More Security Headaches For Mac Users

applelogoIn the last couple of weeks we have read about two new security issues with Apple’s OSX operating system.  The first was about a new threat named “CORED” or “XARA” (for Cross-App Resource Access).  In this exploit a rogue app on the App Store could use the elevated privileges of another installed app to execute malicious code at a higher level of privilege.  It does this by taking advantage of weaknesses in the keychain, where passwords and other security tokens are stored.  Unfortunately, there is no solution yet.  Apple will have to release a patch to fix this issue.

The second issue is with MacKeeper, a security and clean-up app.  A recently patched hole allowed attackers to install malware known as OSX/Agent-ANTU.  This malware generated a fake MacKeeper alert that requested your administrative password, allowing it to install with full system privileges.

We recently posted an article recommending Mac security programs.  One of our favorite is provide free of charge by Sophos.

For more information about these exploits, you can click through to:


About the Author:

I am a cybersecurity and IT instructor, cybersecurity analyst, pen-tester, trainer, and speaker. I am an owner of the WyzCo Group Inc. In addition to consulting on security products and services, I also conduct security audits, compliance audits, vulnerability assessments and penetration tests. I also teach Cybersecurity Awareness Training classes. I work as an information technology and cybersecurity instructor for several training and certification organizations. I have worked in corporate, military, government, and workforce development training environments I am a frequent speaker at professional conferences such as the Minnesota Bloggers Conference, Secure360 Security Conference in 2016, 2017, 2018, 2019, the (ISC)2 World Congress 2016, and the ISSA International Conference 2017, and many local community organizations, including Chambers of Commerce, SCORE, and several school districts. I have been blogging on cybersecurity since 2006 at

Add a Comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.