recent posts

Web Fraud 2.0: Distributing Your Malware
Opera Update Plugs Multiple Security Holes
Web Fraud 2.0: Digital Forgeries
Web Fraud 2.0: Validating Your Stolen Goods
Web Fraud 2.0: Cloaking Connections

Stories by Category

Stories By Date

related links

The Archives
Security Fix Live: Web Chats
About This Blog
Password Primer
7 Security Tips
Technology Section

syndicate

About This Blog   |   Archives   |   RSS Feeds RSS Feed   (What's RSS?)

Apple Releases Tiger, Leopard Security Updates

Apple is pushing out updates to plug at least 10 different security holes in computers powered by its Tiger (OS X 10.4.x) and Leopard (10.5.x) operating systems. Mac users can grab the latest patches via Software Update or directly from Apple Downloads.

One of the updates fixes eight vulnerabilities in OS X Leopard and Leopard Server. The other patch plugs four security holes in OS X Tiger. Among the more interesting flaws corrected in the Leopard release involves a problem with the way Apple's built-in Launch Services interacts with Time Machine, a slick new system backup utility included in Leopard. Launch Services lets users open applications, files or URLs in a way similar to the Finder application on OS X. Apple says that even when an application has been uninstalled from the system, Launch Services may allow it to be started if it is still present in a Time Machine backup.

In the Tiger roundup, Apple finally fixed one of the few remaining unpatched vulnerabilities detailed in last year's Month of Apple Bugs project. Researcher Kevin Finesterre, whom Apple credits for discovering this flaw, says he first reported the vulnerability to Cupertino in August 2006. Sample instructions showing would-be attackers how to exploit this vulnerability to break into Macs have been available online since Jan 17, 2007.

By Brian Krebs |  February 12, 2008; 10:20 AM ET New Patches
Previous: Hackers Exploit Adobe Reader Flaw | Next: Microsoft's Valentine: 17 Security Updates

Comments

Please email us to report offensive comments.



And how far behind are they on Java patches since Apple decided to include that wonderful program in their OS? (You can't get patches directly from Sun for Mac OSX)

And this is sure to stir up a hornets nest!
Macs Need Security Software Too
http://www.foxnews.com/story/0,2933,330363,00.html

"Mac users are human, aren't they? So how could their computers not be at risk? And what protects them?

If they listen to most tech magazines, pundits, and other Macophiles -- nothing.

These guys tell Mac users that one good reason to buy a Mac -- instead of a PC -- is that you don't need to waste money on security software.

In other words, Mac users have no security software installed and protect themselves by using nothing but good, old-fashioned common sense."

"Mac users are not invulnerable."

Posted by: TJ | February 12, 2008 5:48 PM

Since TJ brought it up: Yes Macs are not immune to virus attacks, but not as vulnerable as Windows boxes because:
1. The monetary incentive for the malware writers is not there.
2. It is harder to write a virus for OS X than for Windows
3. The typical Mac user is less likely to expose themselves to sources of viruses.

I have had my Macs online 24/7 for 4 years without virus protection and never gotten a virus. How many PC users can say that? Anybody know what the percentage of botnet machines are Macs? I'd like to know!

Posted by: CatEx | February 13, 2008 7:19 PM

Common sense is the same whether it's
on a Mac or a PC. Among other things:

1) Set up separate administrative and
user accounts. Use the latter for
everything except maintaining the
machine's OS and applications.

2) Don't install anything that you
don't need, and check the source
before installing.

3) Use a NAT router in your home
network setup.

etc.

Posted by: little brother | February 14, 2008 2:24 PM

D-uh? Thank you for stating the obvious. Sounds more like a dig at "...an angry horde of Mac nuts... er, I mean lovers."

Posted by: Alan | February 16, 2008 12:39 AM

CatEx brought up some very valid points that need to be addressed ...

1. The monetary incentive for the malware writers is not there. True, as only 7% of the computers in the world are Macs. How many are in Big Business?

2. It is harder to write a virus for OS X than for Windows. What makes it so hard? When Leopard was first released, it had dozens of security holes. Nothing is hard if a hacker sets out to exploit a vulnerability.

3. The typical Mac user is less likely to expose themselves to sources of viruses.
Do Mac users web browse? open emails? download files? So what makes them less likely to expose themselves?

Yea, I use Windows, but I also use Linux and have used Macs. It's time Mac Users come off their high horses and realize their not as "superior" as they think they are.

Posted by: Patch99 | February 29, 2008 9:19 AM

The comments to this entry are closed.

 
 

©  The Washington Post Company