A week in security (Apr 03 – Apr 09)
A compilation of notable security news and blog posts from the 3rd of April to the 9th. We focused on the 3-2-1 rule, further dissected Diamond Fox, and revealed a malvertising campaign targeting iOS users.
Malvertising on iOS pushes eyebrow-raising VPN app
A malvertising campaign on iOS is pushing a scareware page tricking Apple users into installing a free VPN app that comes with serious privacy implications.
Hackers threaten to wipe Apple devices
According to a report from Motherboard, a group of hackers calling themselves “Turkish Crime Family” is threatening to remotely erase devices belonging to hundreds of millions of Apple customers. They will do this on April 7, they say, if Apple doesn’t pay them a ransom.
Two new Mac backdoors discovered
On Valentine’s Day, Mac users got a special “treat” in the form of new malware. Now, weeks later, there are signs of yet another piece of malware looming. This brings the count of malware (as opposed to adware or other threats) discovered for macOS this year up to 4, in only two short months.
Calendar spam on Apple systems
Update (12/13/2016): Apple has added a Report Junk link on iCloud.com, to allow you to report these spam events as junk. Use this feature to remove the events at this point. It is a good bet that Apple will add a similar option to the Calendar app on macOS and iOS in a future update….