• Meeting Intro with Harry
• "Finder and Launchpad" with Ron
• Q & A with the "A" Team based on questions emailed prior to meeting as well from the audience
Location:
by ZOOM on-line
MAGIC Minutes for February, 2024
by Wendy Shimada, MAGIC*
MAGIC General and Annual Business Meeting (via Zoom)
February 21, 2024.
The meeting was called to order at 4:02 pm, with 18 members attending. President Harry Anderson welcomed and thanked Mike Turnbull, new board member. We are stll looking for another new board member to volunteer.
Today's presentation is "Can We Talk", with Gary McIntyre about how to use Dictation. April's presenter is Ron, who will show us How to Use Launchpad and the Finder. May's presentation is a general Q&A and in June, Robert will give us the basic of iMovie. Members were asked for ideas for presentations they would like for the reminder of the year. A suggestion was made for some of the presentations to focus on iPads and iPhones instead of just computers. Robert shared that the upcoming June presentation on iMovie would be done using an iPad. He also welcomed Nancy, one of the original founding MAGIC board members back. Members were encouraged to email in any additional presentation suggestions as they thought of them.
Before beginning his presentation, Treasurer Gary McIntyre reported a healthy bank balance of $9,705.39 for end of February. As always, contributions are welcome and can be made through our website. Members were reminded to mute themselves to allow Gary to present without background noises and interruptions. Questions can be made using the chat feature or can be brought up at the end of the presentation.
After the presentation, a few members asked questions about the session and various other problems and our experts provided answers.
The meeting closed at 5:02 pm
MAGIC Musings
Greetings, MAGIC Members.
Spring has limped in so far here on Whidbey Island. Quite damp and chilly. So all my gardening is still out there, awaiting me, as I sit inside scrolling on my iPhone. I look forward to seeing many of you at our April meeting on Wednesday April 17 at 4 p.m. via Zoom. This month, Ron Sharp will make a presentation on using Finder and Launch Pad. We will also take your questions. Remember that you may submit your questions in advance via email, but our experts will also take questions from anyone attending the meeting. Feel free to email questions to our email (this gives us a chance to research the ones that we do not already know) or have them ready to ask on the meeting day.
Here is the schedule of presentations at our meetings from through June:
Apr. 17 — using Finder and Launch Pad by Ron Sharp
May 15 — Q&A session with our experts
Jun. 19 — using iMovie with Robert Elphick
See you on April 17 at 4 p.m.
Harry Anderson
MAGIC President
Note: This Software Update section of the newsletter lists the most relevant Apple updates. Not all updates are listed for all products. Additionally, I'll add other pertinent updates on occasion.
macOS patch fixes vexing bugs with USB hubs and more
by Ed Hardy, cultofmac
Mac users should install macOS Sonoma 14.4.1, a patch to remove a bug that affected USB hubs (and made headlines). The update, released Monday, also takes care of a couple of other problems.
Currently, it's the only OS update coming out of Cupertino on Monday, meaning Apple Watch and tvOS users are still waiting.
macOS Sonoma 14.4.1 is just a bug fix patch
macOS Sonoma 14.4 launched in early March with new emoji and an enhanced Podcasts app. But it also introduced some bugs.
These have now been taken care of by macOS Somoma 14.4.1. The official release notes from Apple for the new version say:
This update provides bug fixes for your Mac, including:
USB hubs connected to external displays may not be recognized
Copy protected Audio Unit plug-ins designed for professional music apps may not open or pass validation
Apps that include Java may quit unexpectedly
The notes make it clear there are no new features in Monday's release. Still, no Mac user wants bugs.
How to update your Mac to the latest
To download the macOS Sonoma update, go to Apple menu > About This Mac. Then click Software Update. Alternatively, you can install the new version from the App Store.
iPhone and iPad not overlooked
While Apple typically updates the operating systems on all its devices simultaneously, that's not what happened this time. Late last week, Apple introduced iOS 17.4.1 and iPadOS 17.4.1 for iPhone and iPad users, but made Mac users wait until today for a similar patch.
And speaking of waiting, Apple Watch is still on watchOS 10.4 and Apple TV remains on tvOS 17.4. It's possible they'll get their own patches soon.
Plus, Apple has yet to seed macOS 14.5, iOS 17.5, etc., to beta testers.
Apple quietly releases revised build of iOS 17.4.1
by Philipe Espósito, 9to5mac
Apple last week released iOS 17.4.1 and iPadOS 17.4.1 to iPhone and iPad users. Although the updates don't add any new features, they do bring two important security patches. For some unknown reason, Apple has now quietly released a revised build of iOS 17.4.1.
Revised iOS 17.4.1 build
The new build number is 21E237, while the previous one released to the public is 21E236. Most likely Apple has fixed some critical bug with the new build, so you shouldn't expect significant changes. However, although the new build is available for every device compatible with iOS 17 and iPadOS 17, installing it is not so easy - at least for now.
That's because, as verified by 9to5Mac, the new build is only available to those who download the IPSW file to update or restore their iPhone or iPad through Finder (or Apple Devices app on Windows). Apple is yet to make the revised build of iOS 17.4.1 available as an over-the-air (OTA) update.
iOS 17.4.1 fixes two security exploits that could lead to arbitrary code execution when processing an image. The exploits were found in CoreMedia and WebRTC. The same exploits were fixed with macOS Sonoma 14.4.1. Apple thanked Nick Galloway of Google Project Zero for finding and reporting the breach.
Once the new build of iOS 17.4.1 becomes available as an OTA update, you can download and install it by going to Settings > General > Software Update on your iPhone or iPad.
How to take advantage of Preview's form-filling helper in macOS
by Glenn Fleishman, macworld
macOS added an option to try to identify fields in a PDF form so you can easily enter text or check boxes.
Adobe added the option to mark fields that can be filled out with text, boxes that can be checked, and other helpers for form completion at least a decade ago-so long ago, it's hard to find out when. But many organizations that offer downloadable forms on their websites haven't gotten the message.
The group may not have access to Adobe Acrobat, the PDF modification software that allows editing and other features. They may be saving as or printing to PDF from Word, Pages, or other apps. Or, they may lack the resources or knowledge to populate a PDF with form elements.
But their omission doesn't have to hold you back. The image and PDF viewer and editor Preview in macOS has let you add text fields and other elements for some time. Starting in macOS Sonoma, you can also click a single button to get it to help you with forms.
Apple expands Self Service Repair for Mac, adds Diagnostics, and updates System Configuration
from Apple
Apple today announced an expansion of Self Service Repair for MacBook Pro and iMac models powered by M3, with support available today. Since April 2022, Self Service Repair has given customers access to the same manuals, genuine Apple parts, and tools used at Apple Store locations and Apple Authorized Service Providers.
Apple is also making Apple Diagnostics for Self Service Repair available for MacBook Pro and iMac models powered by M3 in the U.S. early next month. Launched late last year for iPhone and Mac, Apple Diagnostics troubleshooting sessions give customers the same ability as Apple Authorized Service Providers and Independent Repair Providers to test devices for optimal part functionality and performance, as well as identify which parts may need repair.
In addition, Apple is updating the System Configuration process for all Mac models to streamline the repair process and make it more efficient. Mac users will no longer need to contact the Self Service Repair support team to run the final step of a repair, but the team will still be available to assist as needed. The updated process will become available early next month in all countries where Self Service Repair is supported.
Self Service Repair is part of Apple's efforts to expand access to repairs. Widespread repair access plays an important role in extending products' longevity, which is good for users and good for the planet. For the vast majority of users who do not have experience repairing electronic devices, visiting a professional authorized repair provider with certified technicians who use genuine Apple parts is the safest and most reliable way to get a repair.
In the last five years, Apple has nearly doubled the number of service locations with access to genuine Apple parts, tools, and training, including more than 5,000 Independent Repair Providers and a global network of approximately 5,000 Apple Authorized Service Providers.
Apple's MacBook Air update brings a surprise upgrade over the M2
by michael Simon, macxworld
When Apple released the new MacBook Air last week, it called out three key upgrades: the M3 chip, Wi-Fi 6E, and support for dual external displays. But now that people have gotten to use the new machines, a fourth upgrade has been discovered.
As discovered by Max Tech on YouTube, Apple has changed the configuration of the base model's storage array to include two 128GB NAND chips rather than a single 256GB chip. That means the two drives can process data simultaneously, making for much faster speeds than the M2 model. In Max Tech's testing, write speeds were more than 30 percent faster and read speeds nearly doubled that of the M2 model.
Apple originally offered dual chips with all M1 MacBook Air models but switched to a single chip for the entry-level 256GB models, presumably to save costs. That meant SSD speeds were significantly slower than the M1 model unless you opted to upgrade the storage. The same was true of the entry-level M2 Mac mini and MacBook Pros.
While most people won't notice the difference in speed during normal tasks, it's a welcome change, especially without a price increase. It also gives some buyers a reason to upgrade from the $999 M2 model to the M3 for just $100 more.
Security Bite: This GTA 6-disguised macOS malware performs heist on Keychain passwords
by Arin Waichulis, 9to5mac
During an analysis of various splinter samples of a noteworthy macOS stealer, security researchers at Moonlock discovered one with an alarming level of sophistication. Under the disguise of the unreleased video game GTA 6, once installed, the malware executes rather clever techniques to extract sensitive information, such as passwords from a user's local Keychain.
In typical Security Bite fashion, here's the breakdown: how it works and how to stay safe.
As I reported in a previous edition of Security Bite, malware specially made to target macOS continues to germinate in popularity as Mac grows in popularity. Last year, 21 new malware families were discovered in the wild, up 50% from 2022.
Despite this fact, there still exists a common misconception that threat actors do not target Apple machines. While this may have been true in the past, it is certainly not the case today. Not only is the number of malware attacks increasing, but they are also becoming more sophisticated than ever.
How it works
Moonlock, the cybersecurity division of MacPaw, found the new malware sample is a variant of password-stealing ware (PSW), a type of trojan malware designed to collect logins and passwords from infected machines and send them back to the threat actor via a remote connection or email.
The malware disguises itself as either an alleged copy of GTA 6 or a pirated version of Notion. This is a common social engineering trick that exploits trust by using familiar nomenclature to deceive users into downloading malware.
Notably, all Macs come with a version of macOS Gatekeeper installed that works in the background to prevent users from downloading unsigned applications from the Internet that could contain malware. A user, however, can override this security feature by simply right-clicking on the DMG file and hitting "Open." Cybercriminals exploit this ease by including a graphic instructing the user on how to open the malicious file.
Window showing user how to bypass Gatekeeper to install DMG. via Moonlock
Upon execution, the DMG unleashes a Mach-O file named AppleApp.
"Subsequently, AppleApp initiates a GET request to a specific URL originating from a Russian IP address. If the connection is successful, the program will begin to download a partially obfuscated AppleScript and Bash payload. This payload is directly executed from application memory, bypassing the file system," Moonlock stated in a blog post about the findings.
When executed, the payload uses a multi-faceted approach to achieve its malicious objectives. In this order:
Phishing for credentials
Targeting sensitive data
System profiling
Data exfiltration
Since a local Keychain database is accessible only with a user's system password, the malware performs its second clever technique. It deploys a fake helper app installation window, further exploiting trust and tricking the user into revealing their password.
A visual example of a helper window. Unrelated to this malware sample.
The malware now begins to target Keychain databases and many other sources of sensitive data.
"With precision, the malware hunts through system directories, looking for valuable data such as cookies, form history, and login credentials from popular web browsers including Chrome, Firefox, Brave, Edge, Opera, and OperaGX. Additionally, it seeks the recent servers list from FileZilla, macOS Keychain databases, and the wallets of cryptocurrencies."
Moreover, using more sophisticated AppleScripts, the malware establishes a secret folder within users' home directories. Here, any collected logins, passwords, and keys are stored to await extraction from the infected system to an external server controlled by the
cybercriminal.
Apple Bash payload showing data exfiltration mechanism. via Moonlock
How to stay safe from macOS stealers
>While only about 6% of all malware targets Mac users, threat actors are actively targeting macOS more now than ever. It's important to stay vigilant and continue to use common Internet smarts.
While you may already know many of these tips, I think it's important to regurgitate them again in relation to macOS stealers:
Do your due diligence before installing anything outside the official Mac App Store
Under no circumstance should a user follow instructions to bypass Gatekeeper
Exercise caution with any system prompts or requests for sensitive information
Keep your devices and applications up-to-date to protect against the latest threats and vulnerabilities
WIZARD SEZ: This article has quite a bit of geek stuff. If you have any questions or think you have been got at, please contact your nearest Wizard or Apple and explain the problem clearly, and illustrate it with any pictures you can get.
Master Finder tabs and tags *
by Robert Elphick, MAGIC
You can use tabs in a Finder window, just like in a Safari window.
To open a tab, select an open Finder window and press Command T. You can then drag an item out of one tab, and on to another. The other tab opens, and you can place it in one of the window's folders.
A new tab after using Control T
You can add tags to a file or folder.
click once on a file or folder to highlight it and the use Control - I or right click on it...
A new tag menu after using Control I or right mouse button on file or folder
...and you can add a tag (or two!) by clicking on one (or more) of the colored dots in the menu.
To remove a colored tag, click on the colored dot again.
You can then click on one of the tabs options at the foot of a Finder window's sidebar, (if it is not showing then click on the little arrow to the right of the word "Tags") and view all the items you've tagged with that colour by clicking on it.
A new tag menu after using Control I or right mouse button on file or folder
Ctrl-click on one of the tag options in the sidebar and you can rename it.
After clicking on the red dot, the window shows all the red tagged items, no matter where they are located.
Try renaming the red dot to "Urgent" and the purple one to "Very important" and then use them to identify files that need your attention. I am sure that there are many other uses for tags too. Use your imagination.
The four corners of the Mac screen are sensitive to the mouse/cursor. Just drag the cursor into the corner to activate it.
In System Preferences -› Desktop & Dock, click the Hot Corners button.
Hot Corner selector in the System Preferences -> Desktop & Dock
Options for the top left corner triggered by clicking with the mouse.
Bottom right corner set to Quick Note
I found these to be handy little tools after a little prictice, trial and error. Have fun with them!
iPhone syncing fixed
by Robert Elphick, MAGIC *
Earlier this year a number of MAGIC members had a problem synchronizing their iPhones to their Mac by cable. The sync would get hung on step 3 and refuse to continue. We sent out a temporary fix to unplug the iPhone, wait 10 seconds, and them plug the iPhone back in and restart the sync. It worked but was a pain.
The latest updates seem to have solved the problem. Now syncing works just fine.
Here's how to protect against iPhone password reset attacks
Michael Potuck, 9to5mac
One of the latest attacks on iPhone sees malicious parties abuse the Apple ID password reset system to inundate users with iOS prompts to take over their accounts. Here's how you can protect against iPhone password reset attacks (often called "MFA bombing").
We've recently heard about Apple users being targeted with MFA bombing (also called MFA fatigue or push bombing). It's not a new attack, but it can be a convincing scam as it pushes official iOS password reset prompts to victims.
As detailed by Krebs on Security (via Parth Patel), attackers abusing this vulnerability appear to be doing so through an Apple user's phone number which can bomb your iPhone and other Apple devices with 100+ MFA (multi-factor authentication) system prompts to reset your Apple ID password.
Update 9to5Mac has heard from an Apple spokesperson about this issue. The company knows about the few recent cases of these phishing attacks and Apple has taken action to solve the problem.
How to protect against iPhone password reset attacks
Decline, decline, decline
Because the reset password requests are a system-level alert, it feels convincing - but make sure to choose "Don't Allow" for all of them
One way attackers wear victims down is by bombing them with hundreds of prompts, sometimes over multiple days - keep choosing "Don't Allow" and optionally use step 3 below
Note: If you see a password reset prompt on the web that may be a different phishing scam, close the page as either button could lead to a malicious link
Don't answer phone calls - even if caller ID says "Apple Support" or similar
Attackers are using call spoofing which can make the incoming number appear as the official Apple Support phone number and they may be able to verify personal information making the scam sound legitimate
Next, they try to get a one-time passcode from you to take over your Apple account
If in any doubt, decline the call - and call Apple back (800.275.2273 in the US) - call spoofing shouldn't be able to intercept your outgoing call to the real Apple
Apple highlights it will not make outbound calls "unless the customer requests to be contacted" and that you should never share one-time codes with anyone
Temporarily change your phone number associated with your Apple ID
If you continue to get the prompts, changing your phone number tied to your Apple ID should stop them
However, keep in mind this will interfere with iMessage and FaceTime
More details
As noted in Krebs on Security's article, it appears there is a rate limit problem with the Apple ID password reset system.
What sanely designed authentication system would send dozens of requests for a password change in the span of a few moments, when the first requests haven't even been acted on by the user? Could this be the result of a bug in Apple's systems?
Hopefully, Apple is working on a fix so malicious parties can't abuse this system. But unfortunately, the password reset scam has been highlighted by users for at least two years (likely more).
One recent victim shared that a senior engineer at Apple advised him to turn on the Recovery Key feature for his Apple ID to stop the password reset notifications. However, in further testing, that turned out to not be the case and Krebs on Security verified Apple Recovery Key does not prevent reset password prompts.
The iPad and iPhone recycle bin isn't like a Mac; you have to erase deleted files from many apps.
To empty the trash or recycle bin in Messages, tap Filters, Recently Deleted, Delete All.
To clear recently deleted files on iPhone, open Files, tap the Browse tab, Recently Deleted, More icon, Delete All.
iPad or iPhone slow? One of the first things you may think to try is to empty your iPhone recycle bin or iPhone trash bin. But where are the iPhone recycling bin and trash? It's not one icon, like on a Mac. Instead, you need to clear trash from several different locations; here's how.
CONTENTS
Empty Trash in Mail
Empty Trash in Messages
Empty Trash in Photos
Empty Trash in Notes
Empty Trash in Files
Empty Trash in Voice Memos
FAQ
Use Your iPhone to Hear the World Around You Better, Spy on Conversations, Listen to Your Heartbeat, and More
by Justin Meyers, gadgethacks
What started as an accessibility setting for hearing aids turned out to be a super helpful tool for anyone with a good set of Bluetooth headphones. The problem is that most iPhone and iPad users still don't know about it. If you're one of them, you need to see what this underrated gem in iOS and iPadOS can offer you.
The feature is called Live Listen, and it's been around for Made for iPhone hearing aids since 2014. While it was and is beneficial for people with hearing impairments, Apple truly made it a killer feature when it made it compatible with AirPods and Beats wireless Bluetooth headphones.
The concept is simple: connect a compatible pair of Bluetooth headphones, turn on the feature, and point your iPhone or iPad's microphone at a voice or sound you're having trouble hearing. Instantly, things are much louder and clearer as the audio beams to your headphones within a comfortable volume range.
Reasons You Should Be Using Live Listen
To name just a few reasons why Live Listen is so useful, you can use it to:
Hear a person talking better during a class, lecture, tour group, business meeting, or other assembly.
Help identify unknown sounds, such as wildlife in your backyard.
Troubleshoot noises in car engines, walls, and other areas.
Understand everything your friends say at a packed bar or restaurant with a lot of ambient noise.
Listen to your or somebody else's heartbeat.
Find out if your friends are talking about you when you momentarily exit the room.
Keep taps on your child by turning your iPhone or iPad into an impromptu baby monitor.
Spy on pretty much any conversation nearby, though you'd want to hide your iPhone well because an unattended iPhone is just asking to get snatched.
WIZARD SEZ: What?!! Spying? No MAGIC member would even think of such a thing!
Bloomberg: New iPad Pro and iPad Air updates expected in 'early May'
by Chance Miller, 9to5mac
Apple is planning to release its new iPad Pro and iPad Air models in "early May," according to a new report from Bloomberg. The news comes as Apple's "overseas suppliers have ramped up production" of the new devices.
The report explains that Apple had hoped to release the new iPads "by the end of March or early April," but is still in the process of finishing software updates for the devices.
The iPad Pro's new OLED screens have also been challenging to manufacture. "The screens in the latest models also require complex new manufacturing techniques, which have contributed to the delay," the report adds.
As a refresher, the new iPad Pro is expected to switch to OLED displays, feature a much thinner design, an upgraded M3 chip inside, and ship alongside a new Magic Keyboard and Apple Pencil. The iPad Air, meanwhile, will reportedly be available in a new 12.9-inch screen size for the first time.
This is a great article from Apple that might be a good idea to look at and print 'just in case'. When your device has been stolen you need to act quickly to protect yourself. This article gives specific instructions.
Out of the many dozens of options, which is the coolest Apple Watch face? Every time I see someone wearing an Apple Watch, I try to scope out which watch face they use. Nine times out of 10, they use either the Modular face or the Photo face (with a Sport band).
This is despite the Apple Watch offering dozens of watch faces, allowing for all kinds of customizability.
If you want to spice up and individualize your Apple Watch, here are the best and coolest faces. And in our latest video, I rank every watch face on a tier list.
Table of contents
How to add an Apple Watch face
Best Apple Watch face for fitness: Activity
Best Apple Watch face for hiking: Wayfinder
Best Apple Watch face for relaxation: Breathe
Best Apple Watch face for nurses: Modular Duo
Best Apple Watch face for two time zones: GMT
Best Apple Watch face for sleeping: Numerals Duo
Apple Watch face with most complications: Infograph
Best Apple Watch face for Dexcom: X-Large
Best minimal Apple Watch face: Nike Digital
Cool Apple Watch face: Numerals
Coolest Apple Watch face: Chronograph Pro
Best Apple Watch face for pilots: World Time
More Apple Watch tips
Apple TV+ is the streaming platform with the highest rated content on IMDb
by Philipe Espósito, 9to5mac
It's been five years since Apple TV+ was announced. Although its content library is not as vast as that of its competitors, Apple TV+ movies and shows have won multiple awards since then. Interestingly, a study by Self Financial found that Apple TV+ is the streaming platform with the highest rated content on IMDb.
Apple TV+ content is the best rated of all streaming platforms
Self Financial's study analyzed IMDb ratings for content available on the main US streaming platforms, which include Amazon Prime Video, Netflix, Disney+, Hulu, Peacock, HBO Max, Paramount+, and Apple TV+.
When it comes to having a huge library of content, Amazon Prime Video now leads the segment with 13,827 movies and shows rated - more than double that of Netflix, which comes in second. Apple TV+, on the other hand, is the streaming service with the smallest catalog with only 271 titles available.
However, despite having the smallest catalog, Apple's streaming platform stands out as having the best average rating for content, at least according to IMDb. Apple TV+ has an average score of 7.01 out of 10. Unsurprisingly, the study notes that the Emmy-winning series Ted Lasso is one of the highest-rated programs.
The study also looked at many other aspects of streaming platforms, such as the best for children - which is also Apple TV+ despite its limited catalog. Another interesting fact is that Netflix has the highest-rated sports and technology shows and movies, despite Apple's efforts to bring sports content to its platform.
Be sure to check out the full study, which also highlights the average IMDb rating by genre, as well as revealing that people spend an average of $52.97 per month on streaming services in the US.
Apple Pencil 3: Everything you need to know (plus the latest USB-C option…)
by Gerald Lynch, imore
How do you improve upon perfection? A pencil, after all, is for drawing. Everything else is just an addition. However, the Apple Pencil 3 seems set to come with some very nifty features that could actually make upgrading worthwhile. Now we're just waiting on that official release.
When the Apple Pencil 2 received a somewhat downgraded yet affordable USB-C refresh, fans were clamoring for something more adventurous — something that their standard Apple Pencil 2 couldn't do. Luckily, with rumors of interchangeable tips, Find My improvements, and so much more, we are expecting Apple's next stylus peripheral to be fantastic.
Though we have received many Apple Pencil alternatives, we haven't seen a proper new Apple Pencil in some time and, as the best iPad lineup is set to get bigger, so too is the total amount of Apple Pencils on the market.
Here's everything we know about the Apple Pencil 3 right now, from when we expect it to release, to all those rumored features.
Comparing the Apple TV vs. Roku vs. other smart TV products, there are a lot of good reasons to stick with Apple's offering — even though it's more expensive.
Roku is the more popular product, selling plug-in devices for as little as $30. And if you buy a new TV today, it's probably running Roku or Google TV software. Although the latest Apple TV 4K is a pricey $129, it offers better privacy protection, it's easily controlled with your iPhone and Apple Watch, makes FaceTime calls, plays better games and runs faster.
Jamf Threat Labs has published a new report on infostealer malware that targets macOS users. The report details two malware attacks; the first is a new implementation of the Atomic Stealer malware, while the second involves an attack in an online communications tool. Both attacks steal a user's sensitive information, such as account usernames and passwords, and data from crypto wallets.
Update 4/1/24 at 11 a.m. PT: Jamf responded to our inquiry about the Meethub app in the App Store: "We don't currently have any reason to believe the Meethub apps on Google Play and the Apple App Store are malicious." The Meethub section of this article has been updated.
Atomic Stealer and Arc browser-sponsored ads
Atomic Stealer was first reported about a year ago, distributed through unsigned disk image files (.dmg) when a user downloads an app. Jamf Threat Labs reports that Atomic Stealer is now being distributed through a sponsored link on Google when searching for "Arc Browser." Arc Browser is a legitimate free browser by The Browser Company whose website is located at arc.net.
However, the sponsored ad that a Google user may see takes the user to aricl or airci dot net instead of the Arc Browser's actual website. If the user proceeds to download what they think is the browser installer, they are instructed to run the installer by Control-clicking the icon and selecting Open-this is macOS's way to bypass Gatekeeper, which usually provides a warning of possible malicious software and instances of unsigned installers, stops the installation.
After Atomic Stealer is installed, a prompt appears that says that System Settings needs to be updated for the app-which the user thinks is Arc browser-to run. The user is asked to enter the account password, allowing the malware to access Keychain's data, which is sent to the attacker's server.
As of this writing, it appears that the malicious websites have been reported to the hosting service and have been taken down. Going to aricl or airci dot net results in a webpage with the logo for FastPanel, a server management tool provided by web hosting services. It's not known if Google has halted distribution of the malicious ad.
Meethub malware
Jamf Threat Labs also reports on an attack involving online meeting software on meethub dot gg. An attacker reaches out to a target and requests to use Meethub, which the user downloads. As with the Atomic Stealer Arc download, the user is instructed to use Control-click > Open to install the software and bypass Gatekeeper.
After installation, the user is asked to enter their account password, which allows the malware to access Keychain and crypto wallet data. The data is then sent to the attacker's server.
Jamf's report on Meethub involves software downloaded from the web, but there is a Meethub app in the App Store that runs on iPhones and M-series Macs (and a Meethub app is in the Google Play store). In a response to Macworld's inquiry on this, Jamf replied, "We don't currently have any reason to believe the Meethub apps on Google Play and the Apple App Store are malicious."
How to avoid the new infostealer attacks
Apple's Gatekeeper functionality prevents users from running unsigned software installers. When a user double-clicks an installer, Gatekeeper checks for the certificate issued by Apple to developers; the certificate tells Apple who the developer is and if it's blacklisted, and if the software has been tampered with since leaving the developer for distribution. Users can bypass Gatekeeper warnings by Control-clicking an installer and selecting Open from the pop-up menu-if this method is required by the software developer, it's a red flag.
Apple releases security patches through OS updates, so installing them as soon as possible is important. And as always, when downloading software, get it from trusted sources, such as the App Store (which makes security checks of its software) or directly from the developer. Macworld has several guides to help, including a guide on whether or not you need antivirus software, a list of Mac viruses, malware, and trojans, and a comparison of Mac security software.
Pretty Scary! Totally false Do Not respond, simply remove from your browser and Clear History in the browser settings, just to be safe.
Look at the From address - NOT WhidbeyTelecom! DO NOT CLICK!
Look at the "from" address This was not sent by Harry - Someone is pretending to be him - Some kind of SCAM.
Another Pretty Scary! Totally false Do Not respond, simply remove from your browser and Clear History in the browser settings, just to be safe.
What an opportunity!!! I did not reply.
Internet Crime
Any one bothered by internet criminal activity should report it to the Federal Bureau of Investigation Internet Crime Complaint Center (IC3) at this web page. This includes phishing, malware, spoofing, any demand for money.
Most everyone with Apple devices have an Apple account. Some people don't. Some people don't know why they would want or need an Apple account. So here are some of the advantages of an Apple account. It offers you much more than you probably realize.
First of all, for more than one device, all the data you choose can synchronize. So, for instance, you don't have to keep adding or deleting contact information on each device, and any of your calendar events will sync and show on any device logged into your Apple account. Your Apple devices will be more aware and can share login information. It's also really handy if you have an Apple TV so you don't have to enter data frequently.
It can keep photos and documents available on whatever device you turn iCloud on for those apps. And you'll have all the millions of apps available to you from the App store, not to mention the more than 100 million songs on Apple music.
Without an Apple account you won't have access to the "Find My" feature, or the "Activation Lock" if a device does get lost or stolen. And you wouldn't be able to backup your iPhone or iPad.
There are also services like Apple News you may find useful. In particular, Siri is much more useful with an Apple Account.
And something that most people would rarely think of, screen sharing between devices is simplified. In particular, Screen Sharing with a remote technician is simplified when logged into an Apple Account.
And when setting up a new device, a lot of your data can automatically transfer to the device once you sign into your Apple Account.
Since the MAGIC zoom meeting presentation this month in on the "Finder" app, it'll give you a head start to refresh yourself on terminology.
Screen
The screen refers to your whole computer screen, everything.
Window
The window is an app window that opens on the screen.
Top Menu Bar (two words) is the menu list across the top of the Screen
Toolbar (one word) is the list of tools on the top of an app window. (different from the menu bar on the top of the Screen)
Sidebar (one word) is obviously on the side of an app window.
Dock
The Dock is the row of app icons most often at the bottom of the screen but can be moved to either side.
Finder
The Finder is the Application that manages and displays your Desktop. Click on the Finder icon, the first one in the dock, to open the Finder window. That is where you find and access all your files.
Internet service
Is your service provider company such as WhidbeyTel or Comcast Browser
Browser
The browser is a term for the application that interprets web pages to display on your device. Apples browser is Safari. It's one of the best in my opinion. It is different than a search engine.
Search Engine
The search engine is the software/application that finds the web pages the browser displays when you search for anything. The popular search engines are Google, DuckDuckGo, Yahoo, and Bing. (DuckDuckGo does not track your web searches)
Wi-Fi Network
Is the wireless network that you set up for your devices. Your wi-fi network has a different password than your internet service provider account.
MacOS
Apples operating system for the iMac and MacBook laptops and Mac Mini.
iOS
Apples operating system for their portable devices, iPhone, iPad and iPod Touch. (Now there is also iPadOS which is a version of iOS for the iPad.)
iCloud
iCloud is Apples cloud service for backing up and syncing data between devices.
iCloud Drive
This is one option of iCloud that enables a cloud folder to share your data between your devices. This option also turns on a lot of other thing that mostly are unnecessary and should be turned off.
User
refers to the person your Mac was set up for and requires a password. Other Users can be created to keep individuals data separate.
File
A file is any bit of data labeled individually. It can be an image or a document or a spreadsheet, etc.
Folder
A folder is a container for many files.
Album
Is a folder for images.
Disk Drive
Is a storage drive. It can refer to the internal storage drive in a device or an external storage drive connected to a device. They can be a spinning disk drive or a Solid State Drive.(No moving parts)
Memory
Most often refers to the electronic memory that the device uses for processing data while working with applications. Also called RAM memory. It is different than the storage drive.
Pixel
Refers to a screen image quality, the more pixels per inch the sharper the image.
USB Drive, Flash Drive, Thumb drive
All refer to the small solid state storage devices that connect to other electronic devices to save or transfer your data.
USB
Universal Serial Bus is the port, connection type, for connecting devices. USB-C is the newer replacement that is smaller.
Take a break. Enough of this, time to take a break!
Apple's Restore Fund cultivates new roots in the Atlantic forest.
from Apple
"It is estimated there are 5,000 tree species in existence in the Atlantic Forest today. Of those species, two-thirds are threatened with extinction after centuries of exploitative, extractive practices. Restoring the rainforest — a potential 100 million-acre restoration area in Brazil alone — has been at the core of Apple-supported projects in the region, including one just inland from the coastal town of Trancoso in Bahia, Brazil, where one company is cultivating seedlings from mother trees, the most resilient trees from multiple species that have survived the rainforest's destruction."
MAGIC, the Macintosh Appreciation Group of Island County, serves people who use Macintosh computers, software and peripherals. Our goal is to share information and get answers to questions to make us more productive with our use of technology. Our monthly meetings give us a chance to discuss computer problems and share ideas with other Mac users, feature speakers on specific topics, and to keep apprised of Apple news.