OS X
Monday review: the hot 23 stories of last week
Just in case you missed any of our stories last week, here's a little recap.
Where are the Safari security updates for Windows and Snow Leopard? Users left exposed
Apple released Safari 6 as part of its new Mac operating system, OS X Mountain Lion, as well as a version for Lion that fixes a whopping 121 security vulnerabilties.
But what about Windows and Snow Leopard? It seems Apple is leaving users of them behind.
Mac malware spies on infected users through video and audio capture
After further analysis, more information has emerged about the Morcut Mac OS X malware which was discovered this week.
Mac malware Crisis on Mountain Lion eve?
SophosLabs recently received a intriguing Mac malware sample, variously known as Crisis and Morcut.
Its appearance so close to the release of Mountain Lion is almost certainly a coincidence - but nevertheless a timely reminder about security if you plan to rush out to get a Mac when the new OS drops later today!
Russian hacker's App Store fraud site adds Mac support
ZonD Eighty, the Russian hacker who brought App Store fraud to unjailbroken iPads and iPhones, has extended his "service" to OS X users.
Mac owners can now join their iDevice brethren in ripping off developers.
Automatic daily security updates coming for OS X Mountain Lion
The new version of Mac OS X, Mountain Lion, is just around the corner and contains a feature which should go down well with security-minded end users.
Ford KeyFree Login - should your smartphone automatically unlock all your passwords?
Where would you go looking for a keyfree login system to get you online to your social networking accounts faster than ever? Ford Motor Corporation, of course.
But do apps of this sort really improve security?
WWDC 2012 keynote highlights Apple security strengths and weaknesses
Apple's announcement about new products at WWDC 2012 was peppered with information related to security and privacy, Joshua Long reports.
Apple update to OS X Lion exposes encryption passwords
Apple has exposed the encryption passwords of FileVault users in the most recent update to OS X Lion. Users are advised to use full disk encryption and change passwords that may have been recorded insecurely.
Oracle discloses new zero day exploit and launches JDK for Mac OS X
Oracle announces the release of Java JDK for OS X Lion and a zero day in its database products that has a proof-of-concept available in the wild.
FLAMING RETORT: All this new Mac malware - whose fault is it?
Flaming Retort is back, this time trying to Coole and Explayne the flames we've had from some Mac users in the past few days.
In a back-to-front way of making Mac fans feel better, I'll start by making everyone feel slightly worse, taking a small potshot at Windows, OS X and Linux fans alike.
Apple patches Java hole that was being used to compromise Mac users
Apple has released an update to Java for OS X patching a recently exploited vulnerability targeting Mac users. Update now to protect yourself - or, better yet, remove Java entirely
Apple's Gatekeeper security feature leaves a lot to be desired
Apple is introducing a new security feature called Gatekeeper in its upcoming OS X 10.8 Mountain Lion release. Read on to find out what it does and how it measures up.
Apple OS X users - it's Security Update time again!
Apple's latest large-scale OS X security updates are out.
In tech-speak, there are 39 fixes, covering 52 CVE identifiers, and including 19 fixes for vulnerabilities potentially allowing arbitrary code execution. That's a lot!
Lost USB keys have 66% chance of malware
We bought a stash of USB keys at a major transit authority's Lost Property auction, and took a look at the sort of information people leave on the train.
Two-thirds of the keys were infected with malware, and nothing on any of the keys was encrypted...
IHC, Mac malware, Nerd New Year, Conficker and Privacy à la Google - 60 Sec Security
Watch the latest security news in just 60 seconds!
Enjoy an IHC T-shirt sighting at Kiwicon; be unsurprised at yet more Mac malware; find out why Nerd New Year wasn't; groan because Conficker just won't go away; and get the feel for Privacy à la Google.
Apple's OS X sandbox has a gaping hole - or not
Argentinian security researchers have publicised what they call a hole in Apple's OS X sandbox. Apple says the sandbox is, strictly speaking, doing what it says on the tin.
The rest of us can't actually see what it says on the tin - so who's right?
FBI Operation Ghost Click takes out DNS Changer malware network operators
The FBI is cock-a-hoop today, having just announced the bust of six Estonians for malware-related cybercrimes.
The case goes back to 2007, with the investigation itself apparently having taken two years.
Apple lets security researcher into App Store, then throws toys out of cot
Security researcher Charlie Miller recently published a YouTube video in which he shows, in his own words, how to break "the App Store [anti-malware] model using a flaw in the iOS code signing enforcement mechanism."
Apple wasn't best pleased!
Bundestrojaner, Sony breach, Duqu, OS X anti-anti-virus, MS hack - 60 Sec Security
Enjoy the latest security news in brief by watching 60 Second Security!
This episode: the German Bundestrojaner controversy, Sony breached (again!), Duqu dubbed "Son of Stuxnet", OS X anti-anti-virus and Microsoft videos hacked.
![Password security infomerical leaves Ellen DeGeneres in disbelief.. and it will you too [VIDEO]](http://sophosnews.files.wordpress.com/2013/04/ellen-thumb.jpg?w=75&h=75&crop=1)
