Smashing Security podcast: Macs and malware

Check out the latest special “splinter” episode of the “Smashing Security” podcast – where Vanja Svajcer, Carole Theriault and I discuss Mac malware. Take a listen, and let me know what you think.

Attack allows Mac malware to piggyback on your webcam, while it’s in use

A new attack allows OS X malware to record video and audio whenever a victim legitimately turns on their webcam, without drawing attention to itself.

David Bisson reports.

Aerospace industry warned of targeted attacks from the Komplex OS X trojan

The Sofacy hacking group (also known as APT28, Sednit, and Fancy Bear) has developed a new trojan called ‘Komplex’ to help it target OS X users.

David Bisson reports.

Uninstall your anti-virus says Amazon, if you want to work for us from home

You may want to earn money working from home as a customer service rep for Amazon, but they have some worrying rules about what you should (and shouldn’t) be running on your computer.

Watch my latest video to learn more.

Mac users vulnerable to state-sponsored Trident attack, fixed in iOS last week. Patch now

No excuses. Patch your Mac computers and Apple mobile devices.

OS X malware spread via signed Transmission app… again

For the second time this year, the Transmission BitTorrent client has been compromised.

David Bisson reports.

Earn up to $200,000 as Apple *finally* launches a bug bounty

Found a vulnerability in Apple products? Finally the company has recognised that you might be grateful for some financial reward.

Users of iPhones and Macs must update to avoid Stagefright-like bug

Make sure that all your Apple devices are patched before online criminals attempt to take advantage of this flaw.

Read more in my article on the We Live Security blog.

Apple fixes FaceTime eavesdropping bug, but other flaws may remain

Although it’s good that Apple has apparently fixed this FaceTime snooping vulnerability, it’s alarming to hear that there may be other as-yet-unpatched vulnerabilities still to be addressed

Read more in my article on the Hot for Security blog.

Meet Eleanor, the Mac malware that uses Tor to obtain full access to systems

After your Mac gets hit by this malware you could be locked out of your computer, have it recruited into a botnet, or be blackmailed to regain access to your files.

David Bisson reports.

Mac users attacked again by fake Adobe update

Mac users are once again being urged to exercise caution when installing updates to Adobe Flash Player, after a fake update was discovered infecting computers.

Read more in my article on the Intego Mac Security blog.

Mac users hit by rare ransomware attack, spread via Transmission BitTorrent app

Sadly it seems clear that ransomware has well and truly arrived for OS X.

Read more in my article on the Intego Mac Security blog.

Hacked spyware company seems to have released more Mac malware

Hacking Team, an Italian company which specialises in helping governments and intelligence agencies spy on their citizens, didn’t have the best year in 2015. But it may have recently released its latest piece of Mac malware.

Read more in my article on the Intego Mac Security blog.

Fake Flash Player update infects Macs with scareware

Mac scareware is being spread, with a little help from a legitimate Apple developer certificate. Be on your guard for bogus security warnings!

Read more in my article on the Intego Mac Security blog.

Apple fails to properly fix Gatekeeper security hole, claims researcher

Despite two attempts, Apple appears to have failed to properly fix OS X against a serious security issue that could help hackers install malicious code.

Read more in my article on the Mac Security blog.

Don’t believe headlines that claim OS X was the ‘most vulnerable’ software of 2015

News reports have claimed that Mac OS X is the “most vulnerable” software of 2015. But can that really be true?

Read more in my article on the Mac Security blog.