First of two articles – this looking at how quarantine works for apps and other executables, details of the flag itself, how it behaves, and more.
Apple has pushed an update to the ‘Yara’ data files used by XProtect, bringing its version number to […]
How the quarantine flag for apps and that for docs opened in sandboxed apps differ, and why there are now so many quarantine flags to trip us up.
Have you noticed quarantine flags appearing on movies and PDFs which have never been downloaded? Here’s a possible explanation.
Can you get malware in PDF? How far can you trust a PDF, or could it be a forgery? How to sign PDFs, and what data may remain hidden inside them.
Eighteen new apps for free download – it hasn’t been a bad year. But Apple needs to fix its App Store, as well as delivering new iMacs and the Mac Pro in 2019. And did I mention security?
The differences between a full Gatekeeper check, an AMFI check for integrity, and a normal app open, and why signature errors can be tolerated.
Apple appears to be maintaining MRT, but hasn’t changed detection signatures in XProtect for 9 months. What does this mean for the security of macOS and its users?
Apple has just pushed an update to the ‘Yara’ data files used by XProtect, bringing its version number […]
What may be a robust strategy for security in macOS 10.15 might leave many users of older versions stranded. This needs discussion.