Mac Malware resource from Checkpoint

| | macOS malware
While I’m not currently maintaining this site, I should flag the pretty good MacOS Malware Pedia implemented by Checkpoint. Hat tip to Virus Bulletin, who drew my attention to that page in their March 11th newsletter. Added to the Malware Descriptions page. David Harley Advertisements ... Read More

Normal service suspended indefinitely

| | David Harley
For the present, I’m not working in the security industry, so I shan’t be maintaining this blog, though I’ll keep it intact for the present in case people still find some use for what’s here. I don’t plan to look for another security job at present, but never say never: ... Read More

Webkit vulnerability affecting Safari et al

| | Apple, ios, Linux, macos, Safari
Bleeping Computer: WebKit Vulnerability Affects Latest Versions of Apple Safari “A researcher published exploit code for a vulnerability in WebKit, the web browser engine that powers Apple’s Safari, along with other apps on macOS, iOS, and Linux.” David Harley Advertisements ... Read More

Apple updates 10th December 2018

| | Apple
Apologies for the continuing silence from this page, due to bereavement and personal illness. I still don’t have much time to give to this project at the moment, but here are a few ‘catch-ups’. A big dollop of Apple updates across practically everything, summarized here by The Register: It’s December ... Read More

Susceptibility to phishing

The more you know about phishing, the likelier you are to fall for it? Really? ... Read More

Apple and Android updates 17th November 2018

| | android, Apple, ios
Some recent reports of interest to Apple and Android customers ... Read More

More on the Bloomberg claims

I’ve often taken issue with Cylance (and other so-called next-generation vendors) over its misleading claims about mainstream detection techniques. However, the company has published some discussion among its own researchers regarding Bloomberg’s claims about supply-chain security issues relating to Apple and other big US companies, and several good points are ... Read More

Apple, GrayKey, Google

Apple privacy concerns: iOS update discourages policeware, but Google's money still pours in, it seems ... Read More

Antisocial Android Apps

Lukas Stefanko for ESET: Banking Trojans continue to surface on Google Play The malicious apps have all been removed from the official Android store but not before the apps were installed by almost 30,000 users BuzzFeed: Apps Installed On Millions Of Android Phones Tracked User Behavior To Execute A Multimillion-Dollar ... Read More

Should Bloomberg retract?

| | Apple, Bloomberg, supply chain
John Gruber cites Amazon Web Services CEO Andy Jassy’s tweet while considering Bloomberg’s decreasingly convincing insistence on the Apple/Amazon/etc. supply chain story: AWS CEO ANDY JASSY: ‘BLOOMBERG SHOULD RETRACT’ I have to agree: Bloomberg’s position is not looking very tenable. David Harley Advertisements ... Read More