Security Alerts & News
by Tymoteusz A. Góral

History
#1134 Little Snitch bug leaves some Mac systems open to attack
Trusted Mac OS X firewall Little Snitch is vulnerable to local privilege escalation attacks that could give criminals the ability plant rootkits and keyloggers on some El Capitan systems.

The Little Snitch firewall vulnerability was found by Synack Director of Research and well-known OS X hacker Patrick Wardle. Affected are 3.x versions of the Little Snitch firewall software released prior to build 3.6.2 running on El Capitan. Wardle did not test versions of Little Snitch released prior to 3.x.

In January, Wardle discovered that the firewall software contained a local escalation of privileges (EoP) vulnerability that any local user (or malware) could exploit. The following month, Little Snitch’s developer Objective Development released the (3.6.2) version of the firewall that fixed the problem.

“This is a serious flaw and an important software update that Little Snitch users could have easily missed,” Wardle told Threatpost.
Read more
#1134 Little Snitch bug leaves some Mac systems open to attack
#1133 Ranscam ransomware deletes victims’ files outright
#1132 xDedic hacked server market resurfaces on Tor domain
#1131 Adobe patches 52 vulnerabilities in Flash Player
#1130 Ransomware 'stopped' by new software
#1129 Billion-dollar scams: The numbers behind BEC fraud
#1128 Now it’s easy to see if leaked passwords work on other sites
#1127 Serious flaw fixed in widely used WordPress plug-in
#1126 How to hack mobile devices using YouTube videos
#1125 BMW Core Web Portal & ConnectedDrive - exploitation of car configurations
#1124 MIT researchers devise new anonymity network following Tor bug
#1123 Google to train 2 million Indian Android developers
#1122 Jigsaw ransomware decrypted, again
#1121 Cisco unveils three DNA network security technologies
#1120 Cisco bolsters cloud security offering with new solutions
History
2017: 01 02 03 04 05
2016: 01 02 03 04 05 06 07 08 09 10 11 12