New Mac malware, OSX.CreativeUpdate, distributed by MacUpdate site

Did you download and install any Mac software from the MacUpdate site on the first or second of […]

Biometric security and AI: dangerous partners

We can quantitate the risks of cracking conventional passwords. AI-based systems using biometrics are known to be brittle, and to have exploitable blind spots. Can we trust them in security systems?

iCloud Drive has user modes, and tags transferred apps

How the two user modes differ, what iCloud Drive does to files transferred between two different clients, and an apparently unique tag it applies to apps which pass through.

Last Week on My Mac: Apple still loves us

More mitigation for Meltdown and Spectre, EFI updates, and steady progress in High Sierra are all very promising. So where does that put macOS 10.14?

macOS code signing and Gatekeeper ignore extended attributes

Gatekeeper doesn’t seem interested in extended attributes attached to the contents of signed apps – the signature remains valid. Could this be exploited?

When an app or its installer won’t run after download

An odd problem: you try running an old installer and it crashes. There’s nothing actually wrong with the installer, it’s just that the rules have changed.

Restoring order to EFI firmware

Mac firmware had become a real mess, and would have made firmware malware a nightmare. Over the last few months, Apple engineers have at last got a grip.

What is in the El Capitan Security Update 2018-001?

OS X El Capitan Security Update 2018-001 is, I think, the most substantial update to 10.11.6 since 2016, […]

What is in the Sierra Security Update 2018-001?

macOS Sierra Security Update 2018-001 is effectively a minor macOS update which updates a lot of components within […]

macOS updates now available for High Sierra (10.13.3), Sierra, and El Capitan (updated)

Apple has just released updates for macOS. High Sierra has a full update to version 10.13.3, which is […]