Arts and Culture
More from Google
Get the Android app
Get the iOS app
Intego Mac Podcast
Join the Intego Mac security experts for the latest Apple news, industry opinions, and a splash of security advice in our easy-to-digest, entertaining, and informative podcast series. Hosted by Kirk McElhearn and Josh Long.
4 days ago
New Mac Ransomware-wiper-spyware ThiefQuest discovered
New malware targeting the Mac was discovered this week; it's a hybrid ransomware-wiper-spyware, but you don't need to worry if you don't download pirated software. We also discuss how a journalist's iPhone was hacked by him visiting a website, look at issues with the TikTok app on iOS, and look at how Google is now auto-deleting new user history after 18 months. Show Notes: * Journalist’s phone hacked by new ‘invisible’ technique: All he had to do was visit one website. Any website. * Safari 14 Doesn’t Block Google Analytics * Google to Auto-Delete User History After 18 Months * How to Manage Gmail and Google Security and Privacy Settings * TikTok to stop reading user clipboards after being exposed by iOS 14 privacy feature * Warning—Apple Suddenly Catches TikTok Secretly Spying On Millions Of iPhone Users * Twitter thread showing the type of data collected by TikTok * New Mac ransomware-spyware ThiefQuest in the wild * Understanding Blockchain and Cryptocurrency * OSX.EvilQuest Uncovered * ThiefQuest ransomware is a file-stealing Mac wiper in disguise * New Mac Ransomware Is Even More Sinister Than It Appears Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST20. Download Intego Mac Premium Bundle X9 now at intego.com.
Jun 26, 2020
What’s Coming in macOS Big Sur and iOS 14
This week, Apple announced the new features for its coming operating system updates: macOS Big Sur, and iOS 14. They also announced a big change to Mac hardware. Josh and Kirk discuss the changes coming, and take a close look at security and privacy features in these operating systems. Show Notes: * Apple’s New Plans for the iPhone, iPad, and Mac Unveiled at WWDC 2020 * Universal App Quick Start Program (developers only) * Apple's transition from PowerPC to Intel processors (Wikipedia) * macOS 11 and iOS 14 – New security and privacy features * Switch default apps on iPhone or iPad for better security and privacy Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST20. Download Intego Mac Premium Bundle X9 now at intego.com.
Jun 19, 2020
We Can’t Be Safe without a Faraday Cage
Intego has discovered new malware that propagates through poisoned Google search results. Zoom does a couple more u-turns. An App Store controversy is causing people to question Apple's policies. And spies can eavesdrop by watching the variations in light bulbs. Show Notes: * Serious Cryptography - A Practical Introduction to Modern Encryption by Jean-Philippe Aumasson * Applied Cryptography: Protocols, Algorithms and Source Code in C by Bruce Schneier * Cryptography: A Very Short Introduction, by Fred Piper and Sean Murphy * ROT13 * Zoom does 180 on encryption plans, will bring it to all users including free accounts in July * Improving Our Policies as We Continue to Enable Global Collaboration * Spies Can Eavesdrop by Watching a Light Bulb's Vibrations * Basecamp’s New App, Hey, Flagged In App Store Limbo For Not Using In-app Purchase * The Pros and Cons of Apple’s iOS App Store * New Mac malware reveals Google searches can be unsafe * VirusTotal Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST20. Download Intego Mac Premium Bundle X9 now at intego.com.
Jun 12, 2020
What Could Apple Switching to ARM Processors on Macs Mean for You?
Apple has been making its own chips for iOS devices for a while now, and it seems likely that the company will announce a move to the same ARM-based processors for Macs at the coming WorldWide Developer Conference. We discuss how Apple has changed processor architecture twice in the past, and cover some news about Dropbox, Zoom, the Brave web browser, and smart home devices. Show Notes: * Smart appliances may not be worth money in long run, warns Which? * Dropbox password manager uses zero-knowledge encryption * SQRL * Apple releases new open source ‘Password Manager Resources’ project for developers * Daring Fireball: 'What It’s Like to Get Doxed for Taking a Bike Ride' * Privacy browser Brave busted for autocompleting URLs to versions it profits from * Zoom closed account of U.S.-based Chinese activist “to comply with local law” * Apple Plans to Announce Move to Its Own Mac Chips at WWDC * ARM architecture * Meltdown and Spectre: What Apple users need to know * New iMac With 'iPad Pro Design Language' and Thin Bezels Reportedly Coming at WWDC Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST20. Download Intego Mac Premium Bundle X9 now at intego.com.
Jun 5, 2020
We begin by learning how Josh got interesting in computer security. We then discuss Apple patches and flaws, end-to-end encryption, coronavirus scams, a Google lawsuit, and a photo that can crash Android phones. Show Notes: * Computer Viruses, Artificial Life and Evolution by Mark Ludwig * Zero-day in Sign in with Apple * Turn off Face ID on your iPhone * BBC World Service Director calls for trusted news access to chat apps * Zoom’s Pledge to Work with Law Enforcement Spurs Online Blowback * NHS contact tracing undermined by hackers sending fraudulent warnings to public * NHS Contact Tracing website * Google faces $5 billion lawsuit in U.S. for tracking 'private' internet use * Android: Why this photo is bricking some phones Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST20. Download Intego Mac Premium Bundle X9 now at intego.com.
May 29, 2020
Apple operating system updates, iPhone & iPad storage, and shooting video on an iPhone
Apple updated all its operating systems again this week, but a jailbreak vulnerability was found quickly. We discuss the new contact tracing feature in iOS, how to free up storage on an iOS device, and give some tips on shooting video on an iPhone. Show Notes: * You’re saying it wrong: How to say oft-mispronounced tech terms * Jailbreak Tool 'unc0ver' 5.0 Released With iOS 13.5 Compatibility * The FBI is mad because it keeps getting into locked iPhones without Apple’s help * YubiKey * Free up space on your iPhone or iPad by offloading apps * How to Shoot Video with an iPhone Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST20. Download Intego Mac Premium Bundle X9 now at intego.com.
May 22, 2020
Tips for using your Mac, iPad, and Apple Watch
We look at some practical tips for getting more out of your Mac, iPad, and Apple Watch. We take a close look at System Preferences, discuss using the iPad as a second screen for your Mac; and a handful of tips for making the Apple Watch more efficient. Also, Josh and Kirk disagree about Microsoft's choice to flag two spaces after a period in Word as an error. Show Notes: * Microsoft Word now flags double spaces as errors, ending the great space debate * History of sentence spacing * Techniques for data hiding (1996) * Microsoft now blocks reply-all email storms to end our inbox nightmares * Get to Know Your Mac's System Preferences * Use Your iPad as Your Mac’s Second Screen with Sidecar * Apple Watch Tips: 8 Things You Didn’t Know It Could Do Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST20. Download Intego Mac Premium Bundle X9 now at intego.com.
May 15, 2020
iCloud, Thunderbolt, WWDC, and North Korean Malware
The date for this year's WWDC has been set (June 22). Many users don't know that the government can access some of your iCloud data (with a warrant). We look at a new Thunderbolt vulnerability that affects Macs made since 2011 (but you don't need to worry). And we discuss contact tracing apps and new North Korean malware. Show Notes: * Apple’s Worldwide Developers Conference 2020 kicks off in June with an all-new online format * FBI serves warrant on senator in investigation of stock sales linked to coronavirus * Legal Process Guidelines - Government & Law Enforcement within the United States * Apple and Google privacy rules hamper COVID-19 tracking * North Korean Lazarus group implants malware in 2FA app * Two-factor authentication apps for iOS * Thunderbolt security flaws found, affect 2011-2020 Macs Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST20. Download Intego Mac Premium Bundle X9 now at intego.com.
May 8, 2020
It’s World Password Day; Why do we still use passwords?
Passwords are easy to implement, but keeping them secure is not that simple. On World Password Day, Josh and Kirk discuss how passwords might be replaced by other means of authentication. And they discuss the UK's covid-19 contact tracing app which raises privacy concerns, a Facebook bug that caused lots of apps to fail, why you should always check that auto-completed email address, and more. Show Notes: * UK finds itself almost alone with centralized virus contact-tracing app that probably won't work well, asks for your location, may be illegal * Facebook fixes bug that crashed major iOS apps like TikTok, Spotify, and Tinder * Justice Dept. scrutinizes White House-connected doctor linked to disputed coronavirus treatment * Manage Your Previous Recipients in Apple’s Mail * Psychic Paper * Zoom Admins Can Now Disable PMIs; Additional Security Updates for Basic Accounts Coming May 9 * Zoom Acquires Keybase and Announces Goal of Developing the Most Broadly Used Enterprise End-to-End Encryption Offering * The History of Clarus the Dogcow Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST20. Download Intego Mac Premium Bundle X9 now at intego.com.
May 1, 2020
Don’t Share Your Apple ID (so a Friend Can Watch Apple TV+)
Getting a text message on an iOS device can crash your iPhone or iPad; but it can't do any more harm than that. Apple has released a beta version of iOS with its coronavirus notification API, but Americans don't trust tech companies. And we talk about Apple TV+, and how you should never share your Apple ID so friends can watch shows with your account. Show Notes: * A viral text string with an Italian flag and Sindhi characters will crash your iPhone * Apple Finds No Evidence Hackers Exploited IPhone, IPad Mail Flaw * Apple releases iOS 13.5 beta with first version of its COVID-19 exposure notification API * Americans are wary of the coronavirus tracking apps being produced by big tech * Financial Times reporter accessed private calls at Independent and Evening Standard * Zoom admits it doesn’t have 300 million users, corrects misleading claims * Apple TV+ faces coronavirus crunch as Disney+ moves theatrical releases Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST20. Download Intego Mac Premium Bundle X9 now at intego.com.
Apr 24, 2020
Zero Day, Compromised Ad Servers, and the New iPad Magic Keyboard
Every day is zero day in the security world. Researchers have found some serious vulnerabilities in iOS that affect the Mail app, and a fix is coming. Compromised ad servers allow cybercriminals to serve malware on respected websites. And we discuss the new Magic Keyboard for iPad, which turns the iPad into a new computing device. Show Notes: * Researchers Say They Caught an iPhone Zero-Day Hack in the Wild * You’ve Got (0-click) Mail! * Zoom’s Security Woes Were No Secret to Business Partners Like Dropbox * Zoom Hits Milestone on 90-Day Security Plan, Releases Zoom 5.0 * Comment: Why hasn’t Apple released a dedicated app for iCloud Keychain? * Mac and iOS Keychain Tutorial: How Apple’s iCloud Keychain Works * Hackers have breached 60 ad servers to load their own malicious ads * Ad-Blockers: The Good, the Bad, the Ethics * The Magic Keyboard Turns the iPad into a New Computing Device * Everything you can do with the Apple Pencil Get 40% off Mac Pr…
Apr 17, 2020
Contact Tracing, Phishing, and a New iPhone
Apple has announced a new iPhone SE, a low-priced phone that's really the iPhone for everyone. Google and Apple are working on a contract tracing app, to help stem the spread of the coronavirus. And Apple users are among those most targeted by phishing. And we inaugurate our new segment, Zoom Zinger, where we highlight security and privacy issues with the Zoom videoconferencing software. (Sorry about the audio; Josh's recording software crashed, and we had to fall back on our backup Skype recording.) Show Notes: * iPhone SE * Magic Keyboard for iPad Pro * Apple and Google Partner for Privacy-Preserving COVID-19 Contact Tracing and Notification * Apple responds to the U.S. government re: COVID-19 tracking app * Protecting Lives & Liberty: How Contact Tracing Can Foil COVID-19 & Big Brother (comic) * Over 500,000 Zoom accounts sold on the Dark Web * Apple is Most Imitated Brand for Phishing in Q1 2020 * Cleaning your iPhone Get 40% off Mac Premium Bundle X9, full…
Apr 10, 2020
How Not to Get Phone Scammed
A good friend of Kirk's, a very tech savvy guy, got scammed on the phone by someone pretending to be from his bank. We discuss how this happened, and all the red flags you need to be aware of. We also discuss how Apple is helping health care workers, and we look at the latest Zoom security and privacy issues. Show Notes: * Tim Cook's tweet about masks and face shields * Apple face shield instructions * Boeing 787s must be turned off and on every 51 days to prevent 'misleading data' being shown to pilots * Facebook Wanted NSO Spyware to Monitor Users, NSO CEO Claims * iOS Vulnerability Prevents VPNs From Encrypting All Traffic * New attack on home routers sends users to spoofed sites that push malware * ‘War Dialing’ Tool Exposes Zoom’s Password Problems * Thousands of Zoom video calls have been exposed online, highlighting the privacy risks * Move Fast & Roll Your Own Crypto: A Quick Look at the Confidentiality of Zoom Meetings * Security and Privacy…
Apr 3, 2020
Zoom Is a Security and Privacy Nightmare (Zoomenfreude)
Lots of people have turned to Zoom to stay in touch with friends and family, and to work from home, but this software has had a huge number of security issues. We discuss these and how this trend shows poor attention to security and privacy in this software. Show Notes: * Episode 92: Zoom Zero-Day, and Unmasking Mac Malware Makers * Apple pushed a silent MRT update to remove hidden Zoom web server * “Zoom Stock” Confusion Causes Investors to Put Stock in Wrong Company * Zoom iOS App Sends Data to Facebook Even if You Don’t Have a Facebook Account * Zoom Updates iOS App to Stop Sending Data to Facebook * Zoom Removes Code That Sends Data to Facebook * Zoom Meetings Do Not Support End-to-End Encryption * Zoom is Leaking Peoples' Email Addresses and Photos to Strangers * Intruders are hijacking Zoom calls with noise and gross images — here’s how to avoid becoming a victim of ‘zoombombing’ * The 'S' in Zoom, Stands for Security: uncovering (local…
Mar 27, 2020
Medical ID, Apple Updates, Intel Vulnerabilities, and More
Josh and Kirk discuss how to set up a medical ID on an iPhone and Apple Watch, we cover this week's Apple updates, we look at a new Intel CPU bug, and more. Show Notes: * How to Set Up Medical ID on Your iPhone and Apple Watch * Cybercriminals are preying on coronavirus fears * Safari will now block third-party cookies by default, delete a site's local storage after seven days * How to Manage and Remove Browser Cookies on Mac and iOS * Legacy System Extension Message * Deprecated Kernel Extensions and System Extension Alternatives * Firefox Browser releases 'Facebook Container' for those who like it but don't trust it * Intel CSME bug is worse than previously thought * Apple T2 Security Chip Security Overview * Popular VPN And Ad-Blocking Apps Are Secretly Harvesting User Data Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Mar 20, 2020
How to Adapt to Working From Home
Many people are required to work from home for the foreseeable future, so Josh and Kirk have decided to give some tips about working from home, something they both do. Show Notes: * Objective by the Sea * Take Control of Working from Home Temporarily * Dyson air purifier * Netatmo weather station * Is Conference Room Air Making You Dumber? * Pomodoro Technique (Wikipedia) * MultiTimer (iOS and Apple Watch) * Episode 92: Zoom Zero-Day, and Unmasking Mac Malware Makers * Episode 15: What's a VPN, and Why Should You Use One? * The Next Track * Grammar Girl * Cats and Dominos Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Mar 13, 2020
The History of Apple Malware, with Guest John McAfee
Malware has affected Apple computers since even before the release of the Macintosh. In fact, the very first computer virus that spread in the wild affected the Apple II. We discus the history of Apple malware, and we talk with John McAfee, creator of the first commercial antivirus, about how he created the software. Show Notes: * Key Moments in the History of Mac Malware * John McAfee * Elk Cloner * Apple DOS (Wikipedia) * nVIR (Wikipedia) * John McAfee (Wikipedia) * HyperCard * A Silly Noisy House * Disinfectant * Frequently asked questions about Word macro viruses * Mac OS X (Wikipedia) * Renepo/Opener * Leap.A / Oompa-Loompa * WireLurker Malware Infects Macs, Attacks Non-Jailbroken iPhones * How Flashback Malware Infects Macs * MAC Defender Fake Antivirus Program Targets Mac Users * OSX/Shlayer: New Mac malware comes out of its shell * Episode 28: Beware of Trustjacking (discussion of Shlayer) * OSX/Linker: New Mac malware at…
Mar 6, 2020
RSA Conference 2020 Highlights
Josh attended this year's RSA Conference, one of the big meet-ups about computer security, and discusses what he learned there. We also cover news about smart speakers listening to your conversations (again), a copy/paste issue that Apple says isn't a big deal, and a new limitation by Safari for HTTPS certificates, that will affect some websites. Show Notes: * Your smart speaker could be listening in on your conversations by accident * Mister Mxyzptlk (Wikipedia) * Apple drops a bomb on long-life HTTPS certificates: Safari to snub new security certs valid for more than 13 months * Precise Location Information Leaking Through System Pasteboard * How to remove GPS location data from photos on iPhone or Mac * RSA Conference 2020 * Speakers and panels * Videos Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Feb 28, 2020
10 Things You Shouldn’t Do on Your Work Computer or Phone
Your work computer or phone doesn't belong to you, and you should be careful about what you do on these devices. Your employer can track you and all your activity, and record what you do, and even, perhaps, what you type. Show Notes: * RSA Conference 2020 * 10 Things You Shouldn’t Do on Your Work Computer (or Phone) * O.MG Cable Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Feb 21, 2020
Switching Default Apps on the iPhone and iPad
Your iPhone or iPad comes with 36 default apps, including Mail, Safari, and Messages. You may want to use other apps for email, for browsing, and for messaging, in part to enhance your security and privacy. While you can't set other apps to replace the defaults, as you can on macOS, you can switch. We explain how. Show Notes: * Apple Weighs Letting Users Switch Default iPhone Apps to Rivals * Switch Some Default Apps on Your iPhone or iPad for Increased Security and Privacy * Apple’s Default iPhone Apps Give It Growing Edge Over App Store Rivals * Is Safari the most private browser for iPhone and iPad? * Lynx web browser * Tutanota * Threema * Signal * Telegram Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Feb 14, 2020
Understanding Blockchain and Cryptocurrency
A child spends a fortune on in-app purchases, the CIA has been running a fake company providing encryption services, and beware of public lockers. We then take a deep dive into blockchain technology and cryptocurrency; if you've been wondering what Bitcoin is, we explain (almost) everything. Show Notes: * 8-year-old spends $1,875 on Roblox in-app purchases by adding her fingerprint to TouchID * Beware of public lockers * The intelligence coup of the century * Cryptocurrency 101 – Part 1: Blockchain and basic concepts Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Feb 7, 2020
How Security Analysts Work
Jan 31, 2020
If It’s Free, You’re the Product
Apple updates everything, the Ring doorbell has trackers in its app, and the Shlayer malware has infected lots of Macs. We then discussed a number of issues where free services you use monetize data collected about you and your activities. Show Notes: * Apple releases macOS Catalina 10.15.3, iOS 13.3.1, and more * Apple Security Updates * Ring Doorbell App Packed with Third-Party Trackers * Leaked Documents Expose the Secretive Market for Your Web Browsing Data * VirusBarrier Scanner * Facebook agrees to pay $550 million to end facial recognition tech lawsuit * Adobe Flash Player is dead, yet 10% of Macs infected with fake Flash malware Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Jan 24, 2020
iPhones Hacked and Cracked
The world's richest man's iPhone was hacked when he clicked on a video in WhatsApp. Police and the FBI are cracking iPhones to get evidence. Should we worry? Tom Cruise would know what to do. Show Notes: * Apple Reportedly Dropped Plans for End-to-End Encrypted iCloud Backups After FBI Objected * iCloud security overview * 2016 WSJ Story on Apple's Plans for E2E Encryption for iCloud Data * iforgot.apple.com * Reminder that SMS 2FA is better than no 2FA at all * Apple Likely to Drop Adobe Flash Support in Next Version of Safari * Police officer in Brazil shows off entire facade ATM skimmer * Sonos Makes It Clear: You No Longer Own The Things You Buy * The Next Track podcast * How Jeff Bezos’ iPhone X Was Hacked * Amazon boss Jeff Bezos's phone 'hacked by Saudi crown prince' * Analysis of the Evidence of Surveillance of Mr. Bezos’ personal phone * Inside the $10 million cyber lab trying to break Apple’s iPhone * House Democrats Used Celleb…
Jan 17, 2020
Your Photos Can Tell People Where You Live
Photos you shoot with your iPhone, and with some cameras, store location data. Sharing these photos on social media may pinpoint your location: where you live, or where you work. It's easy to remove this data. In the news, we talk about listening in on Skype audio, another Apple - FBI spat about accessing data on an iPhone, Google getting rid of cookies, and more. Show Notes: * New rack-mounted Mac Pro available * FBI asks Apple for help cracking Pensacola gunman’s iPhones * IPhone Hacking Firm Updates Tool in Midst of Apple-FBI Spat * Shooting at Naval Air Station Pensacola Called ‘Act of Terrorism’ (FBI) * Skype audio graded by workers in China with 'no security measures' * You can now use iPhones as Google security keys for 2FA * Chromium Blog: Building a more private web: A path towards making third party cookies obsolete * How to Post to Instagram from Safari on a Mac * Cable Haunt * How to remove GPS location data from photos on iPhone or Mac…
Jan 10, 2020
The Year in Apple Security 2019
We look back at the eventful year 2019 in Apple security. In the news, Apple is switching to randomized serial numbers for its products, Apple sues a company over jailbreaking, Firefox has critical vulnerabilities, and more. Show Notes: * Apple Plans to Switch to Randomized Serial Numbers for Future Products Starting in Late 2020 * Corellium Accuses Apple of Using Lawsuit to 'Crack Down on Jailbreaking' * Apple Is Bullying a Security Company with a Dangerous DMCA Lawsuit * Critical Security Vulnerabilities fixed in Firefox 72.0.1 and Firefox ESR 68.4.1 * Windows 7 support will end on January 14, 2020 * Sunsetting Python 2 * The Year in Apple Security – 2019 * Episode 13: Is My Computer's CPU Secure? Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Jan 3, 2020
9 Security and Privacy Settings to Activate on Your New iPhone or iPad
We cover some security news, such as a password breach at Zynga, a user database breach at Waze, and a new Apple patent for under-display biometric sensors. Then we discuss essential settings to keep your iPhone, iPad, and iPod touch secure. Show Notes: * 170m passwords stolen in Zynga hack, monitor says * Zynga (Wikipedia) * have i been pwned? * Wyze security camera user DB was breached * Apple Wins Patent for Optical Imaging Sensors that could be used for Under-the-Display Biometrics in Future iPhones and Beyond * 9 Security and Privacy Settings to Activate on Your New iPhone or iPad Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Dec 27, 2019
8 Steps to Ensure the Security and Privacy of Your New Mac
If you got a new Mac for the holidays, there are a number of settings you can adjust to enhance its security and privacy. We discuss eight tips to make your Mac stronger. We also look at some news, with Ring's reaction to the claims that they were compromised, Apple pulling an app from the App Store for spying on users, and Apple's new bug bounty program. Show Notes: * Boxing Day (Wikipedia) * Ring’s Services Have Not Been Compromised – Here’s What You Need to Know * haveibeenpwned.com * Top websites keep letting people use weak passwords like 111111, and it’s a major security risk * Hash function (Wikipedia) * Apple Pulls Emirati Chat App 'ToTok' From App Store for Allegedly Spying on Users * Apple officially launches Apple Security Bounty program * Apple Platform Security guide - Fall 2019 * 8 Mac security and privacy features to set up right away * How to Encrypt and Password Protect Files on Your Mac * Data Backup Plan: How to Implement the…
Dec 20, 2019
Apple HomeKit and the Smart Home
We take a close look at smart home technology and Apple's HomeKit, and also discuss why Vladimir Putin is still using Windows XP, another Ring camera issue, some password problems, and a new Intel vulnerability called Plundervolt. Show Notes: * Vladimir Putin 'still uses obsolete Windows XP' despite hacking risk * She installed a Ring camera in her children’s room for ‘peace of mind.’ A hacker accessed it and harassed her 8-year-old daughter. * Thousands of students in Germany queue for email access * Plundervolt – newly found Intel vulnerability stealing secrets by starving your computer of voltage * CPUSetter * Amazon, Apple, Google, Zigbee Alliance and board members form working group to develop open standard for smart home devices * Use Apple HomeKit to Automate Your Home and Keep It Secure (Kirk's article) * IFTTT * NetAtmo Weather Station * Dyson Pure Cool fan and air purifier * NetGear Arlo Pro cameras * Philips Hue lights * Casper…
Dec 13, 2019
Mac Pro costs the same as Tesla Cybertruck
Apple has released the new Mac Pro, along with updates for all its operating systems this week. Google Chrome gets a serious update, Google Maps gets incognito mode, and the Ring doorbell leaks some location data allowing journalists to create heat maps of Ring-protected homes. Plus an AirDrop vulnerability, a tweet with an iPhone decryption key, and more. Show Notes: * Here are all the big new features & changes in iOS 13.3 & iPadOS 13.3 * Apple Fixes ‘AirDoS’ Bug That Cripples Nearby iPhones, iPads * Apple’s most expensive Mac Pro costs $52,599 * Apple’s Intelligent Tracking Protection enabled tracking, Google finds; fixed in latest Safari * Google Chrome 79 Brings Enhanced Security and Anti-Phishing Features * Now-Fixed AirDrop Bug Let Anyone Lock-Up Nearby iPhones With Flood of Files * Incognito mode in Google Maps for iOS is rolling out now * Ring's Neighbors Data Let Us Map Amazon's Home Surveillance Network * Apple Used the DMCA to Take Down a…
Dec 6, 2019
Twitter Trickery, Charging Insecurity, Cryptocurrency Malware, and More
We follow up on our Black Friday purchases, then talk about some Twitter trickery, some Russian rigidity, some charging insecurity, some location confusion, and some new Mac cryptocurrency malware. Show Notes: * Tories pretend to be factchecking service during leaders' debate * The iPhone 11 Pro’s Location Data Puzzler — Krebs on Security - Since we recorded this episode, Apple issued an explanation as to why this is happening, and said that there will be a toggle for this in a future iOS update. * It’s Apple Vs Putin, As Russia’s New Smartphone Ban Approaches * Los Angeles authorities warn travelers of charging-station hackers * Juice Jacking (Wikipedia) * FBI issues security warning for smart TVs before you buy * New Lazarus malware variant Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Nov 29, 2019
The Chain of Trust
Apple's two-factor authentication system sets up a chain of trust from one device to another. By ensuring your identity on one device, that device can then authenticate you on another device, and provide you with enhanced features, such as an Apple Watch unlocking a Mac, or an iPhone authorizing Apple Pay on a Mac. Understanding this chain of trust helps you better understand how Apple protects you. Show Notes: * The Chain of Trust in Apple Devices (The Mac Security Blog) * Chain of trust (Wikipedia) * Episode 52: Was the Big Hack Really Big? * Certificate authority (Wikipedia) * Use Your Apple Watch to Unlock Your Mac and Authenticate * About the Apple T2 Security Chip CyberGhost VPN is the best personal VPN solution, that works seamlessly with your Mac, iPhone, iPad, and other devices. Pricing this good doesn't happen very often. On Black Friday or Cyber Monday, get up to 79% off. Pricing this good doesn't happen very often! Use this special link to save up to 79%…
Nov 22, 2019
Black Friday Safe Shopping Advice
It's Black Friday again, either the day we release this episode if you're in Europe, or next week, if you're in the US. It's the day when you can get some good deals on things you need, discounts on things you don't need, and, if you're not careful, you could get scammed. We discuss some best practices for buying new and used on Black Friday, and warn you about buying a used iPhone. Show Notes: * Wirecutter * Caution! These Black Friday “deals” may be bad for your security * 6 Cyber Security Tips for Holiday Shopping Online * 6 Essential Tips to Stay Safe Shopping Online * Black Friday 2019 Security Threat: U.S. Government Advises Consumers To Stay Vigilant * The Shop at KonMari CyberGhost VPN is the best personal VPN solution, that works seamlessly with your Mac, iPhone, iPad, and other devices. Pricing this good doesn't happen very often. On Black Friday or Cyber Monday, get up to 79% off. Pricing this good doesn't happen very often! Use this special link to sa…
Nov 15, 2019
Vice President of Integrity
We discuss Apple's new 16" MacBook Pro with a redesigned keyboard; two new entrants in the video streaming market, Apple TV+ and Disney+; a bug in Facebook's app; Google's Pixel 4's face unlock; and more. Show Notes: * Apple's new 16" MacBook Pro * Apple TV+ * Bug in Facebook App Accesses the Camera in the Background * Facebook fixes bug that caused iOS app to use the camera in the background * No one should buy the Facebook Portal TV * Amazon Ring doorbells exposed home Wi-Fi passwords to hackers * How did Google get Pixel 4 face unlock this wrong? Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Nov 8, 2019
iPad vs. MacBook: is iPadOS a game changer?
With the release of iPadOS, the iPad has become a serious competitor to a laptop. While you can't do everything on an iPad that you can on a laptop, the gulf between the two is getting slimmer. We talk with Ian Schray, a dedicated iPad user, about replacing a laptop with an iPad. Show Notes: * The Committed * Researchers use lasers to hack Siri, Alexa, Google assistants * Apple updates its privacy page with sleek new look * iPad vs. MacBook: is iPadOS a game changer? Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Nov 1, 2019
admin / admin
Apple has released a whole slew of security updates this week, stretching back quite far, and we discuss some of the changes, and also Apple's problematic HomePod update. Equifax is sued for using admin as user name and password to protect sensitive data. (Duh.) And we take a close look at the many security alerts and dialogs you see with macOS Catalina. Show Notes: * Apple AirPods Pro * New 13.2 Update Bricking Some HomePods * Facebook sues NSO Group, accusing them of exploiting WhatsApp last May * Equifax used 'admin' as username and password for sensitive data: lawsuit * What Are All Those macOS Catalina Security Alerts? * Get a Mac - Vista Vs Mac Get up to 79% off CyberGhost VPN, the best personal VPN solution, that works seamlessly with your Mac, iPhone, iPad, and other devices. Pricing this good doesn't happen very often. Use this special link to save up to 79% on CyberGhost VPN to fortify your online privacy. Don't wait! This special offer is valid this weeke…
Oct 25, 2019
Depending on Your Threat Model...
Samsung is foiled by screen protectors, users are spoofed by a clever two-factor authentication con, Firefox offers social tracking protection, and a stalker found his idol by analyzing reflections in her eyes in photos. And Google announces a quantum computing breakthrough that may mean that we need to use reeeeeeaaaaaallllllyyyyy long passwords in the future. Show Notes: * Apple Sending User Data to Chinese Company for Fraudulent Website Warnings in Safari * Attacker Used Eye Reflections in Pop Star's Photos to Locate Her Home * 2FA scam reported: "My pass code was accidentally sent to your phone, as I mistyped my phone number which is similar to yours." * Firefox 70 for Mac Brings Social Tracking Protection * Google Claims a Quantum Breakthrough That Could Change Computing Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Oct 18, 2019
Developing a Security Mindset
After a couple of news items, about Apple sending browsing data to Tencent in China, and a Google exec warning people to be wary of its smart home devices, we discuss Josh's talk at the MacTech conference about developing a security mindset. Show Notes: * Apple Sending User Data to Chinese Company for Fraudulent Website Warnings in Safari * Apple Clarifies Tencent's Role in Fraudulent Website Warnings, Says No URL Data is Shared and Checks are Limited to Mainland China * Hash (Wikipedia) * Google exec says Nest owners should warn guests that their conversations might be recorded * Josh's MacTech Conference 2019 presentation slides Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Oct 11, 2019
Getting Ready for Catalina
Josh and Kirk celebrate the two-year anniversary of the podcast, and discuss getting ready to upgrade to Catalina, with tips on how to ensure that your upgrade will be smooth, and the most efficient way to upgrade your Mac. Show Notes: * How to Prepare Your Mac to Upgrade to macOS Catalina * What Are 32-Bit and 64-Bit Apps, and Why Do They Matter? * Setting Up a New Mac: Should You Migrate or Do a Clean Installation? * After iTunes: macOS Catalina and the New Media Apps * How to Manage Media Files with Apple’s New Music, TV, Podcasts, and Books Apps * Use Live Listen with AirPods and Powerbeats Pro Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Oct 4, 2019
Updates, Legit-Looking Lightning Cables, Malspam, and Touch ID
Josh and Kirk discuss the many updates to iOS 13, how legit-looking lightning cables that can hack your devices will soon be on sale, how malspam mostly tries to trick people with bogus links, a Touch ID issue, and much more. Show Notes: * Here’s why so many apps are asking to use Bluetooth on iOS 13 * Developer of Checkm8 explains why iDevice jailbreak exploit is a game changer * Correct Horse Battery Staple * Researchers Find New Hack to Read Content Of Password Protected PDF Files * Legit-Looking iPhone Lightning Cables That Hack You Will Be Mass Produced and Sold * Most malspam contains a malicious URL these days, not file attachments * Cannot log in to your banking apps on the iPhone? iOS 13 Touch ID bug may be the reason * This new Google tool protects you against dangerous passwords Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Sep 27, 2019
iOS Updates, New Amazon Hardware, an Apple Security Advisory, and New Apple Gear
It hasn't been long, but Apple has already released iOS 13.1, and iPad OS 13.1, both initially scheduled for next week. Josh and Kirk discuss these updates, an Apple security advisory about third-party iOS keyboard apps, and some other security news, then chat about the new Apple Watches and iPhones. Show Notes: * Apple issues iOS 13.1.1 and security updates for every OS, even iOS 12 * Apple Security Update Info * About an issue that impacts third-party keyboard apps in iOS 13 and iPadOS * Firefox and Chrome rolling out DNS over HTTPS (DoH) feature * The biggest announcements from Amazon’s fall 2019 hardware event * Amazon Echo Loop demo * Remote-access flaws found in 13 SOHO routers and NAS devices * 600,000 GPS trackers for people and pets are using 123456 as a password * 15,000 private webcams left open to snooping, no password required * Facebook’s Suspension of ‘Tens of Thousands’ of Apps Reveals Wider Privacy Issues * Google Keystone Up…
Sep 20, 2019
New Features in iOS, Smart TVs Spying on You, and More
As iOS 13 is out, Josh and Kirk discuss its new features and what you can look forward to. They also discuss how smart TVs spy on you and send data about everything you watch, as well as a new SIM card flaw and an iOS 13 lock screen bypass. One note: we mentioned that iOS 13.1 was due to be released on September 30. After we recorded the podcast, Apple announced that iOS 13.1 would be released early, on September 24. Show Notes: * Should You Back Up Your iOS Device to iCloud or iTunes? * Google Warns LastPass Users Were Exposed To ‘Last Password’ Credential Leak * You watch TV. Your TV watches back. * New SIM card flaw lets hackers hijack any phone just by sending SMS * NetCAT: new attack lets hackers remotely steal data from (specific) Intel (Xeon) CPUs * iOS 13 lockscreen bypass * What's New in iOS 13 and iPadOS 13 Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at inte…
Sep 13, 2019
Apple's New iPhone, and More
Josh and Kirk celebrate episode 100 of the Intego Mac Podcast with special guest Dave Hamilton and discuss Apple's new iPhone, Apple Watch, iPad, Apple Arcade, and Apple TV+. And we discuss changes to Apple's AppleCare extended warranty and insurance plan. Guest: * Dave Hamilton * Mac Observer * Mac Geek Gab Podcast Show Notes: * Apple updates iPhone, Apple Watch, and iPad; gives info on Apple Arcade and Apple TV+ * AppleCare+ Plans Lasting Service Life of Product Arrive Quietly * How to keep older Macs secure: a geeky approach (run Mojave on unsupported Macs) * Apple TV+ * New 10.2" iPad * Apple Watch Series 5 * iPhone 11 * macOS Catalina: Available in October Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Sep 6, 2019
Twitter and Deepfakes
Twitter's boss had his Twitter account hacked, and Twitter has disabled a feature from its earliest days, which let you tweet via SMS. Firefox's new update blocks trackers and crypto miners. And we take a look at audio and video deepfakes. * Firefox 69 blocks third-party tracking cookies and cryptomining by default * Hackers Tweeted Racial Slurs From Twitter CEO Jack Dorsey’s Account * Chloë Grace Moretz's Twitter Hacked, Apparently by Same Group That Took Over Jack Dorsey's * The frighteningly simple technique that hijacked Jack Dorsey’s Twitter account * The Twitter CEO's Twitter Was Hacked * How to use Twitter via SMS * Hundreds of Millions of Phone Numbers From Facebook Accounts Leaked Online * WordPress plug-in exploits — Critical 'Backdoor Attack' Warning Issued For 60 Million WordPress Users * Google Uncovers How Just Visiting Some Sites Were Secretly Hacking iPhones For Years * Scammer Successfully Deepfaked CEO's Voice To Fool Underling Int…
Aug 30, 2019
Everyone Is Listening!
There's a recurring theme in security and privacy news lately, and that is the fact that everyone is listening. If you use Alexa, OK Google, or Siri, the companies behind these services listen to some of your requests (and sometimes when you don't explicitly ask their devices anything). There's news this week about companies listening and watching, along with some Apple updates, clickjacking scripts on websites, and all the stuff that Facebook knows about you. And we answer a couple of listener questions. * SWAPGS Spectre Side-Channel Vulnerability * Is My Computer's CPU Secure? (Discussion of Spectre and Meltdown vulnerabilities) * If You Lose Your iPhone, You Can’t Pay Your Apple Card Bill On The Web * CPUSetter * SnowHaze * Apple Accidentally Unpatches Vulnerability, Leading to New iOS 12.4 Jailbreak * Apple releases iOS 13.1 beta before iOS 13 is even out * The Many Possibilities of CVE-2019-8646 * Apple apologises for allowing workers to listen to Siri…
Aug 23, 2019
Do Macs need an antivirus?
There's a question we get asked often: do Macs really need an antivirus? Many people think that Macs are immune to malware, or that security software companies even create malware to sell their products. We give a balanced answer to the question of whether you need to protect your Mac with an antivirus. * Apple locked me out of its walled garden. It was a nightmare * If You Lose Your iPhone, You Can’t Pay Your Apple Card Bill On The Web * Josh’s 28-minute Objective by the Sea v2.0 talk “Fun with Mac Malware Attribution” * Do Macs need antivirus software? Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Aug 16, 2019
Summer is when hackers get together to present and discuss malware, vulnerabilities, and exploits. Two big hacker conventions - Black Hat and DEF CON - were held recently, and we discuss some of the Mac-related discoveries. We also look at some interesting news, including certain Macs being banned by the FCC, and answer a listener question about ransomware and files on a Mac. * Facebook admits to reviewing Messenger app audio with ‘hundreds of contractors’ * The FAA has banned recalled MacBook Pros from all flights — like any other bad battery * How a 'Null' License Plate Landed One Hacker in Ticket Hell * Four major dating apps expose precise locations of 10 million users * The full version of Josh’s 28-minute Objective by the Sea v2.0 talk “Fun with Mac Malware Attribution” is now available to watch online * HT201222 (Apple's security updates page) * CUPS (Common UNIX Printing System) * These Legit-Looking iPhone Lightning Cables Will Hijack Your C…
Aug 9, 2019
Who’s Listening to Your Private Conversations?
Last week, we discussed how Apple was listening to some of your Siri requests. The company changed its policy, and Amazon and Google followed suit, but what else does Apple listen to? We also discuss Apple's new bug bounty program, how AT&T workers unlocked phones for profit, and how cryptojacking isn't financially viable any more. * Apple suspends Siri response grading in response to privacy concerns * IBM ViaVoice (Wikipedia) * Microsoft Says It 'Listens' to Conversations Only With Permission * Apple faces new Class Action for unlawful and intentional recording of individuals’ confidential communications on Siri without their consent * Apple Hands Hackers Secret iPhones In A Bid To Boost Security, Sources Say * Apple expands its bug bounty, increases maximum payout to $1M * AT&T workers bribed to install malware on company network and unlock iPhones * Three ads generate 5.5 times more revenue than a web-based cryptojacking script Get 40% off Mac Premium Bund…
Aug 2, 2019
Preparing for macOS Catalina
We discuss some ways to check that your apps are all compatible with macOS Catilana. We also talk about Apple contractors listening to Siri recordings (but Kirk also adds a last minute update about Apple's change of heart), how the Facebook "Like" button can be a privacy problem, and how Google has discovered some new iOS vulnerabilities. * Apple contractors 'regularly hear confidential details' on Siri recordings * Apple responds to Guardian report about contractors hearing private conversations while ‘grading’ Siri * Apple suspends Siri response grading in response to privacy concerns * Companies using Facebook 'Like' button liable for data: EU court * Six serious ‘zero interaction’ vulnerabilities found in iOS; one not yet fixed * List of 235 apps incompatible with macOS Catalina 10.15 * What Are 32-Bit and 64-Bit Apps, and Why Do They Matter? * Episode 43: Should You Be Concerned About Porn Blackmail Emails? (Discussion of 32- and 64-bit apps) Get 4…
Jul 26, 2019
Hacking humans: How to avoid social engineering scams
Kirk and Josh take a close look at how you can be scammed by social engineering techniques. They also discuss Apple's recent updates to iOS 9 and 10, a report about the increase in malware targeting Macs, and some good and bad news about Google. * Update your iPhone or iPad software to avoid issues with location, date, and time * The GPS Week Number Rollover: what you need to know * “The sample numbers of new malware for macOS nearly tripled” * MacVoices #19189: Josh Long of Intego On Malware, Security, Privacy, and Safety Online * Google employees are eavesdropping, even in your living room * Google Chrome Update Will Close 'Loophole' That Tipped Sites Off to Your Incognito Mode * Phishing Dangers in Business and How to Avoid Getting Hooked * How Apple and Amazon Security Flaws Led to My Epic Hacking * The Honeymooners - Swanee River (YouTube) * Turns Out Wearing a Hi-Vis Vest Gets You Into Everything for Free Get 40% off Mac Premium Bundle X9, fully…
Jul 19, 2019
Zoom Zero-Day, and Unmasking Mac Malware Makers
An app named Zoom may sound like a good thing, but this app opened the Macs of users who had it installed - including Kirk - to a serious security vulnerability. This led Apple to take the rare action of pushing out a silent security update to Macs. And Josh tells us all about how you find out who creates malware. * Zoom Zero Day: 4+ Million Webcams & maybe an RCE? Just get them to visit your website! * Apple has pushed a silent Mac update to remove hidden Zoom web server * SilentKnight * Apple disables Walkie Talkie app due to vulnerability that could allow iPhone eavesdropping Josh’s talk from Objective by the Sea v2.0: * White Paper * Slides PDF * Brief video with excerpts from the talk Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Jul 12, 2019
Browser Fingerprinting, Hyper-Threading, Firefox, VPN, and More
We discuss a number of issues in the news, such as a 17-year old Firefox vulnerability, the threat to end-to-end encryption, and whether Apple should offer a VPN. We also answer listening questions about browser fingerprinting - what is it? we explain - and turning off hyper-threading (we explain that too). AmIUnique Episode 83: Epic disasters: ZombieLoad, WhatsApp, Google 2FA Keys, and Microsoft RDP CPUSetter U.S. officials consider end-to-end encryption crackdown 17-Year-Old Weakness in Firefox Let HTML File Steal Other Files From Device Here’s the next big step Apple should take to protect our privacy Episode 57: The Advantages of Using a VPN, with CyberGhost Amazon confirms Alexa customer voice recordings are kept forever Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Jul 5, 2019
Browser Wars: Which Web Browser Is Best for Privacy?
Everyone uses a web browser, on their Mac and their iOS device. But there are many web browsers, and some are better designed to protect your privacy. We take a deep dive into web browsers and discuss the pros and cons of Safari, Chrome, Firefox, and a number of alternatives. Safari, Chrome, Firefox: Which is the most private browser for Mac? (https://www.intego.com/mac-security-blog/safari-chrome-firefox-which-is-the-most-private-browser-for-mac/) — Intego's comparison of macOS browsers Is Safari the most private browser for iPhone and iPad? (https://www.intego.com/mac-security-blog/is-safari-the-most-private-browser-for-iphone-and-ipad/) — Intego's comparison of iOS browsers Goodbye, Chrome: Google’s web browser has become spy software (https://www.washingtonpost.com/technology/2019/06/21/google-chrome-has-become-surveillance-software-its-time-switch/) Breezometer (https://breezometer.com) The Waste Land (https://apps.apple.com/app/the-waste-land/id427434046) Google Chrome (h…
Jun 28, 2019
New Mac Malware, Apple Public Betas, and More
There's been a lot of Mac malware appearing lately, and Intego has been discovering many serious new threats. We look at some of these malware, discuss an interesting new OneDrive feature, then talk about installing and using Apple's public betas for macOS, iOS, iPadOS, tvOS, and watchOS. Paprika Recipe Manager (https://apps.apple.com/us/app/paprika-recipe-manager-3/id1303222628?mt=12) OSX/NewTab (and other new Mac malware) OSX/CrescentCore (was originally named OSX/Adspartam) Tweet showing a postal phishing letter (https://twitter.com/MatKendrick/status/1143970477880295424) Microsoft’s new OneDrive Personal Vault protects a folder with 2FA (https://www.theverge.com/2019/6/25/18744045/microsoft-onedrive-personal-fault-secure-folder-storage-2fa) Installing macOS on a separate APFS volume (https://support.apple.com/en-us/HT208891) No, Apple isn’t killing off iTunes Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Prem…
Jun 21, 2019
Flash, Incognito Mode, Porn, and a Malware Extravaganza
This week, as we are at Midsummer's Day, we look at the final nail in Adobe Flash's coffin, a new Chrome incognito mode feature, the UK's porn block, and a bunch of new malware. Google Chrome 76 beta makes it harder to use Flash, easier to dodge paywalls (https://www.theverge.com/2019/6/13/18678388/google-chrome-76-beta-dark-mode-incognito-flash-paywall) homestarrunner.com (http://homestarrunner.com) Apple restricts online Apple Store access to newer versions of Safari and macOS (https://appleinsider.com/articles/19/06/14/apple-restricts-online-apple-store-access-to-newer-versions-of-safari-and-macos) Josh misstated the NetMarketshare statistics (https://netmarketshare.com/operating-system-market-share.aspx?options=%7B%22filter%22%3A%7B%22%24and%22%3A%5B%7B%22deviceType%22%3A%7B%22%24in%22%3A%5B%22Desktop%2Flaptop%22%5D%7D%7D%5D%7D%2C%22dateLabel%22%3A%22Trend%22%2C%22attributes%22%3A%22share%22%2C%22group%22%3A%22platformVersion%22%2C%22sort%22%3A%7B%22share%22%3A-1%7D%2C%22id%22%3A%2…
Jun 14, 2019
Privacy Policies Can Be as Complicated as Kant's Critique of Pure Reason
We discuss running iOS and macOS betas, the new iPod touch, Firefox's coming subscription service, Safari auto-submitting user names and passwords, and how some companies' private policies can be as complicated as Kant's Critique of Pure Reason. iPod touch (https://www.apple.com/ipod-touch/) Mozilla says paid subscription service is coming to Firefox (https://www.theverge.com/2019/6/10/18660344/firefox-subscription-paid-service-vpn-cloud-storage-release-date) Episode 57: The Advantages of Using a VPN We Read 150 Privacy Policies. They Were an Incomprehensible Disaster (https://www.nytimes.com/interactive/2019/06/12/opinion/facebook-google-privacy-policies.html) Safari Auto-Submitting AutoFilled Passwords (https://mjtsai.com/blog/2019/04/17/safari-auto-submitting-autofilled-passwords/) Everyone hates passwords. Good news: They’re about to die (https://www.fastcompany.com/90344117/everyone-hates-passwords-good-news-theyre-about-to-die) Get 40% off Mac Premium Bundle X9, fully compatibl…
Jun 7, 2019
New Security and Privacy Features in macOS Catalina and iOS 13
Apple announced their new operating systems early this week, and we take a close look at the many interesting and useful new security privacy features that will soon be available on your Mac and iOS devices. Trypophobia (Wikipedia) (https://en.wikipedia.org/wiki/Trypophobia) Why some people are freaking out over Apple’s new Mac Pro (https://www.cleveland.com/entertainment/2019/06/why-some-people-are-freaking-out-over-apples-new-mac-pro.html) New Security and Privacy Features in macOS Catalina and iOS 13 Three Key Points about Apple’s WWDC Announcements Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
May 31, 2019
Deep Dive: Software Updates on Mac and iOS
It's essential that you update your software, both to have improved features, squashed bugs, and security fixes. But should you update your software automatically, or should you wait? How can you best manage software updates on the Mac and on iOS? What every Apple user should know about software updates VirusBarrier Scanner (Mac App Store) Sparkle (https://sparkle-project.org) Safari Technology Preview (https://developer.apple.com/safari/technology-preview/) Get 40% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
May 24, 2019
We've called out Facebook many times recently for their security issues, and now it's time to look at a couple of problems with Google. We also discuss the Huawei situation, and how it may affect Apple, and more. Google stored some passwords in plain text for fourteen years (https://www.theverge.com/2019/5/21/18634842/google-passwords-plain-text-g-suite-fourteen-years) Google has been tracking nearly everything you buy online—see for yourself with this tool (https://www.theverge.com/2019/5/17/18629789/google-purchase-history-gmail-email-receipts) G Suite (Wikipedia) (https://en.wikipedia.org/wiki/G_Suite) G Suite security and trust (https://gsuite.google.co.uk/intl/en_uk/security/?secure-by-design_activeEl=data-centers) Google pulls Huawei’s Android license, forcing it to use open source version (https://www.theverge.com/2019/5/19/18631558/google-huawei-android-suspension) Apple’s China Business Faces Another Blow From Trump’s Huawei Ban (https://www.bloomberg.com/news/artic…
May 17, 2019
Epic disasters: ZombieLoad, WhatsApp, Google 2FA Keys, and Microsoft RDP
It's been a busy week for security vulnerabilities. ZombieLoad affects all recent Intel processors, and Apple has issued a fix for it. A serious WhatsApp vulnerability made the evening news because it was so dangerous. And Google and Microsoft had a few issues as well. WhatsApp exploit let attackers install government-grade spyware on phones (https://techcrunch.com/2019/05/13/whatsapp-exploit-let-attackers-install-government-grade-spyware-on-phones/) Facebook's brief explanation of the WhatsApp vulnerability (https://www.facebook.com/security/advisories/cve-2019-3568) You probably weren’t a target of the WhatsApp surveillance hack (https://techcrunch.com/2019/05/14/whatsapp-vulnerability-risk/) Buffer overflow (Wikipedia) (https://en.wikipedia.org/wiki/Buffer_overflow) Remote code execution, or arbitrary code execution (Wikipedia) (https://en.wikipedia.org/wiki/Arbitrary_code_execution) Secure Real-time Transport Protocol (Wikipedia) (https://en.wikipedia.org/wiki/Secure_Real-time_Tr…
May 10, 2019
How We Use Facebook
We look at an issue that caused Firefox add-ons to not work for a while, and discuss a suggestion about making Apple's AirDrop more secure. Then we discuss how we use Facebook, and why we don't use it much any more (and perhaps why you should rethink how you use the service). Firefox disabled all add-ons because a certificate expired (https://www.engadget.com/2019/05/03/firefox-extension-add-on-cert/) The feature Apple needs to change in AirDrop (https://finance.yahoo.com/news/apple-airdrop-privacy-174359769.html) How to Use AirDrop to Securely Share or Transfer Files AirDrop hardware requirements (https://support.apple.com/en-gb/HT203106) (at the end of this article) Facebook sponsored posts selling access to hacked PayPal accounts (https://www.grahamcluley.com/facebook-sponsored-posts-selling-access-to-hacked-paypal-accounts/) It’s Time to Break Up Facebook (https://www.nytimes.com/2019/05/09/opinion/sunday/chris-hughes-facebook-zuckerberg.html) Get 50% off Mac Premium Bundle X9, f…
May 3, 2019
Should you worry about MDM software?
Apple has updated XProtect; what is this? Facebook bans quizzes and useless apps; finally. And we take a close look at MDM software, and how Apple has taken measures against apps that use this technology. Gatekeeper and opening apps from unknown developers (https://support.apple.com/en-gb/HT202491) Apple updates XProtect to combat ‘Windows’ exploits on Mac machines (https://www.zdnet.com/article/apple-updates-xprotect-to-combat-windows-exploits-on-mac-machines/) Facebook bans personality quizzes and other similar apps (https://www.slashgear.com/facebook-bans-personality-quizzes-and-other-similar-apps-25574797/) How to Choose and Answer Security Questions (with the clip from the movie Now You See Me that was mentioned in the podcast) How Nest, designed to keep intruders out of people’s homes, effectively allowed hackers to get in (https://www.washingtonpost.com/technology/2019/04/23/how-nest-designed-keep-intruders-out-peoples-homes-effectively-allowed-hackers-get/) Apple Cracks D…
Apr 26, 2019
When should you upgrade your Mac?
Macs last a long time, but whatever your needs, you’ll need to upgrade your Macs eventually. Whether you buy new or used, there comes a time when you need more power, RAM, storage, or all of the above. You don’t necessarily have to upgrade your entire Mac. We discuss the different variations of upgrading your Apple hardware. Episode 27: How to Securely Sell Your Old Mac, iPhone or iPad How to Keep Older Macs Secure: A Geeky Approach WebKit (https://webkit.org) Mac mini (Mid 2011) (https://support.apple.com/kb/sp632?locale=en_US) Hackintosh.com (https://hackintosh.com) iMac Intel 20" EMC 2133 and 2210 CPU Replacement (iFixit) (https://www.ifixit.com/Guide/iMac+Intel+20-Inch+EMC+2133+and+2210+CPU+Replacement/28763) The “cheese grater” Mac Pro (https://512pixels.net/2017/04/the-cheese-grater-mac-pro/) Get 50% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Apr 19, 2019
Solving a problem that isn’t there
Breaking news: folding phones are out, and they’re breaking. Is this a solution to a problem that doesn’t exist? We also discuss the possibility of Apple creating a Find My Everything app, and we look at advertising identifiers on iOS device, and Mozilla’s campaign to get Apple to change them every month. Apple revamping Find My Friends & Find My iPhone in unified app, developing Tile-like personal item tracking (https://9to5mac.com/2019/04/17/find-my-iphone-revamp/) The Bug in Apple’s Latest Marketing Campaign - The Mozilla Blog (https://foundation.mozilla.org/en/campaigns/privacy-thats-iphone-but-is-it/) Netscape (Wikipedia) (https://en.wikipedia.org/wiki/Netscape_(web_browser)) How to Reset the Advertising Identifier on your Mac, iOS Device, or Apple TV My Samsung Galaxy Fold screen broke after just a day (https://www.theverge.com/2019/4/17/18411510/samsung-galaxy-fold-broken-screen-debris-dust-hinge-flexible-bulge) Review: The iPad mini (2019) Is Still a Great iPad Apple Ho…
Apr 12, 2019
Is Apple Breaking Up iTunes?
Rumors abound of Apple breaking up iTunes, and we look at what this might entail. We also discuss how Amazon employees are listening in on Alexa devices, and we relate the story of an Apple employee whose confidential Apple devices were subject to searches when he tried to cross the border. The Most Lamentable Tragedie of Sirius Unresponsivus Amazon Workers Are Listening to What You Tell Alexa (https://www.bloomberg.com/news/articles/2019-04-10/is-anyone-listening-to-you-on-alexa-a-global-team-reviews-audio) Apple employee detained by U.S. customs agents after declining to unlock phone, laptop (https://www.washingtonpost.com/technology/2019/04/03/apple-employee-detained-by-us-customs-agents-after-declining-unlock-phone-laptop/) Hide a user account in macOS (https://support.apple.com/HT203998) Next major macOS version will include standalone Music, Podcasts, and TV apps, Books app gets major redesign (https://9to5mac.com/2019/04/10/macos-10-15-itunes-standalone-apps/) The Next Track: Ep…
Apr 5, 2019
The One About the iPad
We discuss the iPad: how it can replace a computer for some people, how the new iPad mini is a great little device, and how there are some elements of iOS that could be improved to make the iPad even better. iA Writer (https://ia.net/writer) TypeIt4Me (https://www.ettoresoftware.com/mac-apps/typeit4me/) Review: The iPad mini (2019) Is Still a Great iPad Why iOS Needs Multiple User Accounts for iPad How to Use Split Screen and Slide Over to Do Multitasking on iPad Get 50% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Mar 29, 2019
Apple's New Services, with Chuck Joiner
Mac podcaster Chuck Joiner joins us to discuss Apple's new services that were announced this week: news, games, TV, and even a credit card. MacVoices Podcast At Your Service: The Full Lowdown on Apple TV+, Apple News+, Apple Card, and Apple Arcade Steve Jobs introduces the iPod - 2001 (https://www.youtube.com/watch?v=Mc_FiHTITHE) Apple Solidifies Its Transition to a Services Company How Apple Is Changing from a Hardware Company to a Services and Media Company Backgammon NJ HD (https://apps.apple.com/gb/app/backgammon-nj-hd/id371380665?mt=8) Apple Releases iOS 12.2, macOS Mojave 10.14.4, watchOS 5.2 with Critical Security Updates Problems Logging into Google Account in Apple Mail for Mac, After macOS 10.4.4 Update Get 50% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Mar 22, 2019
This Is a Brain Hack
We take a deep dive into spam: how it works, and how you can manage it. We also discuss another Facebook blunder, some thoughts on preventing facial recognition software from spotting you, and a new porn blackmail scam allegedly from the CIA. Facebook Stored Hundreds of Millions of User Passwords in Plain Text for Years (https://krebsonsecurity.com/2019/03/facebook-stored-hundreds-of-millions-of-user-passwords-in-plain-text-for-years/) Facebook's response: Keeping Passwords Secure (https://newsroom.fb.com/news/2019/03/keeping-passwords-secure/) Facebook Lite (https://www.howtogeek.com/348076/what’s-the-difference-between-facebook-and-facebook-lite/) How to hack your face to dodge the rise of facial recognition tech (https://www.wired.co.uk/article/avoid-facial-recognition-software) CIA Porn Accusation Emails: Here’s What Mac Users Need to Know Get 50% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at…
Mar 15, 2019
Josh tells us about the RSA security conference, and there are some new vulnerabilities that affect processors; one even has its own website. We also bring you some news about Facebook using phone numbers when they said they wouldn't, and Firefox's new secure file-transfer service. RSA Conference (https://www.rsaconference.com) Josh's article, RSA Conference 2019 Highlights: A Mac Perspective "I Am Root": A Retrospective on a Severe Mac Vulnerability If you want online privacy, change your phone number immediately (https://www.wired.co.uk/article/change-your-phone-number-online-privacy) Two-Factor Authorization Apps for iOS Mozilla launches its free, encrypted file-sharing service, Firefox Send (https://techcrunch.com/2019/03/12/mozilla-launches-its-free-encrypted-file-sharing-service-firefox-send/) Apple's Mail Drop (sorry, I said AirDrop in the podcast) (https://support.apple.com/kb/ph2629?locale=en_US) You. Shall. Not. Pass... word: Soon, you may be logging into websites using just…
Mar 8, 2019
Maintain Your Privacy When Browsing the Web
All modern web browsers provide the capability to use "private browsing," a way of maintaining your privacy when using the web. We discuss how to use this feature, as well as some browser extensions that will also mask some of your personal information. HTTPS Everywhere (https://www.eff.org/https-everywhere) uBlock Origin: for Chrome (https://chrome.google.com/webstore/detail/ublock-origin/), Safari (https://safari-extensions.apple.com/details/?id=com.el1t.uBlock-3NU33NW2M3), Firefox (https://addons.mozilla.org/en-GB/firefox/addon/ublock-origin/) Ghostery (https://www.ghostery.com) Use Private Browsing to Maintain Your Privacy on the Web Brave web browser (https://brave.com) ProtonMail (https://protonmail.com/) Google Cloud Security and Compliance Whitepaper (https://static.googleusercontent.com/media/gsuite.google.com/en//files/google-apps-security-and-compliance-whitepaper.pdf) The Advantages of Using a VPN, with CyberGhost Get 50% off Mac Premium Bundle X9, fully compatible with mac…
Mar 1, 2019
Marzipan and the iOSification of macOS
After some news about Facebook and user data (again), and a look at Apple's plan for securely managing health records, we look at Marzipan, Apple's framework for allowing iOS apps to easily run on macOS. What will the future look like? Will macOS become similar to iOS? And will we see touch-screen Macs in the future? Some iOS Apps Sending an Alarming Amount of Data to Facebook and Most Users Are Unaware (https://www.macrumors.com/2019/02/22/ios-apps-sending-private-data-to-facebook/) Meitu (https://www.intego.com/mac-security-blog/month-in-review-apple-security-in-january-2017/) Tim Cook on Health Records Privacy: "People Will Look at This and Feel That They Can Trust Apple" (https://www.macrumors.com/2019/02/27/tim-cook-health-records-privacy/) Marzipan (http://www.hrwiki.org/wiki/Marzipan) Apple Plans on Combining iPhone, iPad, Mac Apps by 2021 (https://www.bloomberg.com/news/articles/2019-02-20/apple-is-said-to-target-combining-iphone-ipad-mac-apps-by-2021) Get 50% off Mac Premium B…
Feb 22, 2019
How to Securely Dispose of Hard Drives
A Messages prank, Google getting caught with a hidden mic, and password managers have flaws. And we discuss destroying hard drives creatively. iOS Safari Flaw Allows Deceptive Web Page Previews in Messages Google backtracks on Chrome modifications that would have crippled ad blockers (https://www.zdnet.com/article/google-backtracks-on-chrome-modifications-that-would-have-crippled-ad-blockers/) Google says the built-in microphone it never told Nest users about was 'never supposed to be a secret' (https://www.businessinsider.com/nest-microphone-was-never-supposed-to-be-a-secret-2019-2?r=US&IR=T) Password managers have a security flaw. But you should still use one. (https://www.washingtonpost.com/technology/2019/02/19/password-managers-have-security-flaw-you-should-still-use-one/) How Apple Is Changing from a Hardware Company to a Services and Media Company Apple, Goldman Sachs Team Up on Credit Card Paired With iPhone (https://www.wsj.com/articles/apple-goldman-sachs-team-up-on-credit-ca…
Feb 15, 2019
How to Avoid Getting Hacked After Data Breaches
Data breaches are common, and when this happens, and your data is included, you need to know what to do to protect yourself. We take a deep dive into data breaches and the things you can do to keep yourself safe. The biggest ever data dump just hit a colossal 2.2 billion accounts (https://www.wired.co.uk/article/collection-data-breach-dump-leak) HaveIBeenPwned (https://haveibeenpwned.com) HaveIBeenPwned password check (https://haveibeenpwned.com/Passwords) 1Password Watchtower (https://support.1password.com/watchtower/) Password Checkup (https://chrome.google.com/webstore/detail/password-checkup/pncabnpcffmalkkjpajodfhijclecjno) Hasso-Platner Institut (https://sec.hpi.de/ilc/search) How to Avoid Getting Hacked After Data Breaches 8 Things to Do Right Now if You’ve Been Hacked Two-Factor Authorization Apps for iOS Get 50% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com.
Feb 8, 2019
Why Doesn't Apple Have a Mac Bug Bounty Program?
We discuss a new macOS Keychain vulnerability, which raises the question of why Apple still doesn't have a Mac bug bounty program. We also discuss shortcomings of two-factor authentication, the removal of the Do Not Track feature from Safari, whether or not Google Chrome's lookalike URL warnings are actually a good thing, and more (including why Apple still hadn't fixed the Group FaceTime spying bug; they finally did after we recorded the episode). Apple Patches Group FaceTime, Shortcuts Vulnerabilities Apple's bug bounty program, launched in 2016 (https://securosis.com/blog/thoughts-on-apples-bug-bounty-program) Apple might pay teenager who found Group FaceTime surveillance bug (https://appleinsider.com/articles/19/02/04/apple-might-pay-teenager-who-found-group-facetime-surveillance-bug) Apple to Remove “Do Not Track” Feature from Safari Google Chrome to get warnings for 'lookalike URLs' (https://www.zdnet.com/article/google-chrome-to-get-warnings-for-lookalike-urls/) Typosquatti…
Feb 1, 2019
FaceTime, Facebook, Google, Shortcuts, Steganography, and More
Apple had a mean FaceTime bug; then they slapped down Facebook, and Google, for some underhanded app distribution. There are security risks using iOS Shortcuts, and there's new malware using steganography. VeryMal Mac Attack Hides Data Within a Picture Steganography (Wikipedia) (https://en.wikipedia.org/wiki/Steganography) Are iOS Shortcuts Safe? Reports of Risks Surface Use iOS Shortcuts to Automate Tasks on Your iPhone or iPad Everything You Need To Know About the FaceTime Spying Bug Apple faces lawsuit over FaceTime bug as lawyer says someone eavesdropped on a sworn testimony (https://9to5mac.com/2019/01/29/apple-facetime-eavesdropping-lawsuit/) Facebook, Google Caught Deploying Invasive Apps; Apple Shuts Them Down (After we recorded this episode on Thursday, Apple revoked Google's enterprise certificate. Apple later said that the company had reinstated Facebook's certificate, and was working with Google to reinstate the certificate.) Google disables app that monitored iPhone usage…
Jan 25, 2019
The Biggest Data Breach Ever; Is Your Data Included?
Google is blocking ad blockers, but not their own ads. Apple has released a slew of updates. And the biggest data breach ever has been discovered, with 2.7 billion records. Is your data included? Wow, fancy that. Web ad giant Google to block ad-blockers in Chrome. For safety, apparently (https://www.theregister.co.uk/2019/01/22/google_chrome_browser_ad_content_block_change/) uBlock Origin (https://chrome.google.com/webstore/detail/ublock-origin/cjpalhdlnbpafiamejdnhcphjbkeiagm?hl=en) NoScript (https://noscript.net) Apple Releases iOS 12.1.3, macOS Mojave 10.14.3, and More Security Updates Wrest control from a snooping smart speaker with this teachable "parasite" (https://techcrunch.com/2019/01/16/wrest-control-from-a-snooping-smart-speaker-with-this-teachable-parasite/) Raspberry Pi (https://www.raspberrypi.org) You Deserve Privacy Online. Here's How You Could Actually Get It (http://time.com/collection/davos-2019/5502591/tim-cook-data-privacy/) Steve Jobs: Thoughts on Music (https://…
Jan 18, 2019
Routers, Tweets, Bugs, and More
Jan 11, 2019
It's the Ecosystem, Stupid
We discuss Apple's trolling of other companies at the Consumer Electronics Show this week, a delivery tracking app that sends and receives data in a strange way, and we then look at how Apple's ecosystem may be "under-appreciated," according to Tim Cook. Ahead of CES, Apple touts ‘what happens on your iPhone, stays on your iPhone’ with privacy billboard in Las Vegas (https://9to5mac.com/2019/01/05/apple-privacy-billboard-vegas-ces/) Package tracking app turns users’ devices into a bot farm, violates user privacy (https://9to5mac.com/2019/01/07/package-tracking-app-turns-users-devices-into-a-bot-farm-violates-user-privacy/) Deliveries (https://junecloud.com/software/iphone/deliveries.html) Security researchers find over a dozen iPhone apps linked to Golduck malware (https://techcrunch.com/2019/01/05/dozen-iphone-apps-linked-to-golduck-malware/) Tim Cook interview on CNBC (https://www.cnbc.com/video/2019/01/08/apple-ceo-tim-cook-talks-china-wall-street-negativity-and-innovation.htm…
Jan 4, 2019
New Year's Resolutions to Secure Your Mac and iOS Devices
As the new year rolls in, we look at some New Year's resolutions to secure your Mac and iOS devices. These are simple tips that you can apply immediately to make your devices more secure. Episode #6: Passwords Are Hard New Year’s Resolutions to Check that Your Mac and iOS Devices Are Secure Get 50% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com. Intego Mac Security Podcast Survey: Win a $100 gift card (https://www.surveymonkey.com/r/integopodcast)
Dec 28, 2018
The Year in Mac and iOS Security
We look at the biggest stories of 2018, and we discuss the impressive rise in the amount of malware that targets the Mac. Mac malware: - The Year of the RAT - MaMi - Shlayer - CreativeUpdater - Unwanted cryptocurrency miner in App Store - Dummy - Calisto (fake Intego software) - Lazarus (advanced persistent threat) - SearchPageInjector - RealtimeSpy - Meltdown, Spectre, and speculative execution flaws - Cellebrite and GrayKey can reportedly unlock any iOS device - Apple introduced USB restricted mode Other news: Is Your Smart Speaker Spying on You? Fake Alexa setup app is topping Apple's App Store charts (https://www.engadget.com/2018/12/27/fake-alexa-app-topping-apple-app-store-charts/) How to Easily Remove Old Tweets and Facebook Posts Protect Your Kids on iOS Devices with Parental Controls How to Use Screen Time in iOS 12 to Track Your Device Usage New Security and Privacy Features in iOS 12 New Security Features in macOS Mojave Google Authenticator (https://apps.apple.com/gb/app/go…
Dec 21, 2018
How Mobile Apps Track Your Location
New iPad Pros bend, but Apple says it's okay. Android's Face Unlock is much less secure than Apple's Face ID, and can be fooled with a 3D-printed head. And we look at a bank's password blunder. Then we look at how mobile apps track your location, and sell that data. Apple confirms some iPad Pros ship slightly bent, but says it’s normal (https://www.theverge.com/2018/12/19/18148957/apple-ipad-bend-pro-2018-shipping-manufacturing-confirmed) We Broke Into A Bunch Of Android Phones With A 3D-Printed Head (https://www.forbes.com/sites/thomasbrewster/2018/12/13/we-broke-into-a-bunch-of-android-phones-with-a-3d-printed-head/) HSBC password issue (Twitter) (https://twitter.com/BradleyAllen512/status/1073544852363714561) iTunes Store Authentication Vulnerability (2011) Your Apps Know Where You Were Last Night, and They’re Not Keeping It Secret (https://www.nytimes.com/interactive/2018/12/10/business/location-data-privacy-apps.html) Are iOS Apps Spying On Your Location? Intego Mac Podcast Ep…
Dec 14, 2018
How to Set Up a New Mac
There's a lot of security news this week, and we look at how facial recognition has been used at concerts, and at doorbells, a security vulnerability in software for headsets, and the most popular passwords of the year. Then we discuss the best way to set up a new Mac. Expediting changes to Google+ (https://www.blog.google/technology/safety-security/expediting-changes-google-plus/) Taylor Swift used facial recognition software to detect stalkers at LA concert (https://www.theguardian.com/music/2018/dec/13/taylor-swift-facial-recognition-stalkers-rose-bowl-concert) Amazon’s Disturbing Plan to Add Face Surveillance to Your Front Door (https://www.aclu.org/blog/privacy-technology/surveillance-technologies/amazons-disturbing-plan-add-face-surveillance-yo-0) Sennheiser’s flawed headphone software opened PCs and Macs to HTTPS site spoofing (https://techcrunch.com/2018/11/29/sennheiser-headphone-software-broke-https-pc-mac/) Sennheiser HeadSetup software update info (https://en-uk.sennhei…
Dec 7, 2018
How to Choose the Mac You Need
We discuss how to choose a new Mac among the broad line-up of Apple's products. We also look at some recent security issues, including a clever Touch ID scam, some new Mac Spyware, and more. And, Tom Cruise is in the news. Scammy iOS apps used Touch ID to push users toward $99 payouts (https://www.theverge.com/2018/12/3/18123644/ios-app-scam-fitness-tracking-touch-id-trick-payments) iTunes Doesn't Encrypt Downloads — on Purpose (https://www.wired.com/story/itunes-downloads-https-encryption/) Tom Cruise on motion smoothing (Twitter) (https://twitter.com/TomCruise/status/1070071781757616128) Privacy Exodus: Spam Delivers Mac Spyware Apple HomePod Compared to Sonos One How to Choose the Right Mac for Your Use Case Get 50% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com. Intego Mac Security Podcast Survey: Win a $100 gift card (https://www.surveymonkey.com/r/integopodcast)
Nov 30, 2018
Is Apple Changing from a Hardware Company to a Service Company?
This week's news include info about an Instagram data breach, an Amazon data breach, a new class-action lawsuit against Apple, and an expensive way to get access to your iPhone if you get locked out. Then we discuss whether Apple is morphing from a hardware company to a service company. Kirk's Hackintosh project (http://www.macworld.com/article/3196994/macs/how-to-build-a-hackintosh.html) and his Hackintosh parts list Kirk wrote about how much dust the Mac Pro collected back in 2014 Instagram accidentally reveals plaintext passwords in URLs (https://nakedsecurity.sophos.com/2018/11/20/instagram-accidentally-reveals-plaintext-passwords-in-urls/) Apple Facing Class Action Lawsuit Over Lack of Filters in MacBooks and iMacs Causing Trapped Dust (https://www.macrumors.com/2018/11/28/apple-macbook-imac-dust-filter-lawsuit/) DriveSavers Lets Consumers Retrieve Data From Locked iOS Devices for $3,900 (https://www.macrumors.com/2018/11/27/drivesavers-ios-passcode-recovery-service/) Amazon warns…
Nov 23, 2018
New Security Features in iOS 12 and macOS Mojave
We take a close look at the great new security features in iOS 12 and macOS Mojave. We also answer a few reader questions, about the Activity Monitor app, about when to upgrade hardware, and whether "free" media sites are safe. How to use Activity Monitor on your Mac (Apple) (https://support.apple.com/en-gb/HT201464) New Security and Privacy Features in iOS 12 New Security Features in macOS Mojave Get 50% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com. Intego Mac Security Podcast Survey: Win a $100 gift card (https://www.surveymonkey.com/r/integopodcast)
Nov 16, 2018
The Advantages of Using a VPN, with CyberGhost
We've often stressed how important it is to use a VPN. Today we welcome Andra Zaharia from Intego's partner company CyberGhost to discuss why we all need a VPN at times. CyberGhost VPN Episode 15: What's a VPN, and Why Should You Use One? Get 50% off Mac Premium Bundle X9, fully compatible with macOS Mojave, with the code PODCAST19. Download Intego Mac Premium Bundle X9 now at intego.com. Intego Mac Security Podcast Survey: Win a $100 gift card (https://www.surveymonkey.com/r/integopodcast)
Nov 9, 2018
How to Shop Securely (and Save Money) on Black Friday
After some brief security news about the Mac, we discuss how you can be sure to shop securely on Black Friday; and we give you some tips to save money too! WebKit (Wikipedia) (https://en.wikipedia.org/wiki/WebKit) Apple security doc touts T2 chip benefits, including hardware prevention of microphone eavesdropping (https://9to5mac.com/2018/10/30/t2-security-chip-benefits/) 6 Cyber Security Tips for Holiday Shopping Online 6 Essential Tips to Stay Safe Shopping Online Caution! These Black Friday “Deals” May Be Bad for Your Security How to Spot Fake Product Reviews Episode 15: What's a VPN, and Why Should You Use One? CamelCamelCamel.com (https://camelcamelcamel.com) Wirecutter (https://thewirecutter.com) Get 50% off Intego's Mac Premium Bundle X9 with the code PODCAST19. Download now and try it for free at intego.com. Intego Mac Security Podcast Survey: Win a $100 gift card (https://www.surveymonkey.com/r/integopodcast)
Nov 2, 2018
Apple Brings Out New Macs and iPads
Apple released new Macs and iPads this week, and Josh and Kirk talk about the new MacBook Air, the Mac mini, and the iPod Pro. We also cover some security news, such as new Mac malware, Apple security updates, and more. Use Group FaceTime on your iPhone, iPad, and iPod touch (https://support.apple.com/en-gb/HT209022) Apple security updates (https://support.apple.com/en-gb/HT201222) Apple Releases macOS 10.14.1 With Group FaceTime and New Emoji (https://www.macrumors.com/2018/10/30/apple-releases-macos-10-14-1/) Apple Releases iOS 12.1 With eSIM Support, Real-Time Depth Control, Group FaceTime, New Emoji and More (https://www.macrumors.com/2018/10/30/apple-releases-ios-12-1/) iOS 12 is Now Installed on 63% of Active Devices From the Last Four Years (https://www.macrumors.com/2018/10/31/ios-12-installed-on-63-percent-of-devices/) Download macOS Mojave 10.14.1 Update (standalone updater) (https://support.apple.com/kb/DL1981?locale=en_GB) How to Access iCloud via a Web Browser iOS 12 compa…
Oct 26, 2018
How to Spot Fake Online Product Reviews
The holiday shopping season is here, and we all look at online product reviews, right? But many of them are fake. How can you tell which are reliable? We discuss that, cover more revelations about the "big hack" story that Bloomberg published recently, and more. The Big Hack (Bloomberg) (https://www.bloomberg.com/news/features/2018-10-04/the-big-hack-how-china-used-a-tiny-chip-to-infiltrate-america-s-top-companies) Apple CEO Tim Cook Calls on Bloomberg to Retract Supply Chain Hack Story: 'There's No Truth to This' (https://www.macrumors.com/2018/10/19/tim-cook-calls-for-bloomberg-hack-story-retraction/) Supermicro CEO Joins Cook in Calling for Bloomberg to Retract Supply Chain Hack Story (https://www.macrumors.com/2018/10/22/supermicro-calls-for-hack-story-retraction/) A mysterious grey-hat is patching people's outdated MikroTik routers (https://www.zdnet.com/article/a-mysterious-grey-hat-is-patching-peoples-outdated-mikrotik-routers/) Apple stops maintaining its printer compatibility…
Oct 19, 2018
Security Deep Dive: Digital Certificates
We take a close look at how digital certificates work, and how they don't. We also discuss the latest Facebook data breach, Apple's new data download feature, and more. Apple Customers in the US, Canada, Australia, and New Zealand Can Download a Copy of Their Data Starting Today (https://www.macrumors.com/2018/10/17/apple-customer-data-downloads-to-us-ca-au-nz/) Apple's Data and Privacy website (https://privacy.apple.com) How to Download All Your Apple Data (https://tidbits.com/2018/05/31/how-to-download-all-your-apple-data/) An Update on the Security Issue (https://newsroom.fb.com/news/2018/10/update-on-security-issue/) Facebook may have knowingly inflated its video metrics for over a year (https://www.theverge.com/2018/10/17/17989712/facebook-inaccurate-video-metrics-inflation-lawsuit) Cops Told ‘Don’t Look’ at New iPhones to Avoid Face ID Lock-Out (https://motherboard.vice.com/en_us/article/5984jq/cops-dont-look-iphonex-face-id-unlock-elcomsoft) Face Off (https://www.imdb.com/…
Oct 12, 2018
Was the Big Hack Really Big? And We Celebrate Our One-Year Anniversary
Was it really a big hack? Bloomberg claims that a Chinese hardware hack affected Apple, Amazon, and others, but the companies deny this accusation. And we look back on the first year of the podcast. Episode #6: Passwords Are Hard (correcthorsebatterystaple) Episode #5: Two-Factor Authentication; Should You Be Worried about Bitcoin? Episode #15: What's a VPN, and Why Should You Use One? Episode #7: Tom Cruise Is in the Row Behind You Episode #51: Facebook Blunders, Sloppy Russian Hackers, and More Episode #30: What Is a Firewall, and How Does it Work? Episode #31: Delete Your Social Media History Episode #36: Lock Down and Secure Your Router The Intego Mac Podcast Google Shuttering Google+ for Consumers After Undisclosed Data Breach (https://www.macrumors.com/2018/10/08/google-plus-shutting-down-data-breach/) The Big Hack: How China Used a Tiny Chip to Infiltrate U.S. Companies (https://www.bloomberg.com/news/features/2018-10-04/the-big-hack-how-china-used-a-tiny-chip-to-infiltrate-amer…
Oct 5, 2018
Facebook Blunders, Sloppy Russian Hackers, and More
Two major blunders have led a lot of people to question the security and privacy of Facebook. Some Russian hackers were caught trying to access a wi-fi network in the Netherlands. And law enforcement forced someone to open their iPhone X using Face ID. Russia accused of cyber-attack on chemical weapons watchdog (https://www.theguardian.com/world/2018/oct/04/netherlands-halted-russian-cyber-attack-on-chemical-weapons-body) UK accuses Kremlin of ordering series of 'reckless' cyber-attacks (https://www.theguardian.com/technology/2018/oct/04/uk-accuses-kremlin-of-ordering-series-of-reckless-cyber-attacks) Wi-Fi Alliance Simplifies Wi-Fi Naming Scheme With Upcoming 'Wi-Fi 6' Release (https://www.macrumors.com/2018/10/03/wifi-naming-simplified-with-wifi-6-launch/) FBI forces suspect to unlock iPhone X with Face ID (https://www.engadget.com/2018/10/01/fbi-face-unlock-suspect-iphone/) Apple refurbished iMac Pro 15% off (https://www.apple.com/shop/browse/home/specialdeals/mac/imac_pro) The Big…
Sep 28, 2018
macOS Mojave Is Here
macOS Mojave has been released this week, and we discuss the main features that users will like (or not). We also look at Apple's recent security updates to all its operating systems, and some recent security threats, including a way to get access to any iPhone with only its phone number (don't worry, you probably won't be targeted). Apple security updates (https://support.apple.com/en-us/HT201222) WebKit (https://webkit.org) They Got 'Everything': Inside a Demo of NSO Group's Powerful iPhone Malware (https://motherboard.vice.com/en_us/article/qvakb3/inside-nso-group-spyware-demo) Bypass Flaw in Newly Released macOS Mojave Update Lets Hackers Access Protected Files (https://www.macrumors.com/2018/09/24/macos-mojave-bypass-vulnerability/) 7-Year-Old Hacks Apple's Screen Time Restrictions (https://www.tomsguide.com/us/ios-screen-time-hack-kid,news-28177.html) macOS Mojave Brings Refinements and Interface Changes How to Use Dark Mode in macOS Mojave Send us a thoughtful, useful question f…
Sep 21, 2018
What iOS 12 Means for You
We take a look at some of the new features in iOS 12, released early this week. We also talk about some issues with Safari 12 and extensions, and follow up on a story we reported about malware in Mac App Store apps from Trend Micro. What’s New in Safari 12 (https://developer.apple.com/safari/whats-new/) Ad industry “deeply concerned” about Safari’s new ad-tracking restrictions (https://arstechnica.com/tech-policy/2017/09/ad-industry-deeply-concerned-about-safaris-new-ad-tracking-restrictions/) iOS 12 Brings New Features, Improves Performance How to Use Screen Time in iOS 12 to Track Your Device Usage Get 50% off Intego's Mac Premium Bundle X9 with the code PODCAST19. Download now and try it for free at intego.com. Intego Mac Security Podcast Survey: Win a $100 gift card (https://www.surveymonkey.com/r/integopodcast)
Sep 14, 2018
Is the Mac App Store Really Safe?
We used to think that apps from the Mac App Store were safe, but some recently discovered issues where apps purchased at the Mac App Store have been sending user data to servers have made us reconsider that. Apple Introduces New iPhones and Apple Watches How to Tell If an Online Article is Real, Fake or a Scam How Safe Is the Mac App Store? Privacy-Violating Apps Uncovered Get 50% off Intego's Mac Premium Bundle X9 with the code PODCAST19. Download now and try it for free at intego.com. Intego Mac Security Podcast Survey: Win a $100 gift card (https://www.surveymonkey.com/r/integopodcast)
Sep 7, 2018
Coming Soon from Apple
Aug 31, 2018
Advanced Persistent Threats by Nation-State Caliber Threat Actors
We start by looking at a couple of small but interesting updates to Apple hardware, then we discuss two advanced persistent threats. Do you know what this means? Listen to find out. Apple Releases Firmware Update for AirPort Express With AirPlay 2 Support (https://www.macrumors.com/2018/08/28/airport-express-firmware-airplay-2/) Apple Says Latest macOS Supplemental Update Addresses Audio and Kernel Panic Issues on 2018 MacBook Pro (https://www.macrumors.com/2018/08/29/macos-high-sierra-supplemental-update-2-details/) Kernal panic (Wikipedia) (https://en.wikipedia.org/wiki/Kernel_panic) Prepare your institution for iOS 12 or macOS Mojave (https://support.apple.com/en-us/HT209028) Clone your finger - bypassing TouchID (https://wojciechregula.blog/clone-you-finger-bypassing-touchid/) Operation AppleJeus and OSX/Lazarus: Rise of a Mac APT Remote Mac Exploitation Via Custom URL Schemes (https://objective-see.com/blog/blog_0x38.html) Get 50% off Intego's Mac Premium Bundle X9 with the code P…
Aug 24, 2018
Can You Prevent Google from Tracking Your Movements?
Google tracks your movement even when you tell its apps not to. We discuss this, and tell you how to turn off this "feature." We also discuss the latest Apple and security news. Apple Is Planning a New Low-Cost MacBook, Pro-Focused Mac Mini (https://www.bloomberg.com/news/articles/2018-08-20/apple-is-said-to-plan-revamped-low-cost-macs-to-reignite-sales) Apple Alerting Customers to Upcoming Discontinuation of Back to My Mac in macOS Mojave (https://www.macrumors.com/2018/08/21/apple-back-to-my-mac-discontinued-macos-mojave/) USBHarpoon Is a BadUSB Attack with A Twist (https://www.bleepingcomputer.com/news/security/usbharpoon-is-a-badusb-attack-with-a-twist/) Google Tracks Your Movements — Can You Stop It? myaccount.google.com (https://myaccount.google.com) Month in Review: Apple Security in January 2017 (Meitu app) Add Analytics to Your iOS App (https://developers.google.com/analytics/devguides/collection/ios/v3/) Get 60% off Intego's Mac Premium Bundle X9 with the code INTEGOPODCAST…
Aug 17, 2018
What's a Botnet, and How Do They Work?
We mention the term "botnet" from time to time, but what exactly is a botnet? How does it work? Is it self-aware? Can botnets be taken down? We look into this, and discuss the week's security news. Fire & Ice: Making and Breaking macOS Firewalls (https://www.blackhat.com/us-18/briefings.html#fire-and-ice-making-and-breaking-macos-firewalls) 'Synthetic Click' attack re-emerges in macOS High Sierra at Defcon (https://appleinsider.com/articles/18/08/13/synthetic-click-attack-re-emerges-in-macos-high-sierra-at-defcon) Fax Machines Are Still Everywhere, and Wildly Insecure (https://www.wired.com/story/fax-machine-vulnerabilities/) Intego exclusive: HP Leaves Mac Users Vulnerable to Fax Hacks HP Ink Printers Remote Code Execution (https://support.hp.com/us-en/document/c06097712) Denial-of-service attack (Wikipedia) (https://en.wikipedia.org/wiki/Denial-of-service_attack) Steganography (Wikipedia) (https://en.wikipedia.org/wiki/Steganography) Homeland, Episode 9 recap (contains spoilers) (htt…
Aug 10, 2018
Should You Be Concerned About Porn Blackmail Emails?
Lots of people having been receiving blackmail emails claiming that they've been filmed watching porn. We explain how this scam works. We also talk about the difference between 32-bit and 64-bit apps, Firefox's new DNS scheme, and more. What Are 32-Bit and 64-Bit Apps, and Why Do They Matter? Josh's Invisibility Toggler app Apple responds to Congress' letter on data security and privacy (https://www.cnet.com/news/apple-responds-to-letter-from-congress-on-data-security-and-privacy/) Apple Response to July 9 Letter (https://www.scribd.com/document/385682086/Apple-Response-to-July-9-Letter#from_embed) Improving DNS Privacy in Firefox (https://blog.nightly.mozilla.org/2018/06/01/improving-dns-privacy-in-firefox/) Mozilla's new DNS resolution is dangerous (https://blog.ungleich.ch/en-us/cms/blog/2018/08/04/mozillas-new-dns-resolution-is-dangerous/) Porn Blackmail Scam Rattles Mac Users: What You Need to Know ';--have i been pwned? (https://haveibeenpwned.com) Get 60% off Intego's Mac Premiu…
Aug 3, 2018
Security Software Deep Dive: How Intego NetBarrier Firewall Works
We take a close look at how Intego's NetBarrier firewall works. We explain how its multi-pronged defense keeps you safe, and discuss how best to set it up. Intego NetBarrier Intego NetBarrier X9 Compared to macOS High Sierra’s Firewall Why You Need an Outbound Firewall What’s the Difference Between Incoming and Outgoing Firewall Protection? Get 60% off Intego's Mac Premium Bundle X9 with the code INTEGOPODCAST. Download now and try it for free at intego.com. Intego Mac Security Podcast Survey: Win a $100 gift card (https://www.surveymonkey.com/r/integopodcast)
Jul 27, 2018
Episode 41: Malware Masquerades as an Intego Software Installer
Some malware was found recently that pretends to be an Intego VirusBarrier installer. We also talk about Google's choice to suggest that HTTP websites are insecure, and a recent story showing that security keys can prevent phishing. Google Chrome users met with ‘Not secure’ warnings when visiting HTTP sites (https://www.grahamcluley.com/google-chrome-website-not-secure/) Kirkville Google: Security Keys Neutralized Employee Phishing (https://krebsonsecurity.com/2018/07/google-security-keys-neutralized-employee-phishing/) Google Advanced Protection Program (https://landing.google.com/advancedprotection/) OSX/Calisto Mac Malware Masquerades as Intego Software Get 60% off Intego's Mac Premium Bundle X9 with the code INTEGOPODCAST. Download now and try it for free at intego.com. Intego Mac Security Podcast Survey: Win a $100 gift card (https://www.surveymonkey.com/r/integopodcast)
Jul 20, 2018
How to Protect Your Digital Legacy
We discuss how you can protect your digital legacy and ensure that your data doesn't get lost if something happens to you, and we discuss the many elements of your data that are accessible from the lock screen of your iPhone or iPad. How to Prepare Your Digital Legacy Anti-Hack Feature Comes to iOS 11.4.1… But Is It Good Enough? (USB restricted mode) iOS Lock Screen: Guide to Keep Data off Your iPhone Lock Screen Apple's Quick Look Reveals Your Darkest Secrets Episode #28: Beware of Trustjacking (discussion of GrayKey in this episode) Episode #39: Security Software Deep Dive: How Antivirus Works (discussion of USB restricted mode, and comment mentioned in the show) How to Encrypt Disk Images with Disk Utility to Protect Sensitive Files SQRL (https://www.grc.com/sqrl/sqrl.htm) Get 60% off Intego's Mac Premium Bundle X9 with the code INTEGOPODCAST. Download now and try it for free at intego.com. Intego Mac Security Podcast Survey: Win a $100 gift card (https://www.surveymonkey.com/r/in…
Jul 13, 2018
Security Software Deep Dive: How Antivirus Works
After a tale of an Apple ID getting blocked for a strange reason, and some security news, we take a close look at how antivirus software works. Updating macOS in VMware Fusion Leads to Apple ID Reset Apple's lates security updates (https://support.apple.com/en-us/ht201222) WebKit (Wikipedia) (https://en.wikipedia.org/wiki/WebKit) This $39 Device Can Defeat iOS USB Restricted Mode (https://blog.elcomsoft.com/2018/07/this-9-device-can-defeat-ios-usb-restricted-mode/) About the security content of Wi-Fi Update for Boot Camp 6.4.0 (KRACK vulnerability) (https://support.apple.com/en-gb/HT208847) Intego VirusBarrier What Does Your Antivirus Scanner Do Under the Hood? Don’t Believe in Antivirus? Malware is Only One Tool in a Cybercriminal’s Arsenal Submit Malware to Intego Get 60% off Intego's Mac Premium Bundle X9 with the code INTEGOPODCAST. Download now and try it for free at intego.com. Intego Mac Security Podcast Survey: Win a $100 gift card (https://www.surveymonkey.com/r/integopodc…
Jul 6, 2018
How to Make Sure Your Mac’s Software Is Working Smoothly
We discuss some ways to check your Mac's software and ensure that it is running smoothly. And we bring the latest Mac security news. Apple's First MacBook Pro With Retina Display is Now 'Vintage' (https://www.macrumors.com/2018/07/04/2012-retina-macbook-pro-vintage/) Usb Restricted Mode and Forensics – Is There a Workaround? (https://www.drivesaversdatarecovery.com/2018/06/28/usb-restricted-mode-and-forensics-is-there-a-workaround/) Crypto community target of MacOS malware Episode 37: How to Make Sure Your Mac’s Hardware Is Working Properly How to Verify Your Mac’s Software Is Running Smoothly How to Back Up Your Mac to Multiple Time Machine Disks Conflict Catcher (Wikipedia) (https://en.wikipedia.org/wiki/Conflict_Catcher) 5 Must-Have Mac Utilities to Boost Your Productivity DiskWarrior (https://www.alsoft.com/DiskWarrior/) iStat Menus (https://bjango.com/mac/istatmenus/) Get 60% off Intego's Mac Premium Bundle X9 with the code INTEGOPODCAST. Download now and try it for free at…
Jun 29, 2018
How to Make Sure Your Mac’s Hardware Is Working Properly
We discuss some ways to check your Mac's hardware to make sure everything is working correctly, and we discussed some recent security issues, and a new way that wi-fi will be protected in the future. Episode 13: Is My Computer's CPU Secure? Black Hat Conference (https://www.blackhat.com/us-18/) Hyper-threading (Wikipedia) (https://en.wikipedia.org/wiki/Hyper-threading) TLBleed is latest Intel CPU flaw to surface: But don't expect it to be fixed (https://www.zdnet.com/article/tlbleed-is-latest-intel-cpu-flaw-to-surface-but-dont-expect-it-to-be-fixed/) Wi-Fi security is starting to get its biggest upgrade in over a decade (https://www.theverge.com/circuitbreaker/2018/6/26/17501594/wpa3-wifi-security-certification) Apple to Prevent iTunes Payment Info Changes on Very Old Versions of iOS, OS X, and Apple TV Software (https://www.macrumors.com/2018/06/28/apple-itunes-payment-info-email/) macOS 'Quick Look' Bug Can Leak Encrypted Data Through Thumbnail Caches (https://www.macrumors.com/2018/…
Jun 22, 2018
Lock Down and Secure Your Router
We look at your home router and explain the many steps you can take to make sure it is secure. How to Secure Your Home Router Episode #33: Cryptojacking, Russian Router Malware, and Parental Controls How to Remove Wi-Fi Networks from Your Mac and iOS Device SSID and Wireless Networking (https://www.lifewire.com/definition-of-service-set-identifier-816547) Universal Plug and Play (Wikipedia) (https://en.wikipedia.org/wiki/Universal_Plug_and_Play) MAC address (Wikipedia) (https://en.wikipedia.org/wiki/MAC_address) NetGear Orbi mesh wi-fi system Get 60% off Intego's Mac Premium Bundle X9 with the code INTEGOPODCAST. Download now and try it for free at intego.com. Intego Mac Security Podcast Survey: Win a $100 gift card (https://www.surveymonkey.com/r/integopodcast)
Jun 15, 2018
Where's the Best Place to Buy Mac Apps?
Some new security threats arise, and we discuss code signing and Apple's Gatekeeper technology. We then look at the pros and cons of buying Mac apps from the Mac App Store or directly from developers. VMware Fusion (https://www.vmware.com/products/fusion.html) Parallels Desktop (https://www.parallels.com/products/desktop/) Third-Party macOS Security Tools Vulnerable to Malware Code-Signing Bypasses for Years (https://www.macrumors.com/2018/06/12/macos-security-apps-malware-bypass/) How to Allow Apps from Anywhere in macOS Sierra Gatekeeper (http://osxdaily.com/2016/09/27/allow-apps-from-anywhere-macos-gatekeeper/) OS X Security: Under the Hood Features That Protect Your Mac How to Use Your Web Browser’s Fraudulent Site Protection Feature Intego VirusBarrier Scanner Get 60% off Intego's Mac Premium Bundle X9 with the code INTEGOPODCAST. Download now and try it for free at intego.com. Intego Mac Security Podcast Survey: Win a $100 gift card (https://www.surveymonkey.com/r/integopodcast…
Jun 8, 2018
iOS 12, macOS Mojave, Features and Security & Privacy Enhancements
We cover Apple's new operating system announcements, looking at the new features in iOS 12 and macOS Mojave. And we take a close look at the security and privacy features in these operating systems. Why do the iPhone X’s Animoji work after covering Face ID’s sensors? (https://thenextweb.com/apple/2017/11/15/the-iphone-x-doesnt-actually-need-face-id-for-animoji-apparently/) Augmented reality (Apple) (https://www.apple.com/ios/augmented-reality/) iOS 12 Screen Time App Will Help Reduce iPhone Addiction macOS Mojave: What’s New in Security and Privacy Features Why iOS 12 Is Huge for Security and Privacy Apple CEO Tim Cook: "Privacy is a Fundamental Human Right" (https://www.macrumors.com/2018/06/04/tim-cook-cnn-interview-privacy/) Get 60% off Intego's Mac Premium Bundle X9 with the code INTEGOPODCAST. Download now and try it for free at intego.com. Intego Mac Security Podcast Survey: Win a $100 gift card (https://www.surveymonkey.com/r/integopodcast)
Jun 1, 2018
Cryptojacking, Russian Router Malware, and Parental Controls
We discuss Apple's recent operating system updates - and the one they didn't update - cover some new malware, and then take a close look at using parental controls on the Mac and on iOS. iCloud security overview (for Messages in the Cloud) (https://support.apple.com/en-us/HT202303) AirPlay 2 (https://www.apple.com/airplay/) Apple HomePod Review: Superior Sound, but Limited by Siri How to Choose the Right Hard Disk for Your Mac 4 Types of Backup Hard Drives for Mac Russian hackers mass-exploit routers in homes, govs, and infrastructure (https://arstechnica.com/tech-policy/2018/04/russian-hackers-mass-exploit-routers-in-homes-govs-and-infrastructure/) Hackers infect 500,000 consumer routers all over the world with malware (https://arstechnica.com/information-technology/2018/05/hackers-infect-500000-consumer-routers-all-over-the-world-with-malware/) FBI tells router users to reboot now to kill malware infecting 500k devices (https://arstechnica.com/information-technology/2018/05/fbi-tells…
May 25, 2018
Browser Cookies & Private Browsing
We talk about all those GDPR emails you've been receiving, mention a new Spectre-type vulnerability, and then take a deep dive into browser cookies and private browsing. Episode 13: Is My Computer's CPU Secure? How to Request a Copy of Your Apple ID Account Data (https://www.macrumors.com/how-to/get-a-copy-of-your-apple-account-data/) Blob - Binary large object (Wikipedia) (https://en.wikipedia.org/wiki/Binary_large_object) How to Manage and Remove Browser Cookies on Mac and iOS Firesheep (Wikipedia) (https://en.wikipedia.org/wiki/Firesheep); see also Josh's past blog articles about Firesheep Episode 7: Tom Cruise Is in the Row Behind You (physical access) Get 60% off Intego's Mac Premium Bundle X9 with the code INTEGOPODCAST. Download now and try it for free at intego.com. Intego Mac Security Podcast Survey: Win a $100 gift card (https://www.surveymonkey.com/r/integopodcast)
May 18, 2018
Delete Your Social Media History
We discuss the new EFAIL issue affecting encrypted email; discuss a new class-action suit against Apple; and then explain how you can delete your history on Facebook and Twitter. It's not easy, but it's possible. Sponsor: Have an old Mac, iPhone, or iPad you want to sell? Get a $10 bonus today via SellYourMac.com/Intego. PGP and EFAIL: Frequently Asked Questions (https://www.eff.org/deeplinks/2018/05/pgp-and-efail-frequently-asked-questions) EFAIL FAQ (https://efail.de) S/MIME (Wikipedia) (https://en.wikipedia.org/wiki/S/MIME) Pretty Good Privacy (Wikipedia) (https://en.wikipedia.org/wiki/Pretty_Good_Privacy) Episode 30: What Is a Firewall, and How Does it Work? How to Encrypt Email with Any Email Provider What to Look for in a Private and Secure Email Service Provider How to Encrypt Disk Images with Disk Utility to Protect Sensitive Files Scissor vs butterfly keyboard (https://theengineerscafe.com/butterfly-keyboard/) Apple faces class action lawsuit over failing MacBook butterfly key…
May 11, 2018
What Is a Firewall, and How Does it Work?
May 4, 2018
Social Engineering Scams to Beware, and Digital Spring Cleaning Tips
We explain what tech support scams - by phone, or on the web - are all about, and we then take a close look at the best ways to do a spring cleaning on your Mac. Sponsor: Have an old Mac, iPhone, or iPad you want to sell? Get a $10 bonus today via SellYourMac.com/Intego. Social Engineering: Beware of ‘Tech Support’ Scams Teaming up in the war on tech support scams (Microsoft) (https://cloudblogs.microsoft.com/microsoftsecure/2018/04/20/teaming-up-in-the-war-on-tech-support-scams/) The 6 Most Common Social Hacking Exploit Techniques Report phishing, spam, etc. to Apple (https://support.apple.com/en-us/HT204759) Mac Cleanup Tips for Digital Spring Cleaning How to Use Optimized Storage to Increase Disk Space Change Where macOS Saves Screenshots Spotlight Secrets: 15 Ways to Use Spotlight on Your Mac Removing Duplicate Files on Mac OS X: The Complete Guide Dupin, iTunes duplicate manager How to Choose the Right Hard Disk for Your Mac Get 60% off Intego's Mac Premium Bundle X9 with the…
Apr 27, 2018
Beware of Trustjacking
We discuss three new types of Mac malware, talk about the latest Mac and iOS security updates, then look at a sneaky new threat that can affect the security of your iOS devices. Sponsor: Have an old Mac, iPhone, or iPad you want to sell? Get a $10 bonus today via SellYourMac.com/Intego. New OceanLotus Backdoor Discovered Targeting macOS New OSX/Shlayer Malware Variant Found Using a Dirty New Trick Snake Malware Ported from Windows to Mac About the security content of Security Update 2018-001 (https://support.apple.com/en-gb/HT208742) happyfunthisistotallyalegitimatetaxsite.com (https://www.youtube.com/watch?v=dQw4w9WgXcQ) Maker of 'GrayKey' iPhone Unlocking Box Suffers 'Brief' Data Breach, Receives Money Demands (https://www.macrumors.com/2018/04/24/grayshift-graykey-iphone-unlocking-box-data-breach/) RSA Conference 2018 (https://www.rsaconference.com/events/us18) Cybersecurity Tech Accord: 34 Tech Companies Just Promised a Bunch of Nothing (https://www.macobserver.com/columns-opinions…
Apr 20, 2018
How to Securely Sell Your Old Mac, iPhone, or iPad
In this week's episode, we explain why you may see dialogs on your Mac warning that your apps aren't compatible. Then we welcome Brian Burke, the president of SellYourMac.com, to discuss the best way to sell your old Mac, iPhone, or iPad. This is a sponsored episode brought to you by SellYourMac.com. Visit SellYourMac.com/Intego to get a $10 bonus on items worth $25 or more. How to Find Which Apps on Your Mac Are 32-Bit How to Securely Dispose of Your Old Mac Get 60% off Intego's Mac Premium Bundle X9 with the code INTEGOPODCAST. Download now and try it for free at intego.com. We want to hear from you! Take our podcast listener survey (https://www.surveymonkey.com/r/integopodcast) for a chance to win $100 Visa gift card.
Apr 11, 2018
Facebook, DNS, Apple Privacy, New Mac Pro, and More
We cover a lot this week. Facebook and Cambridge Analytica, a new DNS service for individuals, new Apple privacy features, the new Mac Pro, and more. Facebook Launches Help Center Tool to Check if Your Data Was Shared With Cambridge Analytica (https://www.macrumors.com/2018/04/10/facebook-launches-help-center-tool/) Go to this link (https://www.facebook.com/help/1873665312923476) to see your Facebook status concerning Cambridge Analytica How to Prevent Facebook Apps from Accessing Your Profile Information Facebook privacy settings - do they do anything? (https://www.wired.com/story/facebook-privacy-setting-doesnt-do-anything) How to Use Cloudflare’s 220.127.116.11 Public DNS (And Why You Should) Quad9 DNS (https://www.quad9.net) Intego Mac Security Podcast Survey: Win a $100 gift card (https://www.surveymonkey.com/r/integopodcast) Apple’s new “privacy icon” in iOS 11.3 and macOS 10.13.4 (https://www.apple.com/newsroom/2018/03/ios-11-3-is-available-today/) Apple's 2019 Mac Pro will be…
Apr 4, 2018
How to Not Get Scammed Online
We look at the ten most common online scams, and explain how to avoid them. And we mention the fact that Apple has updated everything this week. Apple Issues New Security Updates, Patches APFS Volume Password Bug Top 10 Online Scams: Watch Out For These Common Red Flags Episode #12: What to Do if You’ve Been Hacked How Apple and Amazon Security Flaws Led to My Epic Hacking (https://www.wired.com/2012/08/apple-amazon-mat-honan-hacking/) How to Choose and Answer Security Questions Type a URL Wrong, and You Might End up with Malware on Your Mac Episode #14: What's Up with My iPhone's Battery? Episode #15: What's a VPN, and Why Should You Use One? Why You Should Connect to a VPN on Mac and iOS — and How To Get 60% off Intego's Mac Premium Bundle X9 with the code INTEGOPODCAST. Download now and try it for free at intego.com.
Mar 28, 2018
Facebook, Privacy, and Logins
After some news - about a 100TB SSD, storing data in DNA, and more - we discuss whether your smart speaker is spying on you, then examine what could happen if you delete your Facebook account. Could you still log in on all the websites where you used your Facebook profile? World's largest SSD capacity now stands at 100TB (https://www.engadget.com/2018/03/19/nimbus-data-releases-record-100tb-ssd/) How DNA can be used to store computer data (http://www.bbc.co.uk/news/av/science-environment-43395686/how-dna-can-be-used-to-store-computer-data) Is Your Smart Speaker Spying on You? Facebook confirms Cambridge Analytica stole its data; it’s a plot, claims former director (https://www.theregister.co.uk/2018/03/18/facebook_confirms_cambridge_analytica_stole_its_data_its_a_plot_claims_former_director/) Did Facebook’s ‘favors’ for the Obama campaign constitute a violation of federal law? (http://www.foxnews.com/opinion/2018/03/26/did-facebook-s-favors-for-obama-campaign-constitute-violati…
Mar 21, 2018
Which Hard Drive Is Best for Your Mac?
We look at the three different types of hard drives you can use with your Mac: hard disks, fusion drives, and SSDs. We also discuss a cryptocurrency miner in the Mac App store, a new device that can crack any iPhone, and rumors of new Mac laptops. Unwanted Cryptomining Debuts (Briefly) in Mac App Store There’s a currency miner in the Mac App Store, and Apple seems OK with it (https://arstechnica.com/information-technology/2018/03/theres-a-currency-miner-in-the-mac-app-store-and-apple-seems-ok-with-it/) A Surreptitious Cryptocurrency Miner in the Mac App Store? (https://objective-see.com/blog/blog_0x2B.html) Intego video: How to Avoid Cryptojacking on a Mac (Unwanted Cryptocurrency Mining) How to Use Activity Monitor to Troubleshoot Problems on a Mac GrayKey iPhone unlocker poses serious security concerns (https://blog.malwarebytes.com/security-world/2018/03/graykey-iphone-unlocker-poses-serious-security-concerns/) Apple may launch 13-inch MacBook with Retina Display priced like a Mac…
Mar 14, 2018
Passwords in the Cloud
How secure are your passwords and other data in the cloud? We discuss how Apple's iCloud Keychain works, and whether you can trust it. In the news, we look at the "Right to Repair" bill in California, and discuss whether iTunes is going away. (Spoiler: no.) California to Introduce 'Right to Repair' Bill Requiring Smartphone Manufacturers to Offer Repair Info and Parts (https://www.macrumors.com/2018/03/07/california-right-to-repair-bill/) iFixit Repair Manifesto (https://www.ifixit.com/Manifesto) Kirk's experiment adding a hybrid drive to a Mac mini in 2010 (https://www.macworld.com/article/1154959/storage/momentusxthybrid.html) Apple confirms it will stop taking iTunes LP submissions as of this month (https://www.theverge.com/2018/3/6/17087184/apple-itunes-lp-submissions-stops-march-2018) ‘End of iTunes?’: Leaked Apple email sparks fears over future of music downloads (http://metro.co.uk/2018/03/06/end-itunes-leaked-apple-email-sparks-fears-future-music-downloads-7365412/) Mac and…
Mar 7, 2018
Changes Coming to macOS Server
Apple is simplifying its macOS Server software, and we discuss what you may want to do if you use this software. We also look at some recent news, such as how a Mac user was able to track a Mac his sold for three years, and how a company claims they can unlock every iPhone. Phone-cracking firm advertises that it can unlock any iPhone (https://www.grahamcluley.com/phone-cracking-firm-advertises-can-unlock-iphone/) Backdoor (Wikipedia) (https://en.wikipedia.org/wiki/Backdoor_(computing)) Cellebrite (https://www.cellebrite.com/en/home/) How I sold an old Mac and unknowingly had access to its location for over 3 years (https://medium.com/@mulligan/how-i-sold-an-old-mac-and-unknowingly-tracked-its-location-for-over-3-years-9a35cd3ca4cf) Identify legitimate emails from the App Store or iTunes Store (https://support.apple.com/en-us/HT201679) The Future of macOS Server Plex (https://www.plex.tv) macOS Server (Wikipedia) (https://en.wikipedia.org/wiki/MacOS_Server) Episode #15: What's a VPN, an…
Feb 28, 2018
To Beta or Not to Beta…
Is it a good idea to join Apple’s public beta programs, to get access to new features before everyone else? We discuss the pros and cons of being a guinea pig. We also highlight some recent Mac security issues and malware. Apple Releases Security Updates to Patch the Telugu Character Bug APFS Bug in macOS High Sierra Can Cause Data Loss When Writing to Disk Images (https://www.macrumors.com/2018/02/19/apfs-bug-macos-data-loss-disk-images/) macOS may lose data on APFS-formatted disk images (https://bombich.com/blog/2018/02/15/macos-may-lose-data-on-apfs-formatted-disk-images) How to Encrypt Disk Images with Disk Utility to Protect Sensitive Files OSX/Shlayer: New Mac Malware Comes out of Its Shell VirusBarrier Scanner (free in the Mac App Store) Apple Beta Software Program (https://beta.apple.com/) Get 60% off Intego's Mac Premium Bundle X9 with the code INTEGOPODCAST. Download now and try it for free at intego.com.
Feb 21, 2018
Do You Really Want an AI Listening to You All the Time?
We discuss Apple's HomePod, and the security implications of having an AI listening to you all the time. We also cover news about the Chrome browser's new built-in ad blocker, a text message bug that affects Apple devices (and is now fixed), and an interesting new chip in Apple's iMac Pro. Google turns on default adblocker within Chrome (https://www.theguardian.com/technology/2018/feb/15/google-adblocker-chrome-browser) This new text bomb crashes most Mac and iOS apps with a single Unicode symbol (https://techcrunch.com/2018/02/15/iphone-text-bomb-ios-mac-crash-apple/) (Note that Apple released security updates for all its operating systems a few days after we recorded this episode.) Fuzzing (https://www.wired.com/2016/06/hacker-lexicon-fuzzing/) Apple’s New iMac Pro Delivers Enhanced Security with the T2 Chip Microsoft tightens Windows 10's Secure Boot screws: Where does that leave Linux? (https://www.pcworld.com/article/2901262/microsoft-tightens-windows-10s-secure-boot-screws-wher…
Feb 14, 2018
The Year in Mac Security, and Tips for Backing Up Your Mac
We look at the year in Mac security 2017, and discuss the rise in malware. And we discuss the best strategies for backing up your Mac. But first, Kirk tells about how his website was (sort of) hacked. NameCheap Name Server Vulnerability Allows Unauthorized Users to Create Sub-Domains Subdomain (Wikipedia) (https://en.wikipedia.org/wiki/Subdomain) DNS - Domain Name System (Wikipedia) (https://en.wikipedia.org/wiki/Domain_Name_System) Registrar Namecheap let miscreants slap spam, malware on unlucky customers' web domains (https://www.theregister.co.uk/2018/02/07/namecheap_subdomain_security_hole/) A Look Back at the Top Mac Security Stories of 2017 Smashing Security podcast, episode 64: So just a "teeny tiny" security issue then? (https://www.smashingsecurity.com/64) Macro virus (Wikipedia) (https://en.wikipedia.org/wiki/Macro_virus) Intego Mac Podcast, episode 16: Malware and Security Lingo: What Do Those Words Mean? All the articles on the Intego Mac Security Blog about Adobe Flash vul…
Feb 7, 2018
Ad Blocking: The Good, the Bad, the Ugly, and the Ethics
An overuse of ads has made it hard to read websites. In order to read easily, and safely, it's useful to use an ad blocker. We discuss why you may want to use an ad blocker, how they work, and how to use them in macOS and iOS. Ad-Blockers: The Good, the Bad, and the Ethics Episode 15: What's a VPN, and Why Should You Use One? (Where we discussed Apple's malware removal tool). Intego Virus Barrier Scanner (free; Mac App Store) Strava Fitness App Can Reveal Military Sites, Analysts Say (https://www.nytimes.com/2018/01/29/world/middleeast/strava-heat-map.html) iBlocker (https://1blocker.com), AdBlock (https://getadblock.com), Ghostery (https://www.ghostery.com) Web Beacon (Wikipedia) (https://en.wikipedia.org/wiki/Web_beacon) NoScript (https://noscript.net) Hackers spread malware via Yahoo ads (https://www.scmagazine.com/hackers-spread-malware-via-yahoo-ads/article/532507/) Malware in ads turn computers into zombies (https://www.usatoday.com/story/tech/2015/01/20/malvertising/21889547/) Y…
Jan 31, 2018
Malware and Security Lingo: What Do Those Words Mean?
We use lots of strange words to describe malware and security issues. We look at malware and security lingo, explain who gets to name new malware, and also talk about Apple's latest updates to all their operating systems. Apple security update information (https://support.apple.com/en-us/HT201222) macOS Sierra, OS X El Capitan Updates Patch Meltdown Flaw Episode 15: What's a VPN, and Why Should You Use One? Meltdown and Spectre: What Apple Users Need to Know cURL (Wikipedia) (https://en.wikipedia.org/wiki/CURL) Viruses, Worms and Spyware—Yikes! A Look at Malware Terminology WannaCry and the State of Mac Ransomware Intego Interviews: Amit Serper on OSX.Pirrit Adware/Malware How Does Malware Naming Work? Melissa (Wikipedia) (https://en.wikipedia.org/wiki/Melissa_(computer_virus)) Flashback to the Biggest Mac Malware Attack of All Time—Is it Still a Threat? Get 60% off Intego's Mac Premium Bundle X9 with the code INTEGOPODCAST. Download now and try it for free at intego.com.
Jan 24, 2018
What's a VPN, and Why Should You Use One?
After a brief discussion of the week's news, we look at VPNs, virtual private networks. We explain how they work, and when and why you might want to use one. Note that Apple released fixes for the Messages bug and some other issues we discuss on January 23, the day before this episode was published. ¡Ay, MaMi! New DNS-Hijacking Mac Malware Discovered (Updated) How the Anti-Malware Function in Apple’s Snow Leopard Works (This article explains Apple's XProtect, when it was first introduced.) Why Your Antivirus Needs Real-Time Scanning Test pop-up windows (http://www.popuptest.com) Malicious Link Texted to Mac and iOS Devices Can Cause Freezes and Resprings (Updated) (https://www.macrumors.com/2018/01/16/malicious-link-ios-mac-freezes/) Apple CEO Tim Cook Says Power Management Feature in Older iPhones Will Be Able to Be Turned Off in Future Update (https://www.macrumors.com/2018/01/17/tim-cook-on-iphone-battery-controversy/) We Don't Need No Stinkin' Battery Features - Apple Releases i…
Jan 17, 2018
What's Up with My iPhone's Battery?
We discuss and explain the issue around iPhone batteries, and tell you what to do if your iPhone's battery isn't lasting all day. We also look at a new, dumb password bug in macOS High Sierra, new Wi-Fi security standards, and new Mac malware. Yet another macOS High Sierra bug: Unlock App Store system preferences with any password (https://www.macworld.com/article/3246634/macs/macos-high-sierra-bug-unlock-app-store-system-preferences.html) Is Apple Even Paying Attention To macOS Security Anymore? (https://www.howtogeek.com/339063/is-apple-even-paying-attention-to-macos-security-anymore/) Wi-Fi Alliance announces new WPA3 security protections (https://www.theverge.com/2018/1/9/16867940/wi-fi-alliance-new-wpa3-security-protections-wpa2-announced) ¡Ay, MaMi! New DNS-Hijacking Mac Malware Discovered Domain Name System (Wikipedia) (https://en.wikipedia.org/wiki/Domain_Name_System) Intego New Mac User Center A Message to Our Customers about iPhone Batteries and Performance (Apple) (https://…
Jan 10, 2018
Is My Computer's CPU Secure?
Meltdown and Spectre; two vulnerabilities that affect the majority of computers and portable devices in circulation, need software and perhaps hardware fixes to be secure. Josh discuss an interview he conducted with a security researcher on some particularly malicious adware/malware. We also answer some reader email, and explain what "hashing" is. Meltdown and Spectre: What Apple Users Need to Know CERT: Only way to fix Meltdown and Spectre vulnerabilities is to replace CPU (Update: CERT backtracks) (https://venturebeat.com/2018/01/04/cert-only-way-to-fix-meltdown-and-spectre-vulnerabilities-is-to-replace-cpu/) Hash function (Wikipedia) (https://en.wikipedia.org/wiki/Hash_function) Episode 6, Passwords Are Hard Intego Interviews: Amit Serper on OSX.Pirrit Adware/Malware About speculative execution vulnerabilities in ARM-based and Intel CPUs (https://support.apple.com/en-us/HT208394) Assembly language (Wikipedia) (https://en.wikipedia.org/wiki/Assembly_language) Get 50% off Intego's Mac…
Jan 3, 2018
What to Do if You've Been Hacked
The producer of our podcast, Doug Adams, had his iCloud account hacked, and he joins us to explain what happened, and how he resolved the issue. We talk about what to do if this happens to you. And we tell you everything you need to know to not be a victim of phishing. Your Apple ID and phone number are now being used for iMessage on a new Mac. screenshot https://www.intego.com/mac-security-blog/wp-content/uploads/2018/01/alert.png iMessage hack floods Apple users with Chinese texts (Mashable) (http://mashable.com/2016/10/19/apple-imessage-hack/#gFGPoNGo4iqs) haveibeenpwned.com (https://haveibeenpwned.com) Clever Phishing Scam Targets Your Apple ID and Password If you think your Apple ID has been compromised (https://support.apple.com/HT204145) Intego Mac Podcast, Episode 5: Two-Factor Authentication Phishing Dangers in Business and How to Avoid Getting Hooked HMRC issues Christmas warning about iTunes gift card scam (https://www.gov.uk/government/news/hmrc-issues-christmas-warning-abo…
Dec 27, 2017
Handcuffs Made of Tissue Paper
Search engines collect and harvest lots of data about you, what you look for, where you are, and what you buy. We explain how you can tell Google to store less of their data, and how to change to a more privacy-friendly search engine. And we explain what Apple's "differential privacy" is all about. Learning with Privacy at Scale (https://machinelearning.apple.com/2017/12/06/learning-with-privacy-at-scale.html) How One of Apple's Key Privacy Safeguards Falls Short (https://www.wired.com/story/apple-differential-privacy-shortcomings/) Corpus Linguistics (Wikipedia) (https://en.wikipedia.org/wiki/Corpus_linguistics) macOS Sierra: Share analytics information with Apple (https://support.apple.com/kb/PH25654?locale=en_US) Share analytics, diagnostics, and usage information with Apple (iOS) (https://support.apple.com/en-us/HT202100) Everything Google Knows about You (and How to Search Privately) The data that Google collects (https://privacy.google.com/your-data.html) People are getting locke…
Dec 20, 2017
Tom Cruise Is in Every Starbucks
With just a few days before Christmas, we discuss how to safely shop online in the holiday season and all year round. We also talk about a recent Apple firmware update for AirPort base stations, one that patches the KRACK exploit. Wi-Fi KRACK Vulnerabilities: FAQ for Mac, iPhone and iPad Users AirPort Base Station Firmware Update 7.7.9 Information (https://support.apple.com/kb/DL1948) AirPort Base Station Firmware Update 7.6.9 Information (https://support.apple.com/kb/DL1949) Automate and remotely access your HomeKit accessories (https://support.apple.com/HT207057) HTTPS (Wikipedia) (https://en.wikipedia.org/wiki/HTTPS) Comcast continues to inject its own code into websites you visit (https://thenextweb.com/insights/2017/12/11/comcast-continues-to-inject-its-own-code-into-websites-you-visit/) 6 Cyber Security Tips for Holiday Shopping Online Proactively Protecting Your Online Information with 5 Easy Tips Extended Validation Certificate (https://en.wikipedia.org/wiki/Extended_Validation…
Dec 13, 2017
This Is Potemkin Security
Apple discovered an embarrassing bug on December 2, and had to rush out a hurried update to fix it. We discuss this, look at the best way to back up iOS devices, and explain a change that Apple has made to iOS that trades security for convenience. Early reports about the December 2 bug (https://www.macrumors.com/2017/12/02/ios-11-1-2-date-bug-crash-loop/) Apple support document about the December 2 crash (https://support.apple.com/en-us/HT208332) Intego Mac Podcast, Episode 8: I Have Root “I Am Root”: A Retrospective on a Severe Mac Vulnerability Apple Releases macOS 10.13.2 High Sierra, iOS 11.2 and More with Security Fixes Should You Back Up Your iOS Device to iCloud or iTunes? What does iCloud back up? (https://support.apple.com/en-gb/HT207428) Apple, stop being stingy with the iCloud storage (https://www.macworld.com/article/3096106/data-center-cloud/apple-stop-being-stingy-with-the-icloud-storage.html) Time Machine Basics: How To Keep Your Data Backed Up iOS 11 Encrypted Backu…
Dec 6, 2017
I Have Root
We discuss the recent serious vulnerability that affects macOS High Sierra, which prompted Apple to rush out a security update. We explain what this means, and how important it is to keep your Mac up to date. “I Am Root”: A Retrospective on a Severe Mac Vulnerability The "sudo" command (Wikipedia) (https://en.wikipedia.org/wiki/Sudo) High Sierra Root Login Bug Was Mentioned on Apple’s Support Forums Two Weeks Ago (https://daringfireball.net/2017/11/high_sierra_root_login_two_weeks_ago) Contact Apple About Security Issues (https://support.apple.com/HT201220) About the security content of Security Update 2017-001 (https://support.apple.com/HT208315) Behind iPhone's Critical Security Bug, a Single Bad 'GOTO' (https://www.wired.com/2014/02/gotofail/) Get 50% off Intego's Mac Premium Bundle X9 with the code PODCAST19. Download now and try it for free at intego.com.
Nov 29, 2017
Tom Cruise Is in the Row Behind You
We look at a fake antivirus blog that's distributing malware, and we discuss why you need to protect your Mac when you're at the coffee machine. Because Tom Cruise might be lurking near your Mac. Watch Out! A Fake Antivirus Blog is Distributing Proton Malware Handbrake’s Server Compromised, Download Installs Complex Trojan Mac Users Hit by Rare Ransomware Attack, Spread via Transmission BitTorrent App Malware Spreads through Modified Transmission Application (Again) OSX/Proton Malware is Back! Here’s What Mac Users Need to Know Want to read about Flash Player vulnerabilities? Here's a search for "Flash Player" on the Mac Security Blog. There's a lot of articles. iStat Menus Episode 6: Passwords Are Hard (correcthorsebatterystaple) How to Lock Your Mac Screen and Protect It from Prying Eyes Get 50% off Intego's Mac Premium Bundle X9 with the code PODCAST19. Download now and try it for free at intego.com.
Nov 22, 2017
Episode 6: Passwords Are Hard (correcthorsebatterystaple)
Kirk and Josh talk take a close look at passwords, how to create secure passwords, and what types of passwords to avoid. Episode 5: Two-Factor Authentication; Should You Be Worried about Bitcoin? haveibeenpwned.com (https://haveibeenpwned.com) correcthorsebatterystaple (XKCD) (https://xkcd.com/936/) List of the most common passwords (Wikipedia) (https://en.wikipedia.org/wiki/List_of_the_most_common_passwords) How to Choose the Right Password Manager for You Bruce Schneier (https://www.schneier.com) Get 50% off Intego's Mac Premium Bundle X9 with the code PODCAST19. Download now and try it for free at intego.com.
Nov 15, 2017
Two-Factor Authentication; Should You Be Worried about Bitcoin?
Kirk and Josh talk explain what two-factor authentication is and why you should use it, then discuss Bitcoin, and explain how some apps and websites hijack your processor to make (virtual) money. Two-Factor Authentication: How It Works and Why You Should Use It MacVoices Update: Twitter Unhacked... (http://www.macvoices.com/macvoices-update-twitter-unhacked-overcast-issues-patreon-campaign/) Two-factor authentication for Apple ID (https://support.apple.com/HT204915) Multi-factor authentication (Wikipedia) (https://en.wikipedia.org/wiki/Multi-factor_authentication) Security tokens (Wikipedia) (https://en.wikipedia.org/wiki/Security_token) 1Password (https://1password.com) Google Authenticator (https://support.google.com/accounts/answer/1066447?co=GENIE.Platform%3DiOS&hl=en&oco=0) Unlock your Mac with Apple Watch (https://help.apple.com/watch/#/apd4200675b8?cid=acs::applesearch) Why You Shouldn’t Use SMS for Two-Factor Authentication (and What to Use Instead) (https://www.howtogeek.com…
Nov 8, 2017
iOS Apps and Privacy; Amazon Wants to Open Your Front Door
Kirk and Josh talk discuss recent issues around apps having access to your iPhone's or iPad's camera all the time. They then wonder if they'd let Amazon go into their homes when no one's there to drop off packages. iOS apps can access both your cameras at any time (https://krausefx.com/blog/ios-privacy-watchuser-access-both-iphone-cameras-any-time-your-app-is-running) iOS 11: A Complete Guide to iOS Security and Privacy Hacker Lexicon: What Are White Hat, Gray Hat, and Black Hat Hackers? (https://www.wired.com/2016/04/hacker-lexicon-white-hat-gray-hat-black-hat-hackers/) Amazon Key (https://www.amazon.com/b?&node=17285120011) French mailboxes (https://www.laposte.fr/particulier/expedition-colissimo/qu-est-ce-que-la-boite-aux-lettres-normalisee) Get 50% off Intego's Mac Premium Bundle X9 with the code PODCAST19. Download now and try it for free at intego.com.
Nov 1, 2017
New Mac Malware, and Apple's New APFS File System
Kirk McElhearn and Josh Long talk about the latest Mac malware and threats, and look at Apple's new APFS file system, and what you need to know as you upgrade to macOS High Sierra. KRACK and the state of malware that affects Macs Wi-Fi Protected Access II (WPA2) (https://en.wikipedia.org/wiki/Wi-Fi_Protected_Access) OSX/Proton Malware is back How the Anti-Malware Function (XProtect) in Apple’s Snow Leopard Works The Ins and Outs of Apple’s New File System, APFS HFS Plus file system (https://en.wikipedia.org/wiki/HFS_Plus) ZFS file system (https://en.wikipedia.org/wiki/ZFS) Apple’s APFS info and FAQ (https://developer.apple.com/library/content/documentation/FileManagement/Conceptual/APFS_Guide/FAQ/FAQ.html) Get 50% off Intego's Mac Premium Bundle X9 with the code PODCAST19. Download now and try it for free at intego.com.
Oct 23, 2017
Intego's 20th Anniversary, and a Look at Apple's Face ID
Kirk McElhearn and Josh Long chat with Serge Kameni, a long-time Intego developer, about the company's early years, then discuss Apple's Face ID, coming with the iPhone X. Happy Anniversary! Intego Celebrates 20 Years in Business Apple’s Face ID Security white paper (PDF) (https://images.apple.com/business/docs/FaceID_Security_Guide.pdf) Macworld: Face ID FAQ (https://www.macworld.com/article/3225406/iphone-ipad/face-id-iphone-x-faq.html) Tom's Guide: Face ID FAQ (https://www.tomsguide.com/us/face-id-faq,news-25910.html) Get 50% off Intego's Mac Premium Bundle X9 with the code PODCAST19. Download now and try it for free at intego.com.
Oct 5, 2017
Introducing the Intego Mac Podcast
Kirk McElhearn and Josh Long introduce the Intego Mac Podcast and discuss Apple's recent macOS and iOS operating system upgrades, and take a close look at Apple's security and privacy features. Apple's Privacy page Read about the Secure Enclave in this Apple iOS Security White Paper (PDF) The Secure Enclave hack is discussed in Month in Review: Apple Security in August 2017 Kirk's Apple Pay fraud experience iOS 11: A Complete Guide to iOS Security and Privacy Get 40% off Intego's Mac Premium Bundle X9 with the code PODCAST19. Download now and try it for free at intego.com.