Gatekeeper is an execution prevention technology in OS X that will block apps from running if they have not been properly certified. It combines with similar technologies in OS X such as quarantining of downloaded files, to give you ample warning that a program you are running may be suspicious if it has not come from vetted sources, such as the App Store. Continue reading
Tag Archives: Security
Oversight in GateKeeper allows for an easy bypass
Apple’s GateKeeper is a background technology in OS X that helps thwart malware. It does so by assessing three levels of identification for an app (Unsigned, Signed, and Signed with App Store distribution), and then imposing options to block execution of apps that are either unsigned, or not distributed through the App Store. However, a simple workaround exists that can allow malware to overcome Gatekeeper’s blocks and run. Continue reading
New Zero-Day memory injection vulnerability discovered in OS X
PCWorld is reporting that a new zero-day vulnerability has been found for OS X, which affects versions of OS X from 10.9.5 through to the recently-released 10.10.5. The problem comes from how NULL pointers in programs are handled, where malicious programs may use a special condition to bypass the default location where NULL code is directed to, and allow the program to bypass OS X’s security. Continue reading
Overcome Gatekeeper automatically re-enabling in OS X Yosemite
The Gatekeeper feature in OS X is a security measure that adds a layer of protection by only allowing Apple-approved apps to run, be they either from members of Apple’s developer community, or apps that are distributed in the App Store. This feature should be enabled by default, but if desired you can change Gatekeeper’s behavior, or disable it altogether. However, some OS X 10.10 users have found that after a while, Gatekeeper may re-enable automatically. Continue reading
Latest OS X security updates fix ‘Rootpipe’ vulnerability
One recent security flaw in Apple’s Mac OS platform that gained some press recently was the Rootpipe vulnerability, where security researcher Emil Kvarnhammer found a method of hacking a Mac that could bypass OS X’s security and allow the hacker to gain full administrative control of the system. This issue, which took advantage of faulty entitlements for XPC processes (small tools launched on the behalf of an application to take on workloads and spread the risk of a crash from affecting the main application), allowed a developer to break the sandboxing rules in OS X. Continue reading
Two-factor authentication comes to iMessage and FaceTime
Apple recently debuted a two-factor authentication approach for securing Apple IDs from hacking; however, this has been limited to authenticating on Apple’s Web site or making purchases using iTunes. Now Apple has expanded this security measure to work with its text, voice, and video messaging services. Continue reading
How to protect OS X from the “rootpipe” vulnerability
A relatively long-standing vulnerability in OS X has been uncovered by a Swedish hacker, Emil Kvarnhammar, who has dubbed it “rootpipe” by the so-far undisclosed method in which it can be used to take control of your Mac. In this vulnerability, a flaw allows a hacker to gain administrative access of a system without supplying a password, and then be able to interact with your Mac as an administrator. Continue reading
New ‘iWorm’ botnet discovered affecting OS X systems
A new botnet malware threat called ‘Mac.BackDoor.iWorm’ has been discovered by Russian security firm Dr. Web, which claims it is affecting more than 17,000 OS X systems. When installed, the malware will search the popular online community Reddit for pages containing links to command & control servers. At this point the infected system begins communicating with the servers and other systems connected to them, allowing the system to be used in tandem with others for various Continue reading
Concerned about privacy? Keep iOS and Mac OS up to date!
One of the long-standing problems that users have had with personal computing devices is the degree of privacy they offer, especially as devices are being used more and more for financial, medical, and other personal information. Behind the pretty interface in which you enter your social security number or bank account number and click “save,” the information could be well encrypted or simply be sent and stored as plain text for any passer-by to see. Continue reading
How to secure individual private files in OS X
Your account in OS X should be relatively secure, and provided you store your files within the structure of your account (ie, the Documents, Music, Movies, and Photos folders in your home directory), then other users on your system will not be able to access your documents. However, this security has its limits, and may break down for several reasons, especially if you transfer documents from your Mac to other systems, or to online services which you access from other systems: Continue reading