Apple OS X Java Update

Apple have released an update that fixes the Flashback Trojan vulnerability:

Got to Software Updates and install it as soon as possible -

This Java security update removes the most common variants of the Flashback malware.

This update also configures the Java web plug-in to disable the automatic execution of Java applets. Users may re-enable automatic execution of Java applets using the Java Preferences application. If the Java web plug-in detects that no applets have been run for an extended period of time it will again disable Java applets.

This update is recommended for all Mac users with Java installed.

For details about this update see: http://support.apple.com/kb/HT5242

Posted on April 13, 2012 by Jonathan Green and tagged Apple Flashback Mac OSX Malware Vulnerability.

Apple OSX Security Update

Apple has today released Security Update 2010-004 and Mac OS X v10.6.4.

Please go to Software Updates on your Mac to download.

Posted on June 16, 2010 by Jonathan Green and tagged Apple Mac OSX security updates.

Mac OSX Security Update Available

Apple have a released security update 2010-003 which is recommended for all users and improves the security of Mac OS X.

Please go to Software Updates to download

Posted on April 15, 2010 by Jonathan Green and tagged Apple Mac OSX security updates.

Apple Quicktime Exploit

There is a known (but already patched) vulnerability the affects the following versions of Apple OSX and Quicktime:

Apple QuickTime Player 7.6.5
Apple QuickTime Player 7.6.4
Apple QuickTime Player 7.6.2
Apple QuickTime Player 7.6.1
Apple QuickTime Player 7.6
Apple Mac OS X Server 10.6.2
Apple Mac OS X Server 10.6.1
Apple Mac OS X Server 10.6
Apple Mac OS X 10.6.2
Apple Mac OS X 10.6.1
Apple Mac OS X 10.6

BUT this has already all been patched in the latest Apple 10.6.3 update. Therefore, if you didn't update your Apple OS last week, please go ahead and do so without delay.

Products that are NOT vulnerable are:

Apple QuickTime Player 7.6.6
Apple Mac OS X Server 10.6.3
Apple Mac OS X 10.6.3

The news here is to always stay current with all software updates.

Posted on April 8, 2010 by Jonathan Green and tagged Apple Mac OSX Quicktime Vulnerability.

How secure is your Mac?

Security expert Charlie Miller is due to disclose how he found 20 zero day Mac vulnerabilities at next weeks CanSecWest security conference.

Miller will stop short of exposing the actual vulnerabilities.

In a great analogy about PC security, Miller compared the Mac to a remote farmhouse without locks, suggesting that it's still a 'remote' enough platform to not be 'found' but is actually inherently insecure.

The days of safe Mac computing may well be numbered. We all expect the targeting to increase as the Mac's market share increases.

It's only a matter of time, but as long as you remain security conscious, the Mac is still currently the safest platform.

Posted on March 20, 2010 by Jonathan Green and tagged Apple Mac OSX vulnerabilities.

Adobe releases security update for Reader & Acrobat

This new bulletin, APSB10-07, is a security update for Adobe Reader and Acrobat. These updates address two
critical vulnerabilities. Exploitation of these vulnerabilities may allow an attacker to execute arbitrary code, make unauthorised cross-domain requests, or cause a denial-of-service condition.

We advise you to update Adobe Reader and Acrobat (all platforms)

Please see our previous post for updates to Adobe Flash

Relevant Url:
http://www.adobe.com/support/security/bulletins/apsb10-07.html

Posted on February 16, 2010 by Jonathan Green and tagged Acrobat Adobe Mac OSX Reader Windows.