QNAP customers urged to disable AFP to protect against severe vulnerabilities

NAS device vendors are dealing with several severe vulnerabilities in Netatalk, the open-source implemenation of AFP.

Read more

Update now! Apple patches another actively used zero-day

Apple has patched two zero-day vulnerabilities that were being used in the wild. Users are advised to update as soon as they can.

Read more

Apple fixes Mac bug that could have allowed takeover of webcams and browser tabs

A researcher discovered a way to gain control of both webcams and any open session in Safari. How did they do it?

Read more

Mac users, update now! “Powerdir” flaw could allow attackers to spy on you

Patch now, if you haven’t already, before voyeurs take advantage of Powerdir, a new bypass that removes your privacy.

Read more

Why Macs are the best, according to Mac expert Thomas Reed: Lock and Code S02E23

On Lock and Code this week, we talk to a Mac security expert about why Macs are clearly the best… or are they?

Read more

Could Apple’s new MacBooks signal a change in direction on security?

It’s rare for Apple to walk back changes, but in October its new line of MacBook Pros did just that.

Read more

Shrootless: Microsoft finds Apple macOS vulnerability

Shrootless is a vulnerability found in macOS that can bypass the System Integrity Protection by abusing inherited permissions.

Read more

Inside Apple: How macOS attacks are evolving

Our Apple expert Thomas Reed went to the Objective by the Sea security conference. Here’s what he learned about macOS attacks.

Read more

New Mac malware masquerades as iTerm2, Remote Desktop and other apps

Beware Mac malware passing itself off as the popular power-user tool iTerm2, as well as Microsoft Remote Desktop, SecureCRT, and Navicat Premium.

Read more

Macs turn on apps signed by Symantec, treat them as malware

Apple has called time on dodgy Symantec certificates, causing software like Citrix’s ReceiverHelper to be identified as malware.

Read more

Select your language