Collaborate Disseminate
A security researcher who last year bypassed Apple’s then-newly introduced macOS privacy feature has once again found a new way to bypass security warnings by performing ‘Synthetic Clicks’ on behalf of users without requiring their interaction.
Last J… Continue reading macOS 0-Day Flaw Lets Hackers Bypass Security Features With Synthetic Clicks
Researcher discloses vulnerability in macOS Gatekeeper security feature that allows the execution of malicious code on current version of the OS. Continue reading Gatekeeper Bug in MacOS Mojave Allows Malware to Execute
Further tracking of Lazarus activities targeting the financial sector enabled us to discover a new operation, active since at least November 2018, which utilizes PowerShell to control Windows systems and macOS malware for Apple users. Continue reading Cryptocurrency businesses still being targeted by Lazarus
The presented report continues the series of Kaspersky Lab reports that provide an overview of how the financial threat landscape has evolved over the years. It covers the common phishing threats that users encounter, along with Windows-based and Android-based financial malware. Continue reading Financial Cyberthreats in 2018
Security researchers have discovered a new class of security vulnerabilities that impacts all major operating systems, including Microsoft Windows, Apple macOS, Linux, and FreeBSD, allowing attackers to bypass protection mechanisms introduced to defend… Continue reading New Flaws Re-Enable DMA Attacks On Wide Range of Modern Computers
A new security vulnerability has been discovered in the latest version of Apple’s macOS Mojave that could allow a malicious application to access data stored in restricted folders which are otherwise not accessible to every app.
Discovered by applicat… Continue reading New Unpatched macOS Flaw Lets Apps Spy On Your Safari Browsing History
Earlier this week Dropbox team unveiled details of three critical vulnerabilities in Apple macOS operating system, which altogether could allow a remote attacker to execute malicious code on a targeted Mac computer just by convincing a victim into visi… Continue reading How Just Opening A Site In Safari Could Have Hacked Your Apple macOS
The same day Apple released its latest macOS Mojave operating system, a security researcher demonstrated a potential way to bypass new privacy implementations in macOS using just a few lines of code and access sensitive user data.
On Monday, Apple sta… Continue reading ex-NSA Hacker Discloses macOS Mojave 10.14 Zero-Day Vulnerability
Apple has removed almost all popular security apps offered by well-known cyber-security vendor Trend Micro from its official Mac App Store after they were caught stealing users’ sensitive data without their consent.
The controversial apps in question … Continue reading Apple Removes Several Trend Micro Apps For Collecting MacOS Users’ Data
While investigating a cryptocurrency exchange attacked by Lazarus, we made an unexpected discovery. The victim had been infected with the help of a trojanized cryptocurrency trading application, which had been recommended to the company over email. Continue reading Operation AppleJeus: Lazarus hits cryptocurrency exchange with fake installer and macOS malware