Apple mistakenly approved a widely-used malware to run on Macs – TechCrunch:
Apple has some of the strictest rules to prevent malicious software from landing in its app store, even if on occasion a bad app slips through the net. But last year Apple took its toughest approach yet by requiring developers to submit their apps for security checks in order to run on millions of Macs unhindered.
The process, which Apple calls "notarization," scans an app for security issues and malicious content. If approved, the Mac's in-built security screening software, Gatekeeper, allows the app to run. Apps that don't pass the security sniff test are denied, and are blocked from running.
But security researchers say they have found the first Mac malware inadvertently notarized by Apple.
[...] [Patrick Wardle] confirmed that Apple had approved code used by the popular Shlayer malware, which security firm Kaspersky said is the “most common threat” that Macs faced in 2019. Shlayer is a kind of adware that intercepts encrypted web traffic — even from HTTPS-enabled sites — and replaces websites and search results with its own ads, making fraudulent ad money for the operators.
(Score: 1, Funny) by Anonymous Coward on Thursday September 03 2020, @04:11PM (1 child)
Here [pornhub.com] are [pornhub.com] some [pornhub.com] excellent [pornhub.com] links [pornhub.com] to [pornhub.com] more [pornhub.com] information [pornhub.com]. Please [pornhub.com] enjoy! [pornhub.com]
(Score: 3, Touché) by ikanreed on Thursday September 03 2020, @06:05PM
This is like the one website (besides the awful green one we stole the code from) where false links never work on anyone.
(Score: 2) by requerdanos on Thursday September 03 2020, @06:18PM
Is there encrypted web traffic on non-https-enabled sites? I thought those https ones were the sites where the encrypted traffic is happening.
(Score: 1) by HammeredGlass on Friday September 04 2020, @12:21AM
Facebook
Google
Microsoft
etc.