RSS Alerts

Share

More services

David Harley

Job title:
CEO, Small Blue-Green World, and independent author

Areas of expertise:
Apple security, malware, anti-malware testing, psychosocial aspects of security, user education, email management, social media, medical informatics

Biography:
The Apple Security Blog, by David Harley David Harley, CITP, FBCS, CISSP, is an IT security researcher, author and consultant living in the UK. He has worked in IT (largely in medical informatics) since the 1980s, increasingly focused on security and anti-malware research since 1989. Between 2001 and 2006 he managed the UK National Health Service’s Threat Assessment Centre, and since 2006 he has provided authoring and consultancy services to the anti-virus industry. Since 2009 he has been a director of the Anti-Malware Testing Standards Organization (AMTSO). He runs the Mac Virus website and AVIEN (the Anti-Virus Information Exchange Network), and is a Fellow of the British Computer Society (now the BCS Institute). He was principle author and technical editor of “The AVIEN Malware Defense Guide for the Enterprise” and co-authored “Viruses Revealed”, as well as contributing to many other books including “OS X Exploits and Defense”. He has a daunting back-catalog of research papers and articles, and also blogs for Mac Virus, AVIEN, ESET (where he holds the title Senior Research Fellow), (ISC)², and numerous other websites.

Tag Cloud

Cloud encryption compliance David Harley cloud security cybersecurity cloud computing Security

Bloggers

Blog

Flashbacks and Backtracks

If you follow my Mac Virus blog, you’ll have noticed that I’ve been tracking some of the coverage of Mac malware incidents to hit my radar in the last couple of weeks. In fact, hits on Mac Virus have been skyrocketing in the past 24 hours, so perhaps this a good time to recap on a couple of those incidents.

Loads of data has been shared by AlienVault Labs relating to targeted attacks exploiting CVE-2011-3544 (see Mac & Windows Targeted Attacks: East of Java) and MS09-027 (see More from AlienVault Labs… and The (OS)X-Files).
 
Then there were a couple of items on enhancing iOS security: A flak jacket for iOS and Talking of iOS Security…

But the items that have been getting all the hits have related to Apple’s belated Java update(s) and the very significant Flashback botnet. I feel guilty about not having had time to comment on all that here, and as I’m about to go off on my travels I can’t do so now. But I have been accumulating relevant links and sinking the occasional barb to ensure that I’ll never be invited to Apple’s Xmas party:

I'm pretty sure there'll be lots more to say by the time I'm back on the grid...

Posted 06/04/2012 by David Harley

Tagged under: David Harley , Mac Virus , OS X malware , Flashback , AlienVault , CVE-2011-3544 , MS09-027 , iOS , Flashback , botnet , Java , updates , CVE-2012-0507

Comment on this blog

You must be registered and logged in to leave a comment about this blog.

Terms & Conditions | Privacy | Website Design| Reed Exhibitions. All rights reserved. Copyright © 2013
We use cookies to operate this website and to improve its usability. Full details of what cookies are, why we use them and how you can manage them can be found by reading our Privacy & Cookies page. Please note that by using this site you are consenting to the use of cookies. ×