Shrootless vulnerability can bypass macOS System Integrity Protection
Security researchers from Microsoft have discovered a vulnerability dubbed “Shrootless” that can bypass macOS System Integrity Protection (SIP).
OS X
MacOS malware targets crypto community
A new macOS malware, dubbed OSX.Dummy, has been targeting cryptocurrency investors via both Slack and Discord chat apps. The malware was first spotted by security researcher, Remco Verhoef, who posted details of his findings on the SANS InfoSec Handlers Diary Blog on Friday.
Apple security updates for macOS, iOS, Safari and others
Apple has released security updates to address vulnerabilities in multiple products to include OS X El Capitan 10.11.6, macOS Sierra 10.12.6, macOS High Sierra 10.13.4. An attacker could exploit unpatched vulnerabilities to take over a victim’s system. In all, 32 vulnerabilities were included in the OS X and macOS updates. Three of the kernel bugs could allow …
Apple security updates for macOS, iOS, Safari and others Read More »
MaMi DNS hijacking malware targets Mac OS X
A security researcher has spotted a new strain of malware dubbed “MaMi” (OSX/MaMi) that targets Mac OS X DNS settings.
6 Good Mac Security Hardening Recommendations
In the wake of Apple’s most recent and embarassing blunder regarding the macOS High Sierra root login flaw, I felt it was a good time to revisit Apple Mac hardening guidelines that can help users and IT admins better secure Apple’s OS, to include macOS and OS X.