macOS High Sierra 10.13.4, Sierra and El Cap Security Update 2018-002, and Safari 11.1 released (updated)

Overnight (UTC), Apple has released the update to High Sierra 10.13.4, Safari 11.1, and security updates to El […]

Last Week on My Mac: Should Apple have warned users of a vulnerability?

Did Apple keep quiet for more than 3 months about the leak of encryption passphrases into High Sierra’s log files?

macOS High Sierra 10.13.3 still leaks encryption passwords in plain text

I previously described a serious vulnerability in macOS High Sierra versions to 10.13.1 which was discovered by Sarah […]

Is the unified log private, or a vulnerability?

How good is the new unified log’s privacy? Does it live up to Apple’s goal of designing privacy into the system, or is it easily beaten? And how did passwords leak into the log?

Another gaping security hole in High Sierra APFS disk encryption (updated)

Congratulations to Sarah Edwards for unearthing a security vulnerability in macOS 10.13 High Sierra, in which copies of […]

Last Week on My Mac: Talking the same language

We eradicated smallpox, and are on the verge of doing the same to polio. Simple lessons on naming and communicating extend to macOS malware, and Apple’s role.

Apple has also pushed an update to MRT (updated)

Following yesterday’s pushed update to XProtect, Apple has overnight pushed an update to its malware removal tool MRT, […]

Apple has just pushed an update to XProtect’s security data

Apple has just pushed an update to the configuration data for its XProtect tool, which detects malware on […]

What to do when a secure connection fails

You go to connect to a website at an HTTPS address. When it can’t establish the secure connection you expect, your browser warns you. What do you do next?

Apple has updated Gatekeeper configuration data

Apple has today pushed an update to Gatekeeper configuration data, which should have been silently installed on your […]