Tag Archives: Apple

Posted on Author Atlantic Computer Services Categories Blog

New GIMMICK Malware Targets MacOS Users

If you follow the global threat landscape closely, then you may already be aware of a notorious Chinese hacking collective known as “Storm Cloud.” What few people know is that this group seems to be the driving force behind a new variant of malware that researchers have recently spotted in the wild.

Dubbed “GIMMICK” by the researchers at Volexity who first discovered it, the malicious code seems to be a custom tool designed and built by Storm Cloud specifically to target Mac users.

Once GIMMICK has found its way onto a target system, it quietly installs a trio of malware components called DriveManager, FileManager, and GCDTimerManager.

The DriveManager component gives the malware the following capabilities:

  • Manage the Google Drive and proxy sessions.
  • Maintain a local map of the Google Drive directory hierarchy in memory.
  • Manage locks for synchronizing tasks on the Google Drive session.
  • Handle download and upload tasks to and from the Google Drive session.

FileManager as the name indicates, manages the local directory where particulars relating to the command-and-control server are stored, along with the command tasks necessary for file exfiltration.

Finally, the GCDTimerManager handles the management of the various GCD objects.

The researchers at Volexity had this to say about the malware in their recently published report:

“Due to the asynchronous nature of the malware operation, command execution requires a staged approach. Though the individual steps occur asynchronously, every command follows the same.”

The bottom line is that this is a complex, robust malware strain. The good news is that the fine folks at Apple have found ways to guard against this latest threat.  The company has rolled out new protections to all supported macOS versions with new signatures for XProtect and MRT.

The new signatures that have been available since March 17, 2022 should protect users against GIMMICK. So if it’s been a while since you updated your OS, now is the time to do so.  Kudos to Apple for their rapid response here and to the sharp-eyed researchers at Volexity for spotting the new threat.

0
Posted on Author Atlantic Computer Services Categories Blog

New iOS 15.4 Update Addresses AirTag Stalking Issue

Apple AirTags are handy.  They’re an incredibly convenient way to help keep track of your stuff. If you lose something that has been tagged you can easily locate it using the “Find My” app, which will point the way to whatever it is that you have tagged.

The only problem is AirTags can be misused as well.  It didn’t take long for Airtag Stalking to become a “thing”. Apple took note and relatively swift action.

That’s why as of iOS release 15.4 the company behind the handy tech is putting additional security measures in place.  These include the addition of a new privacy notice that users will see during setup that warns tracking someone via the technology can be considered a crime.

The changes also include an enhancement that allows users to specify when an unidentified pair of AirPods is found traveling with you.  Previously AirPods would generate a generic “Unknown Accessory Alert” which caused confusion among some users.

On top of that Apple has removed the feature that would preemptively disable safety alerts when a tracker is detected in your vicinity. Users will find new tracking notification settings in their Find My app settings.

In addition to the AirTag security features the 15.4 release will include a new American Siri voice that is “less gendered” than the voice assistant’s current options. Other enhancements include a Universal Control feature and Face ID support while wearing masks.

That sounds fantastic but there is one slight wrinkle.  Apple has not yet announced an exact release date for the latest iOS build. Although based on prior releases and the always-active rumor mill, most people are expecting it to get a widespread release sometime in March of this year (2022).

That’s good news indeed for Apple fans and customers especially if you’ve already come to rely on those handy little AirTags.

0
Posted on Author Atlantic Computer Services Categories Blog

Zoom Bug With Some Macs Leaves Microphone On After Meetings

If you’re a Mac user and you also use Zoom be sure to check to see what version of Zoom you’re running.  Recently a bug in the Mac version of the software was found that could cause your computer’s microphone to remain on even after leaving a meeting.

Mac Zoom users have been complaining about the issue since December of last year (2021).

The company responded quickly and explained that the issue was a bug and trying to quell suspicion that it was intentional.  Given Zoom’s past issues with privacy violations, convincing their user base that it was a bug and unintentional was more difficult than it should have been. However the company got to work and have now fixed the issue as of version 5.9.3 which was released in January.

It should be noted that this was the company’s second attempt to fix the problem.  The first attempt was released in December (the same month that the issue was reported) but the fix found in version 5.9.1 didn’t work for everyone.

With the release of version 5.9.3, the company also issued the following statement:

“Zoom has determined that this bug did not result in audio data being transmitted back to Zoom’s platform. As always, we recommend users make sure their Zoom client is updated to the latest version.”

It’s a shame that the company had to issue such a statement but the simple truth is that they did it to themselves with their previous fast and loose policies relating to the privacy of their users.

Considering the suspicion this bug was greeted with and the fact that the company had to bend over backwards here to convince their users that it was a genuine mistake is proof that Zoom still has some work to do to regain the trust of their user base.

In any event check your version number and update as soon as you’re able if you haven’t done so already.

0
Posted on Author Atlantic Computer Services Categories Blog

iPhone Sales Edging Out Android In The US

It’s no secret that supply chain issues have impacted a variety of different industries.  Apple has been somewhat less impacted than others.

Leveraging this and their massive infrastructure and marketing budget, they have flexed their corporate muscles and gained market share.

According to statistics gathered by data analytics firm Kantar, Apple accounted for slightly more than half of all smartphone sales in the US in 2021. They claimed 51 percent of the total sales for the year which is  a 2.7 percent increase from 2020.

Apple lost ground in Australia, Japan, and Great Britain. Sales surged in Germany (up 5.6 percent to 30.9 percent of the market. Sales were also up 2.2 percent in France to 26.7 percent of the French market, up 1.3 percent in Italy to 19 percent of the market and up an impressive 9.1 percent in China, to 25.7 percent of the market.

The increase in the Chinese market alone more than made up for the losses we mentioned and the company is forecasting strong demand going forward for the iPhone 13.

Bear in mind that when looking at these figures, we’re comparing Apple’s iPhone sales to the entire Android ecosystem.  That’s how utterly dominant the company is in the smartphone market, and that’s amazing.

It gets even better for Apple because their next generation iPhone SE is generating a tremendous amount of industry buzz and excitement. It will likely allow Apple to widen their lead on the Android ecosystem.

If you’re a fan of Apple and their products, this is great news indeed.  It’s hard to believe that the company was at one time verging on bankruptcy.

Even if you’re not a fan of Apple, you must admire the company.  Their customers are more than just customers. They are diehard fans of not only the company itself, but of every product the firm makes.  Anyone in any industry would kill to have customers half as loyal as Apple’s.

0
Posted on Author Atlantic Computer Services Categories Blog

Mac Malware Is Becoming A Bigger Threat For Users

In late 2020 a new strain of malware called UpdateAgent appeared and began infecting Mac users.

Initially the strain wasn’t all that worrisome.  It stole system information but it was by no means the worst threat on a Mac user’s radar.

Since that time, the hackers behind the malicious code have been busy. UpdateAgent has received a few developments, with each one adding a new element of danger to the equation.  As things stand now UpdateAgent should be considered a serious threat to Mac users.

As of its latest iteration UpdateAgent installs an annoyingly persistent adware strain called Adload. It has gained capabilities that make it easy for UpdateAgent to install other even more threatening and damaging payloads in the future.

Microsoft has been investigating and following the development of UpdateAgent.  The company has discovered that the hackers who created the strain are hosting a wide range of other payloads on Amazon Web Services’ S3 and CloudFront services. While these have not yet been tied to UpdateAgent, it’s a clear sign of the shape of things to come.

In addition to that, the code is now capable of fetching compressed zip files instead of .dmg files. It has been modified to prevent Gatekeeper from displaying pop-up warnings to users.  It can also inject persistent code inside background processes that are invisible to the user.

Microsoft had this to say about their study of the malware strain:

“UpdateAgent is uniquely characterized by its gradual upgrading of persistence techniques, a key feature that indicates this trojan will likely continue to use more sophisticated techniques in future campaigns. 

Like many information-stealers found on other platforms, the malware attempts to infiltrate macOS machines to steal data and it is associated with other types of malicious payloads, increasing the chances of multiple infections on a device.”

If UpdateAgent wasn’t on your radar before it certainly belongs there now.  It’s one to watch  out for in the year ahead.

0
1 2 3 4 5 6 18