A security firm's assessment of the malware protection capabilities that was leaked prior to Friday's release shows that Apple's Snow Leopard won't be chasing down much malware.
A security firm's assessment of the malware protection capabilities that was leaked prior to Friday's release shows that Apple's Snow Leopard won't be chasing down much malware.Mac Security firm Intego, that originally caused the stir when it blogged about Snow Leopard's malware spotting chops, published an overview of the capabilities it uncovered Friday.
Seems to me any vendor that wants a chunk of the soon-to-be growing Apple anti-malware market doesn't have much to worry about for now.
According to Intego, Apple's anti-malware only scans for two Trojans. Now, I'm sure Apple will add more, over time, but it indicates modest ambitions at best. Second, the scanning feature only evalutes a small number of applications: namely Safari, Firefox, Mail iChar, and Entourage (for anyone masochistic enough to use that application).
Intego's overview can be viewed here.
Why not a peep from Apple about this security feature? Probably because viruses don't exist on Macs (don't you know):
And here's a more recent advisement that touts the lack of viruses on the Mac.
Highlighting the addition of anti-malware capabilities would obviously burst the fantasy that OS X is immune to malware.
If you're interested in my mobile security and technology observations, I can be followed on Twitter.
New Best Practices for Secure App DevelopmentThe transition from DevOps to SecDevOps is combining with the move toward cloud computing to create new challenges - and new opportunities - for the information security team. Download this report, to learn about the new best practices for secure application development.
Published: 2017-05-08 unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).
Published: 2017-05-08 A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...
Published: 2017-05-08 Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.
Published: 2017-05-08 Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.
In past years, security researchers have discovered ways to hack cars, medical devices, automated teller machines, and many other targets. Dark Reading Executive Editor Kelly Jackson Higgins hosts researcher Samy Kamkar and Levi Gundert, vice president of threat intelligence at Recorded Future, to discuss some of 2016's most unusual and creative hacks by white hats, and what these new vulnerabilities might mean for the coming year.