While phishing isn't an uncommon means for scammers to get personal information these days, you don't hear all that often that the scammer gets your info directly from the credit card company. Generally it's a more hi-tech data breach, such as a hacker gaining access to a data center. For one third-party Mac developer, however, his Apple Developer Connection account information was scammed directly out of Apple, and pretty easily at that.

Posted by Mirko at 11:52 AM | Permalink

Lextech Labs introduced iRa, a remote surveillance viewing and control system that puts the power of multiple live video feeds and direct camera pan-tilt-zoom control in the palm of your hand on an iPhone or iPod Touch.

Posted by Mirko at 11:44 AM | Permalink

Code signing is a technology for associating a cryptographically secure signature with your application’s executable code. This signature makes it possible for the operating system or other services to make confident assumptions of authenticity based on the unique signature which you’ve supplied.

Posted by Mirko at 12:26 PM | Permalink

The latest release to the PGP Encryption Platform, PGP Whole Disk Encryption 9.9 adds pre-boot authentication to the proven PGP Corporation data encryption technology for Intel-based Mac OS X systems “Tiger” and “Leopard,” providing protection for data on desktops, laptops, and removable media.

Posted by Mirko at 04:08 PM | Permalink

This guide provides an overview of features in Mac OS X that you can use to enhance security and harden your computer. In the paper, you can read instructions and recommendations for securing Mac OS X version 10.5 or later, and for maintaining a secure computer.

Posted by Mirko at 10:43 PM | Permalink

Time Machine users, rejoice! Pierce T. Wetter III has provided a modified version of the GrandPerspective utility - a version that understands the use of file and folder hard links peculiar to a Time Machine backup. You can use this modified GrandPerspective to scan your entire Time Machine backup folder. For one thing, this tells you immediately how big your Time Machine backup really is (something that's surprisingly hard to find out otherwise).

Posted by Mirko at 02:55 PM | Permalink

Paragon Software released the free Rescue Kit for Mac OS X - Lite which allows users to recover quickly and easily from system problems by rescuing important data and restoring their system back to its original state. The tool kit comes with fully automated wizards that allow users to easily backup and restore partitions.

Posted by Mirko at 02:40 AM | Permalink

This guide will show you how to access a computer located on your home network from outside of your local area network. For the purposes of this guide, let’s assume we are trying to access a HOME SERVER such as a Mac Mini located on your home WiFi router. The home computer could just as easily be a Ubuntu, or similarly flavored Linux machine. The first thing that we will need to do is determine your home IP address, and then we will setup port forwarding on your wireless router. Keep reading to get started with this process or go here to learn how a SSH Tunnel works.

Posted by Mirko at 04:26 PM | Permalink

The truth is that security through obscurity is a flawed idea. Yes, there are fewer recorded attacks on the Mac platform, but by no means does that make it secure. So what's a Mac user to do? Like the book says, don't panic. In this article we'll take a look at some basic ways you can improve your Mac's security right out of the box.

Posted by Mirko at 09:47 PM | Permalink

Based on a screen capture of the Parental Controls menu, parents will be able to limit most of the iPhone's major functions. First of all, there appears to be an option for limiting the explicit content played in iTunes. There are also Safari and YouTube options, which could be used for blocking mature YouTube content or certain websites. The iTunes Wi-Fi Store and App Store can also be limited, presumably to prevent children from going on massive music and application purchasing sprees.

Posted by Mirko at 12:02 PM | Permalink

Apimac released Compress Files ‘08, a compression tool for Mac OS X that enable Mac users to create a variety of compressed and encrypted files as well as encrypted disk images. For high security, you can use Compress Files to encrypt part of your hard disk through the use of an encrypted disk image protected with a password.

Posted by Mirko at 08:41 PM | Permalink

Chris Pirillo writes: "Microsoft does some amazing things - very amazing things. My choice, however, for a primary desktop operating system is no longer Windows - it’s Mac OS X. Duh. It’s rather difficult to admit that officially, if only because… well, I think Microsoft does amazing things."

Posted by Mirko at 06:56 AM | Permalink

PGP, or Pretty Good Privacy, is a commonly used and very secure encryption program using public key cryptography. Through PGP, you can encrypt information such as messages, documents and files in a manner so that only the recipient can decrypt and open them. The goal of this tutorial is to get you up and running with PGP through terminal and familiar with its operation.

Posted by Mirko at 06:45 AM | Permalink

Cocoa Packet Analyzer is a native cocoa implementation of a network packet protocol analyzer for Mac OS X. It uses libPCAP for reading packet trace files and for capturing network traffic.

Posted by Mirko at 03:07 PM | Permalink

The fresh security update addresses 11 issues. Learn more at Help Net Security.

Posted by Mirko at 03:03 PM | Permalink

Computer companies want more control over the products they sell you, and they're resorting to increasingly draconian security measures to get that control. The reasons are economic.

Control allows a company to limit competition for ancillary products. With Mac computers, anyone can sell software that does anything. But Apple gets to decide who can sell what on the iPhone. It can foster competition when it wants, and reserve itself a monopoly position when it wants. And it can dictate terms to any company that wants to sell iPhone software and accessories.

Posted by Mirko at 02:02 PM | Permalink

The Mac malware problem is currently tiny compared to the Windows one, so if enough Apple Mac users resist clicking on unsolicited weblinks or downloading unknown code from the web then there's a chance they could send a clear message to the hackers that it's not financially rewarding to target Macs. If they fail to properly defend themselves, however, there's a chance that more cybercriminals will decide it's worth their while to develop more malware for Mac during 2008.

Posted by Mirko at 11:53 AM | Permalink

The video demonstrates the results of the DNS changes made on a Mac OS X system.

Posted by Mirko at 08:44 PM | Permalink

Apple today introduced Time Capsule, a backup appliance that automatically and wirelessly backs up everything on one or more Macs running Leopard including the amazing Time Machine automatic backup software.

Time Capsule combines an 802.11n base station with a server grade hard disk in one small package. Simply plug it in, then easily set up automatic wireless backup for every Mac in your house to a single Time Capsule with just a few clicks. Time Capsule offers the benefits of a full-featured 802.11n Wi-Fi base station, and comes in two models: a 500 gigabyte model for just $299 and a 1 terabyte model for just $499.

Continue reading "Apple Time Capsule - wireless backup for all your Macs" »

Posted by Mirko at 07:00 PM | Permalink

Apple fixes a variety of issues, click here for more details.

Posted by Mirko at 03:12 AM | Permalink

Assaults are likely to be in the form of drive by attacks - malware embedded into seemingly harmless information, images or other media that actually perform dangerous actions when rendered on the iPhone's Web browser.

Posted by Mirko at 04:02 PM | Permalink

Leopard includes more information about Wi-Fi networks in the vicinity of your computer than meets the eye. The revised Mac OS X updates the AirPort menu in the system menubar after you select, which is a neat feature and provides more accurate results. It also shows a lock icon next to networks protected by some form of encryption. But there's more information you can extract by holding down the Option key while selecting the menu.

Posted by Mirko at 06:09 AM | Permalink

In an effort to keep up with Apple's changes at a faster speed, the iPhone Dev Team is considering open sourcing AnySIM, the free unlocking solution for the iPhone. In an exclusive talk with Gizmodo, iPhone Dev Team member Sam said that this move could "open a lot of possibilities for the future," mainly in terms of the speed of the updates and avoiding sloppy and possibly dangerous binary patches.

Posted by Mirko at 01:30 PM | Permalink

To find out the iPhone's state of security, Fast Company magazine purchased an iPhone for Rik Farrow, a UNIX specialist and consultant, and commissioned him to crack through its defenses, which he did using H D Moore's Metasploit, a popular platform for testing security systems.

Posted by Mirko at 03:06 AM | Permalink

You must set a VNC password in Leopard's System Preferences in order for the TightVNC client to connect to it. (Or else TightVNC will give you an error about the server not supporting the right security protocol.) To do so, in System Preferences, go to Sharing, and from Screen Sharing, click on the "Computer Options" button. Set your password there and TightVNC will be able to remote control your Mac given its IP address.

Posted by Mirko at 03:12 AM | Permalink

WaterRoof is an IPFW firewall frontend for Mac OS X with a easy interface and many options. Features include dynamic rules, bandwidth management, NAT configuration and port redirection, pre-defined rule sets and a wizard for easy configuration. You can also watch logs and graphic statistics. Rules configurations and network options can be saved and optionally activated at boot time.

Posted by Mirko at 09:54 PM | Permalink

Daniel writes: "If you, like me, have essentially kept a single keychain from the dawn of time, there’s a feature in the Keychain Access application you need to know about: “Keychain First Aid.” You find it under the Keychain Access menu, just below Preferences. Whenever I see anything unusual happening with my keychain, I try to remember to hop into Keychain Access and re-run this. Putting aside the question of why my keychain is allowed to get so routinely screwed up that it requires “first aid,” let me say that I appreciate this repair functionality because it generally solves problems quickly and effectively."

Posted by Mirko at 07:28 PM | Permalink

iAlertU is a simple utility that turns your MacBook into a motion sensitive remote controlled alarm system. I cannot think a lot of useful ways of using the software, but the concept is rather unique, so I tested it. While discussing the software with one of my colleagues, they came across a couple of situations the software can be of use for them - especially in their cubicles while other people are roaming around.

Posted by Mirko at 06:44 PM | Permalink

With the release last week of the feature list for Mac OS X 10.5 Leopard, the security world is buzzing about some extremely important updates that should, if they work as expected, significantly improve Mac security and will make me less nervous about connecting to wireless networks in Internet cafes.

Posted by Mirko at 08:52 PM | Permalink

Most Web browsers have handy autofill features that enable you to enter passwords, addresses, credit card numbers, and other data in forms with just a couple of clicks or keystrokes. Autofill isn’t dangerous in and of itself, but it can lead to problems. For example, someone with access to your computer could potentially log in to your bank account, make purchases in your name, or discover where you live. The same would be true if your computer were stolen.

Posted by Mirko at 01:30 AM | Permalink

Over the past few weeks, hackers and enthusiasts have given the iPhone’s platform a thorough massage, attempting to break through Apple’s barriers. More often than not, such breaks progress not by unraveling Apple’s attempts at locking things down but rather by circumventing them through the exploitation of some bug or vulnerability in a component of the OS. Mobile Safari and Mobile Mail have come under a lot of scrutiny - imagine creating a (paying, of course!) web page that iPhone users could visit to automatically unlock the phone through the crafty exploitation of an image-based bug.

Posted by Mirko at 10:30 AM | Permalink

This article takes a look at the KeyMaster 1.0.1 password manager, Utility Lock 1.0.3b screen locking mechanism and the MD5 2.6 checksum checker.

Posted by Mirko at 03:12 AM | Permalink

iPhone update 1.1.1 is only available through iTunes, and will not appear in your computer's Software Update application, or in the Apple Downloads site. Here are the details.

Posted by Mirko at 10:52 PM | Permalink

Richard Menta made a short video in which he shows how an iPod touch can be used to discover available wireless networks nearby.

Posted by Mirko at 10:21 AM | Permalink

Apple recently seeded developers with yet another build of Mac OS X 10.4.11, destined to be the final update to Tiger. Builds 8S155 (PowerPC) and 8S2155 (Intel) deliver an additional number of bug fixes, including remedies to issues with the BSD Kernel and interlock timeouts, ASR and scanning and restoring, CoreText Layout, and a bug with ImageCapture that creates problems downloading images from an iPhone when the phone has a large number of saved photos.

Posted by Mirko at 05:29 PM | Permalink

More than a year after claiming to have found a way to take over a Macintosh computer using a flaw in the system's wireless card, David Maynor has published details of his exploit. The details were included in a paper published in the September issue of Uninformed.org, an online hacking magazine. The lengthy paper describes how to run unauthorized software on a Macintosh by taking advantage of a flaw in Apple's AirPort wireless drivers.

Posted by Mirko at 03:45 PM | Permalink

For the most part, connecting a Mac to a corporate LAN doesn't have a world-shattering effect on performance or support. According to William Green, director of networking at the University of Texas in Austin, the Mac has had a minimal impact on the school's infrastructure.
"All OSs behave differently; if you have a multivendor environment, you have to deal with the differences," said Green. "There have not been any special problems related to Macs."

Posted by Mirko at 03:55 PM | Permalink

Michael Calore at Wired writes: "I've been tearing my hair out today trying to get our test iPhone unlocked and working with a T-Mobile SIM card. I've managed to get the phone opened up via the different "jailbreak" methods, but that's as far as I've gotten. The rest is a total head-scratcher for non-supergeeks like me, and it's obvious both the manual and GUI processes for unlocking the iPhone are not ready for average consumers."

Posted by Mirko at 12:37 AM | Permalink

Want to deny Firefox access to port 80 and force it to only use https (port 443)? Or perhaps you would simply like to be notified whenever any of your applications make any kind of request on your network or the web? Little Snitch's watchful eye might just be the thing for you, and the new features in the version 2.0 beta should make it even more appealing.

Posted by Mirko at 07:22 PM | Permalink

Apple's Open Directory is a powerful directory services platform that supports a variety of clients, most notably Mac OS X and Windows. Open Directory is based on open-source software, including OpenLDAP and Kerberos, and includes some components specific to Mac OS X Server. As such, Open Directory is an easy-to-manage application for Mac and multiplatform networks. It functions well as a network's sole directory service and can integrate well with Active Directory or, for that matter, with any LDAP-based directory services platform.

Posted by Mirko at 09:25 PM | Permalink

A design issue exists in the IPv6 protocol's handling of type 0 routing headers. Depending on network topology and capacity, the reception of specially crafted IPv6 packets may lead to a reduction in network bandwidth. Apple's security update addresses the issue by disabling the support for type 0 routing headers.

Posted by Mirko at 10:16 PM | Permalink

Will Apple and AT&T's legal action deter hackers? Hardly. Individual users are already allowed to unlock their own phones under an exemption to the Digital Millennium Copyright Act (DMCA) that the U.S. Copyright Office issued last November. The exemption, in force for three years, applies to "computer programs…that enable wireless telephone handsets to connect to a wireless telephone communication network, when circumvention is accomplished for the sole purpose of lawfully connecting to a wireless telephone communication network."

Posted by Mirko at 12:03 AM | Permalink

The long-term viability of the iPhone is unlikely to be seriously damaged by reports of a serious security vulnerability that allows hackers to take over the device. Most early iPhone adopters have bought into the Apple mythology which convinces them that anything blessed by Steve Jobs is automatically desirable, so we won't see a mass return of the shiny devices with their slick interface.

Posted by Mirko at 02:25 PM | Permalink

Technophiles may love the iPhone, but you criminals? Watch out. The iPhone may reveal more about your misdeeds than you realize.

Derrick Donnelly, chief technology officer of Blackbag Technologies, a company specializing in Apple forensic solutions, is tempted by the rich array of potential evidence an iPhone might contain. Will its data favor the defense or the prosecution? "There is more information in there than your average cell phone," explains Donnelly. "The ease of use lends itself to more use … and more use creates more artifacts."

Posted by Mirko at 12:01 AM | Permalink

What enables you to use Nikto on Mac OS X is MacNikto, an AppleScript GUI shell script wrapper built in Apple's Xcode and Interface Builder. It provides a subset of the features available in Nikto, bundled into this installer package.

Posted by Mirko at 03:17 PM | Permalink

Jungle Disk is an application that lets you store files and backup data securely to Amazon.com's S3 Storage Service. Amazon S3 provides a simple web services interface that can be used to store and retrieve any amount of data, at any time, from anywhere on the web. In order to use this service you need a tool like Jungle Disk because Amazon doesn't provide any direct way to upload or download data from S3. Jungle Disk integrates into your local file system like any other drive.

Posted by Mirko at 01:15 PM | Permalink

A security update for the iPhone does more than just fix critical flaws in the handset. It also looks for and wipes out any modifications that users make to the firmware on their phones, according to hackers looking to unlock the phone. But the security update does not break any of the tools that hackers have so far developed to modify the iPhone's firmware, they said.

Posted by Mirko at 09:13 PM | Permalink

If you need to get a packet trace and you don't already have a favorite utility for doing so, you can use the tcpdump command line tool. All versions of Mac OS X include this tool, as do many other Unix-style platforms. Keep in mind that the BSD subsystem must be installed in order to use tcpdump.

Posted by Mirko at 12:58 PM | Permalink

Dejal released Dejal Simon 2.3, the essential site monitoring tool for Mac OS X. It checks web pages, FTP and DNS servers, local or remote ports or volumes, and other services for changes or failures, and notifies you via e-mail, sound, speech, or HTML reports.

Continue reading "Monitor websites and servers for changes or failures with Simon 2.3" »

Posted by Mirko at 08:28 PM | Permalink

This article explores how the iPhone changes the balance of power when it comes to security. There are a few minor application issues that make a phisher's job easier and much more interesting is the way the iPhone connects the Web browser and the phone.

Posted by Mirko at 11:32 AM | Permalink

Mac geeks usually have the Disk Utility placed somewhere within easy reach ready to be fired up to make encrypted disk images whenever needed. However, there's a more elegant, not to mention easier, method of making encrypted vaults that comes with several handy features - Knox.

Posted by Mirko at 11:36 AM | Permalink

As expected, the launch of iPhone is being exploited by cyber-crooks for financial gain. PandaLabs has uncovered a tool that controls a botnet made up of over 7,500 zombie computers infected by the Aifone.A bot Trojan. If the user of an infected PC tries to buy an iPhone online, their confidential data might end up in the hands of cyber-criminals.

Posted by Mirko at 05:32 PM | Permalink

Mac software developer Mireth Technology has released version 4.0 of NetShred X, its easy to use internet track eraser that erases internet tracks such as cache, history and email. NetShred X is a Universal Binary, so it works on both Power PC and Intel Macs.

Posted by Mirko at 07:42 PM | Permalink

The goal of the Metasploit Project is to provide useful information to people who perform penetration testing, IDS signature development, and exploit research. Here's a guide on how to install it on a Mac.

Posted by Mirko at 03:09 AM | Permalink

If you have more than one workstation, you administer several machines connected to a network, or just frequently connect to various networks, sooner or later you'll find a packet sniffer to be quite useful.

Posted by Mirko at 03:37 PM | Permalink

Famed reverse engineer Jon Lech Johansen claims to have discovered a way to "activate" an iPhone without signing up for a contract with AT&T. The hack allows users to use the iPod and Wi-Fi capabilities of the devices, but doesn't allow use of its phone features.

Posted by Mirko at 03:34 PM | Permalink

While the TPM chip is not used by any of the Apple software products, that doesn't mean that developers cannot use it for the specific purposes of their applications. While it is not the best idea to target just the computers that have TPM chips, this "perfect" customizations can be used in some organizations for instance running just the TPM-enabled Macs.

Posted by Mirko at 09:50 AM | Permalink

Today Apple released Security Update 2007-006 which addresses WebCore and WebKit.

Posted by Mirko at 01:55 PM | Permalink

This article describes in detail how to create password protected PDF files on Mac OS X by using a freely available command line utility, as well as an Automator Workflow.

Posted by Mirko at 02:58 AM | Permalink

Apple released the next update to Mac OS X 10.4 today, the unprecedented version 10.4.10. The 49MB update is recommended for Intel and PPC Mac users running Tiger, and includes a number of updates to things like USB drive support, RAW cameras, third-party apps, and of course, security.

Posted by Mirko at 12:03 AM | Permalink

When it comes to security, Mac OS X has proved on numerous occasions that it is quite safe, right out of the box. However, that doesn't mean it cannot use additional security to prepare it for the Wild West we call the Internet. Enter DoorStop X - a comprehensive approach to securing your Mac.

Posted by Mirko at 02:24 PM | Permalink

Security researchers have long speculated that Apple has benefited from security by obscurity, escaping attention from malicious hackers because Windows-based computers dominate in homes and offices. But Apple's new Safari for Windows puts it right in hackers' crosshairs. The browser gives hackers another way to attack Windows and security researchers will now likely spend hours hunting down holes in the code.

Posted by Mirko at 12:31 PM | Permalink

Following up some recent patches to Samba, the open-source file-sharing system compatible with Windows file sharing, Symantec found some disturbing results: at least one *NIX variant, Mac OS X, is still vulnerable.

Posted by Mirko at 02:12 AM | Permalink

We may not like it, but OS X malware is on the rise. Even if you prefer the lalala-I’m-not-listening approach to security, you may want to do the decent thing and not forward such nasties from your Windows-using colleagues. Here’s how to set things up on.

Posted by Mirko at 04:38 PM | Permalink

The initial reason for the development of Shimo was the lousy software implementation of the Cisco VPNClient for Mac OS. Shimo wants to do it the Mac OS way by reducing the interface to the important features and integrate it right into the user interface of the OS.

Posted by Mirko at 02:31 PM | Permalink

Apple unveiled the year's fifth major security update for Mac OS X to patch 17 vulnerabilities, but fewer than a third could lead to hackers injecting their own code into a compromised system.

The release also marked the first time this year that an operating system security update from Apple did not patch a vulnerability disclosed by the January "Month of Apple Bugs" project.

Posted by Mirko at 08:25 AM | Permalink

The higher risk posed by QuickTime stems from slack patching by users. According to an analysis of more than 350,000 system checks done over the last six months by the free Secunia Software Inspector, 33.1 per cent of all QuickTime 7 installations weren't up to date with security patches. Another music player, AOL's Winamp, was almost as likely to be outdated: 27 per cent of Winamp 5 installations were missing needed security fixes.

Posted by Mirko at 12:54 PM | Permalink

If you are using the OS X firewall, and you've recently installed Creative Suite 3, you should probably be checking your firewall right about now. That's because the Adobe Version Cue CS3 installer will shut off your firewall. More specifically, during the installation for Version Cue, the installer has to turn off the firewall in order to set up some TCP ports.

Posted by Mirko at 01:13 PM | Permalink

Off-site backups have two problems: how do you get the data to the off-site location, and is the off-site location secure? A lot of data isn't sensitive at all. Another set of data is somewhat sensitive, but not so much so that having someone else see it would be a disaster, and it's not of much interest to others anyway. Then there is the category of highly sensitive information. This includes passwords, anything financial, information that can be used for identity theft, compromising photos, death threats, that kind of thing.

Posted by Mirko at 12:12 AM | Permalink

Security professionals need not hide behind the argument that avoiding Microsoft products is the end-all solution to a secure computing environment. Security professionals have much better reasons, and those were amplified when I talked to other folks at CEIC 2007 over the last few days.

Posted by Mirko at 10:49 AM | Permalink

This article discusses Kerberos in Mac OS X and how the protocol is used for secure Single Sign On authentication. The importance of this secure, standards-based methodology will be discussed from both a system administrator and developer perspective.

Posted by Mirko at 01:15 AM | Permalink

Apple published Security Update 2007-004 for both Mac OS X v10.4.9 and Mac OS X v10.3.9. It’s available for download from Apple’s Web site as well as through the Software Update system preference. Among other things, this update fixes AirPort, fetchmail, ftpd, Kerberos and SMB.

Posted by Mirko at 12:45 AM | Permalink

Few corporations are likely to ban iPods in the workplace, but whether Apple and other manufacturers of MP3 players shoulder some responsibility to add security to their devices - and how effective that security would be – is a growing debate.

Posted by Mirko at 07:27 PM | Permalink

Apple has published a firmware update for its Airport Extreme Base Station that fixes two security flaws in the Wi-Fi router. The patch fixes a bug found in certain versions of the Base Station that prevented the router from acting as a firewall by blocking IPv6 traffic by default. "This may expose network services on hosts connected through an AirPort Extreme Base Station with 802.11n to remote attacks," Apple said in a Monday advisory.

Posted by Mirko at 10:05 AM | Permalink

Despite what Apple wants you to think, your Mac isn't invincible. While Macs may be less vulnerable to viruses and spyware than PC's, they're just as likely to get stolen or suffer from a hardware failure like a hard drive crash. When that happens, will it be a catastrophe, or just an inconvenience? It depends on whether or not - and how well - you back up your Mac.

Posted by Mirko at 12:03 AM | Permalink

Independent UK developer Ben Bird has upgraded his video surveillance system for Mac users, SecuritySpy. The system offers powerful video surveillance features for Mac users aiming to protect their home or business – motion detection, real-time compression and network video streaming.

Posted by Mirko at 12:18 AM | Permalink

Apple's Mac OS X remains almost completely free of any sort of malware threat despite several years of availability, a significant market share, and even an entire month dedicated to pointing out its flaws.

And security experts are not exactly sure why. In an article for the McAfee Avert Labs blog, security researcher Marius van Oers pointed out that Mac malware is "pretty much non-existent at the moment".

Posted by Mirko at 11:12 PM | Permalink

Knowing how to investigate a security breach, potential crime, or policy violation on a Mac computer or server is crucial for understanding the incident and building a chain of evidence that clearly identifies the culprit. In this article, Ryan Faas describes data forensic methods as the