What should you do if you think you’ve found a security vulnerability in macOS, or an app provided by the App Store? Will you get a bounty?
vulnerability
What to expect from the many changes to security and privacy in the first release of Catalina. How to run non-notarized apps, and more.
Zoom is a popular videoconferencing system, used apparently by about 750,000 companies and several million individuals around the […]
System integrity protection, SIP, is a primary defence for your Mac. Yet it has had several known vulnerabilities. That’s why it’s changing in Catalina.
Has Gatekeeper been bypassed? Disclosed details of what is claimed to be a new vulnerability may not be all that they appear to be.
App signatures are only checked on app first run – it may once have been true, but is no longer accurate. But can you bypass those additional checks? Is this a vulnerability?
Ready to download updates to macOS, iOS, watchOS, Xcode, and some security updates, all at once? It looks like we’re going to be busy next week.
Do you use digital signatures in PDF documents, or do you trust your PDF reader to check them? You could be spoofed into trusting forgeries.
Can you get malware in PDF? How far can you trust a PDF, or could it be a forgery? How to sign PDFs, and what data may remain hidden inside them.
Another worthless piece of “security theatre” about bundle signatures. I wouldn’t bother reading it, or downloading the new version of Signet.
