macOS users aren't as safe as they think they might be—there's a new strain of malware going around that infects devices, fakes bank websites, and steals credentials. It's a dangerous strain of the OSX/Dok malware and it goes deep into macOS's configuration to prevent its removal.Must Read:How to send long videos from iPhone ?
OSX/Dok cases found in the wild have surged in the past few weeks according to Check Point Software Technology's malware team, who say it's only likely to become more of a threat due to the aggressive Apple certificate buying activities of the malware's creators.
Apple's computers are generally considered more secure than their Windows competitors, but this malware is proving that no one is exempt from the security concerns of the modern age.Must Read:How to delete icloud account without password ?
OSX/Dok: What it does
OSX/Dok was initially discovered in May 2017. Back then it was only known to be spying on web traffic and stealing website credentials, but this newly discovered mutation is actively redirecting traffic to a command and control (C&C) server that spoofs bank login pages in the attempt to harvest user information.Must Read:How to erase iPhone without password?
When a computer gets infected, OSX/Dok goes to work disabling security updates and redirecting traffic to Apple servers (and others like Virustotal.com, the only known antivirus platform that detects it) back to the local machine. In this way the malware hides itself and prevents updates that can remove it or stop its operation.Must Read:How to get more storage on iPhone?
SEE: Security awareness and training policy (TechRepublic)
After embedding itself, OSX/Dok downloads TOR and establishes a connection through the dark web to its C&C server, which it accesses using Onion routing. The malware also uses TOR to trace the physical location of the IP address of the infected computer in order to customize its attack. An infected machine from Switzerland, for example, had a proxy setup that redirected common Swiss bank websites to a local proxy and then through to the C&C server.
The C&C server contains a variety of spoof banking websites that try to trick the user into signing in, as well as downloading a mobile app and providing their smartphone number. It also prompts the user to install a legitimate secure messaging app called Signal, though no one knows what its purpose is yet.
OSX/Dok is also able to bypass Apple's GateKeeper, which is designed to stop installations from apps that don't have a legitimate Apple developer certificate. The malware's developers are doing this by buying huge quantities of certificates and attaching them to the malware. Apple is cancelling them as fast as it discovers which ones have been compromised, but Check Point says it's discovering new ones on a daily basis.Must Read:How to put mp3 on iPhone ?
The one bright spot in the OSX/Dok outbreak
There isn't much good to say about this rather sophisticated malware except for one thing: It's spreading through phishing emails and requires the user to download and run an executable to install it. As long as users aren't falling for the phish there's nothing to worry about.
SEE: Certified Information Systems Security Professional (TechRepublic Academy)
It falls to IT professionals to make users aware of threats like OSX/Dok, which lacks the ability to spread when a user isn't tricked into installing it. Once the infection gets hold of a computer it's a completely different, and much trickier, problem.
Apple may be continuing to revoke certificates compromised by OSX/Dok, but it has yet to issue a security upgrade that will prevent it from bypassing Gatekeeper.
Be sure you're keeping all the macOS machines on your network up to date and keeping an eye on ones that aren't able to do so—those machines may already be infected.
Top three takeaways for TechRepublic readers:
A new, more dangerous form for of OSX/Dok is infecting macOS machines. Its objective is stealing banking account credentials.
The malware is able to bypass macOS Gatekeeper by using stolen developer certificates. Apple is revoking certificates as soon as it is made aware of their theft, but more are being discovered every day.
Machines are being infected through a phishing campaign that prompts users to download a zip file that contains an infected executable. IT professionals should inform their users of the OSX/Dok outbreak and ensure that they aren't opening suspect messages.
iOS 12 Beta Problems & Fixes for iPhone, iPad and iPod Touch 2018 Update
iOS 12 introduces several significant new features like Memoji, Siri Shortcuts, Screen Time for keeping track of the time you're spending on your iOS devices, Group FaceTime with up to 32 people, new parental controls, ARKit 2.0, and more.
Along with all of the major additions, there are dozens of smaller, more hidden features. In our latest YouTube video, we've pulled out several of the most useful, less well-known features that are included in the iOS 12 update.
iOS 12 Developer Beta 4 Problems and its Solutions
Apple announced Shortcuts App in iOS 12 Developer Preview but No-Shortcut App in the iOS 12 Developer Beta in Beta. So you will have to wait till next Beta.
iOS 12 Beta 4
New Features & Changes
Toggles now have a bolder outline
New “Suggested photos” and “Suggested effects” in the For you tab of the Photos app
New Issues in iOS 12 Beta 4 Developers
An error message might appear while attempting to install an app
The cellular signal status bar indicator on iPhone X might be inaccurate while on the Lock Screen or the Home Screen
Screen Time: Usage data and settings might not sync between devices
Siri Shortcuts might not work while using CarPlay, on HomePod might result in an error message, might not be restored from iCloud backup, might not work if a device is locked, and might be delayed or result in an error message
Field Test mode crashes to home screen if you try for 2nd time (iPhone X Qualcomm Modem) Try dialing *3001#12345#*
Video thumbnails in Photos app may be blank.
iOS 12 Beta 3
New Features & Changes
New “Apple Maps” map data in San Francisco Bay Area
Added “Share My Location” in Apple ID (#100)
Redesigned Voice Memo app on iPad
Photos app only shows
list of categories your photos belong to (no longer a huge list with 0 photos).
New animation when 3D touching ‘Clear All Notifications’ (Video) and available on non-3D Touch devices
Slight tweak to CC background blur intensity
Battery graph now shows when you were in Low Power mode
Ability to clear a notification with one swipe like iOS 11
Watch app shows the only Siri face as a new Siri watch face and list apps that
supports this watch face
Added more customization options for Memoji on iPhone X
Location Services setting shows “Location Services settings also apply to your Apple Watch”
Removed Do Not Disturb in System Services under Location Services setting
Safari Suggestion Autofill UI returned to beta 1 (#210)
Ability to 3D Touch on the Now Playing bar in Podcast app
Wallpaper gradient returns
New “screen time” no longer removes the little microphone when using stock keyboard, even when “Siri and dictation” is turned off.
New Issues Discovered of iOS 12 Beta 3
Calendar: While in Day view, an event might appear on an unexpected date
A “No SIM” notification might be displayed when restarting iPad if an Apple SIM is inserted with no active data plan
Your device might not register for iMessage and FaceTime using your phone number
Your device’s phone number might not be displayed in Phone > Contacts
The Cellular Data section in Settings > Cellular might refresh continuously
Screen Time data might not synchronize across iOS devices
Get Here: Fix iOS 12 GPS Problems
Remaining Issues in iOS 12 Beta 3
Activity: The route map for a workout might be unavailable
Inviting iOS 11 users who have multiple email addresses associated with their Apple ID to a home might not succeed
Certain languages may exhibit clipped or misaligned layout or display unlocalized text
Group FaceTime calls cannot be initiated between iOS 12 beta 3 and the first iOS 12 beta release
iPod touch (6th generation), iPhone 5s, iPhone 6, iPhone 6 Plus, iPad mini 2, iPad mini 3, and iPad Air support only audio (no video) during Group FaceTime calls in iOS 12 beta
In iOS 12 beta, Camera Effects in Messages is available only on iPhone SE and iPhone 6s or later and is unavailable on iPad. Camera Effects in FaceTime is available only on iPhone 7 or later and is unavailable on iPad
Wi-Fi calls might end unexpectedly when transitioning from Wi-Fi to cellular while on the T-Mobile network
Adding shortcuts to Siri might fail for shortcuts with images in PDF format
Siri Suggestions for Shortcuts are enabled on iPhone 6s or later, iPad Pro, iPad (5th generation or later), iPad Air 2, and iPad mini 4
Voice Memos don’t sync to iTunes
The wallet might unexpectedly quit on launch
3-second delay when trying to open an app from the Dock after swiping up on SpringBoard to go to
home screen (when on page 2, 3 etc)
Third Party Apps Issues New Issues
Fortnite might unexpectedly quit during use
Remaining Issues
Clash Royale bug on iPhone X only; Open Clash Royale, Go to card collection but nowhere else, set your brightness to zero. It will start to stutter. You can make it smooth again using multiple methods; 1. start screen recording, 2. increase brightness, or 3. enable smart invert. Sometimes, making a screenshot will trigger the lag as well as getting a notification; this will sometimes either stop or start the stuttering
Auto-Lock screen doesn´t work in iBooks neither in normal and Power Save Mode.
Netflix might unexpectedly quit when downloading a video
Resolved Issues
Some EA games (Real Racing 3, Sims 3 Free Play) might unexpectedly quit on launch
Some users might be unable to log in to or view account information in the Bank of America app
Citi Mobile might unexpectedly quit on launch
Untapped 3.3 resolves the issue of being unable to log in or load the app
Taobao might unexpectedly quit on launch
Twitter might display a blank login screen
Skype might unexpectedly quit after logging in
If you ever lost or accidentally deleted data from your iOS device, you can use the professional Gihosoft iPhone Data Recovery software to retrieve important data from iPhone, iPad or iPod Touch even without backup.
Jihosoft iPhone Backup Extractor Extract and recover all types of data from iPhone backup files, such as camera roll photos, videos, SMS, contacts, reminders, WhatsApp, and etc.
Source: Macrumors
iOS 12 Beta bugs Discovered
iOS 12 Beta 1 Personal Hotspot feature might won’t work for everyone.
Screen Time Info Grayed out– There are some of the iPhone X users reporting that Screen Time toggle or button not showing up!
Dictionary feature is not available in iOS 12 Beta 1.
iPhone X keeps restarting in iOS 12 Beta while launching certain Apps like Camera App, Settings App etc.
Keyboard suggestions words overlap with each other in certain iOS 12 Apps.
Pandora Music app is broken in iOS 12 beta 1.
Video Chat Skype app might force quite after logging in.
Notification badge icon can’t work properly for many Apps.
The iOS 12 new Effects are not working in the Camera app in Messages.
Certain mobile banking apps are not working Accurately.
Fortnite Mobile Game won’t work properly under iOS 12 beta for now.
Third Party Navigation App integrates into CarPlay in iOS 12: in iOS 12 beta 1 neither Google Maps nor Waze appeared in CarPlay.
Popular EA games like Real Racing 3 probably crash after first time launching.
There’s a keyboard glitch in Facebook Messenger if you switch between conversations.
Cellular/ Mobile data icon is shown on Wi-Fi only iPads.
Scanner pro and Notability App these both apps are broken and crashes after launch
Animoji won’t work in FaceTime
iOS 12 beta widget issue – weather widget not showing up when you disable DND while Sleeping
FaceTime Video effects crashing
Fortnight Mobile crashes on iPhone X but it running smoothly on iPad iOS 12
Safari suggestions are not working on certain iPhone, iPad and iPod Touch.
Fix iOS 12 Beta Apps Crashing
Don’t forget to bookmark this page, I’m sure that I’ll update this page twice in a day for iOS developers and iOS 12 Public beta testers. More, if you found in new iOS 12 features, changes, and glitches then Comment us! Thanks for your support.
No comments:
Post a Comment