backtop


Print


Mac security researcher Dino Zovi has found a major flaw in OS X that allows hackers to steal users credit card numbers and more. States Mr. Zovi, "Writing exploits for [Microsoft] Vista is hard work. Writing exploits for Mac is a lot of fun."  (Source: Flickr)
OS X continues to fall short of its security reputation

Many Mac owners live under the assumption that their computers will never be attacked.  While that statement may hold some truth -- most fail to understand why.  Rather than realizing that the relatively safety is afforded by Apple's still small market share, they believe that the security is somehow owing to an inherent security superiority in their operating system of choice, OS X, a sentiment echoed in Apple's sarcasm-laden "Get a Mac" commercials.

However, in reality Apple's security implementation, both on an OS and an application level is often lacking.  It took Apple a year to patch a glaring hole in its OS X Java implementation.  A major hole allowing SMS binary messages to execute code as root in the iPhone also went unpatched for over a month.  Apple's OS X-toting iPhone's encryption scheme was declared laughably useless by a security expert and even Apple seems to acknowledge that its security may be lacking, warning that its iPhone can easily be hacked and used as a terrorist weapon.

Now leading Mac researcher Dino Dai Zovi has unveiled a new attack at the chic Black Hat security conference in Las Vegas.  The new technique allows hackers to take control of OS X machines and steal data from them that is supposed to be encrypted. 

All the technique needs is access to the memory.  A few lines of code will give the attacker access to the root memory, which is then written to establish a TCP connection, allowing the hacker to download malicious files and control the computer remotely.  Mr. Zovi demonstrated how the attack can be used to hijack Apple's Safari browser, stealing encrypted data from a user's bank accounts.

He states, "There is no magic fairy dust protecting Macs.  Writing exploits for [Microsoft] Vista is hard work. Writing exploits for Mac is a lot of fun."

Security experts predict that the interest and the means are finally coming together that could make for the first serious malware attack on Mac computers.  With hackers cooking up a new wave of Apple-catering malware many predict that the attacks will catch the community of millions of Mac users in the U.S. unaware.  States Joel Yonts, another Mac security expert at the conference, "When the malware authors put out something that's really sophisticated we are going to have a whole population that is really vulnerable."

Apple has not released a comment about the flaw or announced any plans to patch it.





"Let's face it, we're not changing the world. We're building a product that helps people buy more crap - and watch porn." -- Seagate CEO Bill Watkins






Most Popular ArticlesSuper Hi- Vision Will Amaze the World
January 16, 2017, 9:53 AM
Samsung Chromebook Plus – Coming in February 2017
January 17, 2017, 12:01 AM
Samsung 2017 Handset’s Updates
January 17, 2017, 12:01 AM
Comparison – Surface Pro VS Tbook X5 Pro
January 21, 2017, 7:00 AM
Comparison – iPad Mini Vs Huawei MediaPad M3
January 19, 2017, 2:08 AM

Latest Blog Posts
Some new News
Saimin Nidarson - Jan 23, 2017, 8:59 AM
What is new?
Saimin Nidarson - Jan 22, 2017, 7:00 AM
News
Saimin Nidarson - Jan 20, 2017, 7:00 AM
News of the World
Saimin Nidarson - Jan 19, 2017, 7:00 AM
Some tips
Saimin Nidarson - Jan 17, 2017, 12:16 AM
News of the Day
DailyTech Staff - Jan 16, 2017, 12:10 PM
Tech News
Saimin Nidarson - Jan 15, 2017, 12:32 AM
Here is Some News
Saimin Nidarson - Jan 14, 2017, 12:39 AM
News around the world
Saimin Nidarson - Jan 12, 2017, 12:01 AM
Rumors and Announcements
Saimin Nidarson - Jan 11, 2017, 12:01 AM
Some news of Day
Saimin Nidarson - Jan 7, 2017, 12:01 AM
News 2017 CES
Saimin Nidarson - Jan 6, 2017, 12:01 AM






botimage
Copyright 2017 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki