mac os x

If an attacker can entice a user to visit an attacker controlled web page, the vulnerable ActiveX control could be invoked to download an attacker-modified package.

Apple today warned that its GarageBand software is leaking users’ Web activity to third parties and advertisers.The company shipped GarageBand 5.1 to plug the hole and advise users to tweak their Safari browser preferences to avoid data leakage.  Here’s the relevant information from Apple’s advisory:CVE-2009-2198: When GarageBand is opened, Safari’s preferences are changed to always [...]

Apple's security has always been a tumultuous area of conversation among Mac and iPhone aficionados. On the one hand, you are always hearing things like "the Mac is easier to break into than Windows 7" or the "iPhone isn't safe enough for Enterprise!" But when has there ever been an outbreak among Apple machines?

read more

LAS VEGAS — A popular laptop theft-recovery service that ships on notebooks made by HP, Dell, Lenovo, Toshiba, Gateway, Asus and Panasonic is actually a dangerous BIOS rootkit that can be hijacked and controlled by malicious hackers.The service — called Computrace LoJack for Laptops — contains design vulnerabilities and a lack of strong authentication  that [...]