s2e1 PCs vs Macs - the virus threat

Mac anti-virus

All you need to know about anti-virus on the Mac. At SE Labs we are often asked, “which is the best anti-virus for the Mac?” And, “do you need anti-malware for MacBooks?” ...

Rust CLI For Apple’s WeatherKit REST API

| | Apple, macos, rust, Weather
Apple is in the final stages of shuttering the DarkSky service/API. They’ve replaced it with WeatherKit, which has both an xOS framework version as well as a REST API. To use either, ...
Lockdown Mode: Apple to protect users from targeted spyware attacks

Lockdown Mode: Apple to protect users from targeted spyware attacks

Apple has previewed a new feature which aims to harden high-risk users from the serious threat of being spied upon by enemy states and intelligence agencies. “Lockdown Mode” is scheduled to arrive ...
Dylib Loads that Tickle your Fancy

Dylib Loads that Tickle your Fancy

| | Detection, macos, TCL
Loading malicious dylibs into the Tclsh binaryBackgroundAs detection of osascript command-line executions has increased, I started looking more into alternative forms of payload execution. As a result of this research, I found a ...
Zoom Hot-Mic Bug: Is China Listening?

Zoom Hot-Mic Bug: Is China Listening?

Zoom users on macOS have noticed the microphone stays on after a meeting has ended ...
Security Boulevard
Cybereason Earns Gold OPSWAT Access Control Certification

Cybereason Earns Gold OPSWAT Access Control Certification

Cybereason has earned the coveted Gold-level OPSWAT Certified Security Applications verification for the Cybereason Sensors ActiveProbe 21.X for Windows, Mac and Linux endpoints. The OPSWAT Access Control Certification Program is the industry ...
Apple Security is Garbage—Change My Mind

Apple Security is Garbage—Change My Mind

Apple just issued an urgent patch for every single platform. The VSS score is 10.0—the zero click, zero day is a huge deal ...
Security Boulevard

New TabularData Available in Swift on macOS Monterery (et al)

| | Apple, macos, R, SWIFT
WWDC 2021 is on this week and many new fun things are being introduced, including some data science-friendly additions to the frameworks that come with Xcode 13 and available on macOS 12+ ...

archinfo v0.4.0 Released

| | Apple, macos
My archinfo utility is a small macOS command line application that displays process id, name, and architecture (arm64 or x86_64). Version 0.4.0 adds the following capabilities: Added --x86 (-x short option) to ...
Apple macOS Apple's New Privacy and Security Features: A Closer Look

Apple Patches Zero-Day XCSSET Exploit

By the time Apple patched a zero-day vulnerability in macOS 11.4 that bypasses the Transparency Consent and Control (TCC) framework, it was being exploited by attackers using XCSSET malware. Jamf researchers dissecting ...
Security Boulevard