing as the user to download their private content.
Security researches have discovered new malware that targets macOS users and evades popular antivirus tools.
“CrescentCore” is distributed as a DMG package that’s disguised as Adobe Flash Player. It can now be found on multiple websites — one of which is “a high-ranking Google search result,” according to Intego.
Way back in iOS 9 days, Apple added “content blocking” to the iPhone and iPad. More commonly known as “ad-blockers,” this tech lets you use third-party apps to block ads, malware, trackers, comments, and more, in Mobile Safari. Apple itself doesn’t do any more than make blocking possible. To actual decide what to block, you need a third-party app.
Enabling ad-blocking is easy, once you know how, and you can set-and-forget it once done. Or you can keep on top of things, adding custom rules, and white-listing trusted websites. Here’s how.
Intelligence operatives from the United Arab Emirates used a powerful cyber weapon that allowed them to monitor the iPhones of hundreds of targets.
The iPhone spy tool, dubbed Karma, gave the UAE remote access to phone numbers, photos, emails and text messages in 2016 and 2017.
An iOS security update rendered it “far less effective,” according to U.S. intelligence contractors who worked with the UAE to breach the iPhones of diplomats, activists, and rival foreign leaders.
Malicious Siri Shortcuts are a real possibility warns one developer, so users need to start treating all of them as potential threats. He calls on Apple to fix their problems.
Shortcuts debuted last fall in iOS 12. They are small apps that can be used to automate iOS features. That apparently makes them well suited for creating malware.
Fourteen iOS apps have been discovered to be covertly sending information to the server associated with Android-based malware Golduck, which affected more than 10 million users.
Golduck embedded malicious code on devices, which allowed hackers to do things like sending premium SMS messages from a victim’s phone. According to security researchers, the related iPhone apps could pose the same threat.
You might consider Safari to be the safest web browser for macOS, but one security researcher has proven it’s not completely bulletproof.
Patrick Wardle has demonstrated how hackers can remotely infect a Mac with malicious software using a Safari vulnerability. Apple’s built-in protections can do nothing to stop it.
