Tag Archive for: mistakenly

How Apple Mistakenly Authorized Malware

/in


Apple mistakenly allowed malware on macOS – Geeko

In February 2020, Apple implemented a new system to validate new software on macOS. A fully automated process that analyzes the source code of software to make sure it is secure. Unfortunately, this automation of the process proved its weaknesses a few weeks ago and it was not a first.

Researcher Matt Muir recently discovered that Apple had notarized – or validated – a malicious application on macOS. The latter pretended to be an installer of Adobe Flash Player, but was actually hiding malware. To confuse the issue, the authors of the corrupt installer hid the malware code in a JPEG image, thus fooling Apple’s security system. This is a fairly widespread technique, known as steganography.

Minimal damage

Once installed, the malware could deploy and modify the default web browser search engine on Macs. The damage caused by the OSX / MacOffers malware was not that great, but if it was able to find its way into Apple’s operating system undetected, others may repeat the feat and next time the consequences could be more serious. In this case, Apple learned of its error and removed the malware certificate.

We can still hope that Apple will strengthen its automated process for validating software on macOS to prevent other malware from reaching the Mac.

Source link by https://www.20minutes.fr/high-tech/2895279-20201028-apple-a-autorise-par-erreur-un-logiciel-malveillant-sur-macos

*The article has been translated based on the content of Source link by https://www.20minutes.fr/high-tech/2895279-20201028-apple-a-autorise-par-erreur-un-logiciel-malveillant-sur-macos
. If there is any problem regarding the content, copyright, please leave a report below the article. We will try to process as quickly as possible to protect the rights of the author. Thank you very much!

*We just want readers to access information more quickly and easily with other multilingual content, instead of information only available in a certain language.

*We always respect the copyright of the content of the author and always include the original link of the source article.If the author disagrees, just leave the report below the article, the article will…

Source…

AT&T Homepage Mistakenly Warns Users of a Non-Existent Data Breach – VICE

/in

AT&T Homepage Mistakenly Warns Users of a Non-Existent Data Breach  VICE

On late Monday, AT&T warned visitors on its website of a “data incident” with an ominous banner at the top of the company’s homepage, according to people …

“data breach” – read more

A world of hurt after McAfee mistakenly revokes key for signing Mac apps

/in

Travis Nep Smith

A McAfee administrator accidentally revoked the digital key used to certify desktop applications that run on Apple’s OS X platform, creating headaches for customers who want to install or upgrade Mac antivirus products.

A certificate revocation list [CRL] hosted by Apple Worldwide developer servers lists the reason for the cancellation as a “key compromise,” but McAfee officials said they never lost control of the sensitive certificate which is used to prove applications are legitimate releases. The revocation date shows as February 6, meaning that for seven days now, customers have had no means to validate McAfee applications they want to install on Macs.

“We were told that as a workaround, we should just allow untrusted certificates until they figure it out,” an IT administrator at a large organization, who asked that he not be identified, told Ars. “They’re telling us to trust untrusted certs, and that definitely puts us at risk.”

Read 6 remaining paragraphs | Comments


Ars Technica » Technology Lab