Mac - Security Master

21Jun 2023 by webmaster No Comments

Reimagining Reality with Apple Vision Pro: A Revolutionary Leap in Spatial Computing

AI & Automation, Application/Appliance, Best Reads, Cloud & OS Platforms, Futuristic Technologies, Mac

Experience a New Dimension with Apple Vision Pro Apple Vision Pro has arrived, heralding the dawn of spatial computing. With its revolutionary features and cutting-edge technology, it redefines the way you interact with the digital world. Step into a realm where your favorite apps seamlessly blend into your environment, and your space becomes a canvas for boundless possibilities. Say hello to visionOS, Apple’s groundbreaking spatial operating system. Things Should You Know About This high-end virtual reality headset from Apple The Apple Vision Pro is a high-end virtual reality headset from Apple with a range of unique features: Hardware: The Vision Pro uses two chipsets, an M2 and a new R1, to handle regular software and its XR capabilities respectively. It has dual 4K displays that offer roughly 23 million pixels each. The…

16Jun 2023 by Ernest Haberli Jr. No Comments

8 Malicious Python Libraries Found On PyPI – Remove Them As Soon As Possible

Application Security, Application/Appliance, Cloud & OS Platforms, Cyber Attacks, Cyber Security, Mac, Threats & Vulnerabilities, Vulnerabilities, Windows

Researchers identified eight malicious Python libraries on PyPI web portal. According to the report, these packages were downloaded more than 30000 times. However, all the packages were removed from the portal after finding them containing malicious code for stealing credit cards and injecting code. Let’s see more about these malicious Python Libraries. We have been told several times, supply chain attacks are dramatically increasing these days. Because supply chain attacks are hard to identify and easy to compromise, this is quite obvious. People trust the vendor sites to download the packages and install them on their resources, assuming they are secure. To the sad, sometimes attackers succeed in hosting infected packages on the Vendor sites to launch the attack on the customers. This development in the cyber world made people no surprise…

16Jun 2023 by Ernest Haberli Jr. No Comments

How to Patch CVE-2022-3656- A SymStealer Vulnerability in The Google Chrome?

Application Security, Application/Appliance, Cloud & OS Platforms, Cyber Attacks, Cyber Security, Mac, Threats & Vulnerabilities, Windows

In recent years, there has been an increase in attacks involving the use of symbolic links, also known as “symlinks,” to steal sensitive information like cryptocurrency wallets. These attacks can be difficult to detect, as victims never experience any warning or confirmation messages or even realize that anything is amiss. Everything happens under the radar without the knowledge of the victim. We are going to discuss one such recently patched vulnerability in Chromium-based browsers. The flaw, which is tracked under the identifier CVE-2022-3656, is a SymStealer Vulnerability in the Google Chrome browser that allows attackers to covertly steal confidential information from the victim’s computer without leaving any traces behind. Let’s see some of the technical details and how to patch CVE-2022-3656 in this post. A Short Note About Chromium Chromium is an…

15Jun 2023 by Ernest Haberli Jr. No Comments

How to Fix CVE-2023-32784- Master Password Discloser Vulnerability in KeePass?

Application Security, Application/Appliance, Cloud & OS Platforms, Cyber Security, Linux, Mac, Network Security, Vulnerabilities, Windows

KeePass is a popular password management tool that may be used for free and without restrictions. A master Password is the first line of defense for any password management tool. KeePass is no more exception. The whole set of credentials is locked with a single master password. If somebody gains access to the master password, he/she can be capable of unlocking the whole set of passwords. The master password is crustal for any password managers. Security researchers recently disclosed a vulnerability in KeePass that could be abused to construct the master password of the KeePass password database. The vulnerability is been assigned a CVE ID CVE-2023-32784 and a CVSS score of 9.8 on the CVSS scale. We published this blog to create awareness about the newly disclosed master password discloser…

13Jun 2023 by Ernest Haberli Jr. No Comments

How to Patch Four New Vulnerabilities in VMWare Workstation and Fusion?

Application Security, Application/Appliance, Cloud & OS Platforms, Cyber Security, Mac, Pen Testing, Threats & Vulnerabilities, Tutorials, Vulnerabilities

Four new vulnerabilities in VMware Workstation and Fusion have been reported recently. These vulnerabilities are CVE-2023-20872, CVE-2023-20871, CVE-2023-20870, and CVE-2023-20869. The first two vulnerabilities have been reported by Trend Micro’s Zero Day Initiative, while the other two were reported to VMware directly by the researchers who discovered them. In this blog post, you will learn the details of each vulnerability, the products affected by them, and how to patch these in the affected products. A Short Introduction About VMWare Workstation and Fusion VMware offers two desktop virtualization options: Fusion for macOS, and Workstation for Linux and Windows OSes. Both Fusion and Workstation are designed to run desktop virtualization software. Below is a short description for each: VMware Workstation VMware Workstation is a suite of Desktop Hypervisor products to help you run containers, virtual machines, and…

10Jun 2023 by Ernest Haberli Jr. No Comments

How To Investigate An Email ID Using Mosint?

Application Security, Application/Appliance, Cloud & OS Platforms, Cyber Attacks, Cyber Security, Data Breaches, Linux, Mac, Network Security, Threats & Vulnerabilities

Email has become one of the most popular means of communication, especially in the business world. Despite its many benefits, the email also has some disadvantages that can impact productivity and effectiveness. One of the biggest disadvantages is its susceptibility to cyber-attacks. Cyberattacks are becoming more and more common, and email is often the gateway that attackers use to gain access to a company’s network. Once they have access, they can wreak havoc by stealing data, deleting files, or even taking over the entire network. Email IDs are also considered one of the markable Indicators of Compromise (IoCs) in the Cybersecurity landscape. It is not just important to know how to investigate an email ID, however, it is necessary to know. There are several tools and techniques to investigate an email ID,…

10Jun 2023 by Ernest Haberli Jr. No Comments

Protecting Your macOS Device From Atomic macOS Stealer Malware- AMOS Malware

Application Security, Application/Appliance, Cloud & OS Platforms, Cyber Attacks, Cyber Security, Mac, Malware, Threats & Vulnerabilities

It is a known fact that Apple is growing its market in smartphones to mac books by releasing powerful exciting and more productive products over the years. This made threat actors create more malware programs to target Apple’s products. If you have been following cybersecurity blogs or intelligence for a year, MacStealer, RustBucket, and DazzleSpy are a few good examples, which show how threat actors are actively working on macOS exploits. There is a new addition to this list. Atomic macOS Stealer Malware (AMOS Malware). Cyble Research and Intelligence Labs (CRIL) recently uncovered a Telegram channel promoting a new information-stealing malware, dubbed Atomic macOS Stealer (AMOS). This malware is specifically engineered to target macOS users and pilfer sensitive information from their devices. The research team also reveals that the…