Lucene search
K

15 matches found

Malwarebytes
Malwarebytes
added 2023/02/01 11:0 a.m.16 views

GitHub revokes several certificates after unauthorized access

In a call to action, GitHub warned users of GitHub Desktop for Mac and Atom that it will revoke certificates which were exposed during unauthorized access to a set of repositories used in the planning and development of GitHub Desktop and Atom. Revoking these certificates will invalidate some...

1.4AI score
Exploits0
The Hacker News
The Hacker News
added 2023/01/31 3:37 a.m.28 views

GitHub Breach: Hackers Stole Code-Signing Certificates for GitHub Desktop and Atom

GitHub on Monday disclosed that unknown threat actors managed to exfiltrate encrypted code signing certificates pertaining to some versions of GitHub Desktop for Mac and Atom apps. As a result, the company is taking the step of revoking the exposed certificates out of abundance of caution. The...

1.7AI score
Exploits0
The Hacker News
The Hacker News
added 2021/02/22 7:47 a.m.150 views

New 'Silver Sparrow' Malware Infected Nearly 30,000 Apple Macs

Days after the first malware targeting Apple M1 chips was discovered in the wild, researchers have disclosed yet another previously undetected piece of malicious software that was found in about 30,000 Macs running Intel x8664 and the iPhone maker's M1 processors. However, the ultimate goal of th...

0.8AI score
Exploits0
ThreatPost
ThreatPost
added 2020/07/22 9:8 p.m.44 views

Apple Security Research Device Program Draws Mixed Reactions

Apple’s long anticipated Security Research Device program has launched, giving select security researchers access to testable iPhones that will make it easier for them to find iOS vulnerabilities. The program offers security researchers specially configured iPhones with shell access, and special...

7.5AI score
Exploits0References4
The Hacker News
The Hacker News
added 2019/06/25 12:30 p.m.96 views

New Mac Malware Exploits GateKeeper Bypass Bug that Apple Left Unpatched

Cybersecurity researchers from Intego are warning about possible active exploitation of an unpatched security vulnerability in Apple's macOS Gatekeeper security feature details and PoC for which were publicly disclosed late last month. Intego team last week discovered four samples of new macOS...

1.3AI score
Exploits0
seebug.org
seebug.org
added 2017/12/01 12:0 a.m.158 views

macOS High Sierra - Root Privilege Escalation (CVE-2017-13872)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Mac OS X Root Privilege Escalation', 'Description' = %q This module exploits a serious flaw in MacOSX High Sierra. Any user can login with user...

9.3CVSS7.9AI score0.36886EPSS
Exploits6
ThreatPost
ThreatPost
added 2017/08/09 2:25 p.m.25 views

Signed Mughthesec Adware Hijacking Macs for Profit

A variant of an older piece of adware built for Macs called OperatorMac has been seen in the wild, and while like most adware it tries to turn a profit, it also illustrates some defensive shortcomings native to Apple’s ecosystem and the industry. Components of the new strain, which is called...

7.5AI score
Exploits0References4
Openbugbounty
Openbugbounty
added 2016/04/11 3:0 p.m.11 views

forums.developer.apple.com XSS vulnerability

Vulnerable URL: https://forums.developer.apple.com/community/beta/os-x-10114-beta/tags?tags=%22%3E%3C/option%3E%3C%20/select%3E%3Cbody/onpageshow=prompt%28%29%3E%22%3E%3Csvg/onload=prompt%28/XSSPOSED/%29%3E Details: Description| Value ---|--- Patched:| Yes, at 28.07.2016 Latest check for patch:|...

6.3AI score
Exploits0
ThreatPost
ThreatPost
added 2016/03/31 10:41 a.m.14 views

SideStepper iOS MDM Security Attack

Apple’s Developer Enterprise Program has been abused in the recent past to push malicious apps onto iOS devices, most notably with the WireLurker, XcodeGhost and YiSpecter attacks. In all three cases, attackers legitimately obtained certificates under the program, which is available to enterprise...

1.1AI score
Exploits0References4
ThreatPost
ThreatPost
added 2016/02/23 11:40 a.m.24 views

Rogue Chinese iOS App Removed from App Store

Apple removed an iOS application from its Chinese iTunes App Store that allowed users of non-jailbroken iOS devices to install pirated and jailbroken apps. Researchers at Palo Alto Networks, who discovered the rogue application, said the app was not malicious, but presented a serious security ris...

6.8AI score
Exploits0References1
ThreatPost
ThreatPost
added 2016/02/05 11:31 a.m.12 views

Scareware Signed with Apple Cert Targets Mac OS X Machines

A unique scareware campaign targeting Mac OS X machines has been discovered, and it’s likely the developer behind the malware has been at it a while since the installer that drops the scareware is signed with a legitimate Apple developer certificate. “Sadly, this particular developer certificate...

1.3AI score
Exploits0References4
ThreatPost
ThreatPost
added 2013/05/22 3:48 p.m.11 views

Mac OS X Backdoor Found in Wild

It was inevitable another sample of the Mac OS X spyware discovered last week would surface. Researchers said today that a German investigator informed its researchers of another instance in the wild. Spread via a spear phishing campaign that’s apparently been circulating since December, the...

1.7AI score
Exploits0References2
The Hacker News
The Hacker News
added 2013/05/17 7:11 p.m.7 views

Apple certified Mac Malware Captures and Uploads Screenshots without Permission

Earlier this week, new Mac spyware was discovered on a computer at the Oslo Freedom Forum, which is an annual human rights conference. Dubbed as OSX/KitM.A, discovered by computer security researcher Jacob Appelbaum. This Mac malware that has been used to spy on activists, targeted via spear...

6.9AI score
Exploits0
ThreatPost
ThreatPost
added 2013/05/17 12:4 p.m.10 views

Researcher Discovers Mac Malware at Anti-Malware Workshop

In an Oslo Freedom Forum workshop offering advice to free speech advocates on how to better secure their devices against government surveillance, security researcher Jacob Appelbaum uncovered a new strain of malware with backdoor capabilities on the Mac machine of an Angolan activist attending th...

1.1AI score
Exploits0References6
The Hacker News
The Hacker News
added 2013/05/17 8:11 a.m.13 views

Apple certified Mac Malware Captures and Uploads Screenshots without Permission

Earlier this week, new Mac spyware was discovered on a computer at the Oslo Freedom Forum, which is an annual human rights conference. Dubbed as OSX/KitM.A, discovered by computer security researcher Jacob Appelbaum. This Mac malware that has been used to spy on activists, targeted via spear...

6.9AI score
Exploits0
Rows per page
Query Builder