Tag Archives: Mac OSX

DylibHijack- Dylib Hijack Scanner

apple-vuln

DLL Hijacking a technique that is widely used by malware writers, this to infect users , launch certain applications or make a privilege escalation. some of the tools that you can use to detect DLL hijacking on windows are: CrowdInspect

OSXCollector- Forensic collection & analysis toolkit

OSXcollector

OSXCollector is an information gathering and analysis toolkit that you can use for running a forensics against OSX based operating systems. the toolkit include a number of python scripts that create JSON file with information about the targeted system if

Tech support scam targets Mac users

Technical support services are very popular among all tech users while this may assists in resolving some complex problems on the other hand they are used by scammers. Malwarebytes security researchers are alerting over this week of an increase in

Volafox Mac OS X Memory Analysis Toolkit

Volafox is an open source toolkit that you can use for Mac OS X and BSD forensics. The tool is a python based and allows investigating security incidents and finding information for malwares and any malicious program on the system.

Beware of OSX/KitM Mac Spyware

Security researchers at F-Secure Lab reported the discovery of new forms of malicious code named KitM, the malware targets Mac OS X operating system. KitM (Kumar in the Mac) is also known as HackBlack and is a kind of backdoor,

SUDO Auth Bypass Vulnerability

Authentication bypass vulnerability has been discovered in sudo utility, the affected versions are Sudo 1.6.0 through 1.7.10p6 and sudo 1.8.0 through 1.8.6p6 inclusive. The security bug allows an attacker with a physical access to run commands without user’s password. UNIX sudo

Mac Users Vulnerable to Blackhole Exploit Kit

New malicious software has been reported by F-secure that are running on Mac OSX a virus free operating system, the discovered malware is a Trojan horse that are exploiting vulnerability in oracle java component CVE-2012-0507. Flashback code observed by F-secure