It appears you have not yet registered with our community. To register please click here...

 
Go Back [M] > Madshrimps > WebNews
Bypassing Apple iOS security is easy peasy Bypassing Apple iOS security is easy peasy
FAQ Members List Calendar Search Today's Posts Mark Forums Read


Bypassing Apple iOS security is easy peasy
Reply
 
Thread Tools
Old 27th April 2015, 07:00   #1
[M] Reviewer
 
Stefan Mileschin's Avatar
 
Join Date: May 2010
Location: Romania
Posts: 153,514
Stefan Mileschin Freshly Registered
Default Bypassing Apple iOS security is easy peasy

A security researcher has made the bizarre claim that Apple’s iOS is not the most secure in the world, as the Tame Apple Press insists, and is in fact “as easy as Sunday morning” to hack.

For years, Apple has been telling the world, through its legions of tame journalists, that its security features such as Gatekeeper and XProtect to OS X protect Mac gear completely.

But Patrick Wardle, director of research at Synack said that all of those protections are simple to bypass and hacking a Mac isn’t much of a challenge at all.

Apple claims that Gatekeeper gives users the ability to restrict which applications can run on their machines by choosiing to only allow apps from the Mac App Store. With that setting in play, only signed, legitimate apps should be able to run on the machine.

But Wardle said that Gatekeeper doesn’t verify an extra content in the apps. So if he can find an Apple-approved app and get it to load external content, it will bypass Gatekeeper. Gatekeeper only verifies the app bundle.

Apple’s anti-malware system for OS X still depends on people not writing much malware for the machines. Getting past XProtect turns out to be just as simple as bypassing Gatekeeper. Wardle found that by simply recompiling a known piece of OS X malware, which changes the hash, he could get the malware past XProtect and execute it on the machine. Just changing the name of the malware also lets it sneak in under the fence.

http://www.techeye.net/news/bypassin...-is-easy-peasy
Stefan Mileschin is offline   Reply With Quote
Reply


Similar Threads
Thread Thread Starter Forum Replies Last Post
Apple's fixed a serious OS X security flaw, but only for Yosemite users Stefan Mileschin WebNews 0 13th April 2015 09:14
Google reveals Mac security holes before Apple's fix is ready Stefan Mileschin WebNews 0 26th January 2015 08:18
Apple Patches 144 Security Flaws Across Seven Products Stefan Mileschin WebNews 0 20th October 2014 10:46
iPwned: How easy is it to mine Apple services, devices for data? jmke WebNews 0 15th September 2014 09:38
MiniLock browser plugin promises easy encryption with drag-and-drop security Stefan Mileschin WebNews 0 7th July 2014 09:23
Apple's hotspot security is easily broken Stefan Mileschin WebNews 0 21st June 2013 08:48
Apple's security improvements eaten by bug Stefan Mileschin WebNews 0 28th March 2013 07:47
Apple Invites Kaspersky to Improve OS X Security Stefan Mileschin WebNews 0 15th May 2012 07:57
Apple 10 Years Behind Microsoft on Security: Kaspersky Lab Stefan Mileschin WebNews 0 27th April 2012 09:17
Apple shows it hasn't a clue about security Stefan Mileschin WebNews 0 11th April 2012 09:43

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

vB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are Off
Pingbacks are Off
Refbacks are Off


All times are GMT +1. The time now is 20:34.


Powered by vBulletin® - Copyright ©2000 - 2024, Jelsoft Enterprises Ltd.
SEO by vBSEO