Welcome to SecureMac.com, a site devoted to Mac OS security and Mac OS X Security! Use the Side Bar to navigate the site, and check this page frequently for updates and new security products!

Submit your news, feedback, security tips quickly!

New Mac Security News

Macintosh Security CD, T-Shirts, and Security books Newest Macintosh Security News Found here! 12.19.2001 News: SecureMac.com has the Exclusive Previews of MacAnalysis X! The security auditing suite for the Macintosh soon to be released for Apples Mac OS X. Get the skinny, the screenshots, and more information here! 12.17.2001 News: Better Safe than Sorry [PART 2] continues the education of computer security for your Macintosh. Learn more about Viruses, Trojans and worms and how they can affect your life by reading this article 12.14.2001 News: IPNetSentry 1.3.2 now offers program advancements like the support for adding/removing filters through AppleScript. IPNetSentry is the shareware based program to protect your computer from outside Internet intruders. 12.10.2001 News: TypeRecorder 1.2.1 has been released, this update for the keystroke recording (shareware) software title includes bug fixes, documentation changes and the ability to hide daily recording logs. Download TypeRecorder 1.2.1 12.10.2001 News: MacSFTP is the SFTP (Secure FTP) client to connect to secure FTP servers. Did you know that FTP sends your passwords and data in plain text? You are trying so hard to keep yourself and your passwords secure and now you have a alternative to FTP. From the makers of MacSSH comes MacSFTP which utilizes SSH, download, and switch over to MacSFTP today! 12.07.2001 News: Stealth Signal is a software and service to stop theft and track down stolen or lost computers. The Stealth Signal Service is a great addition to the computers physical security, school, government agencies and even home users are using this software on their computers to keep track of them. The company has recovered computers for years and with this package working on almost every popular operating system you can get and try a copy for Mac OS and Mac OS X today! Read our review and see how Stealth Signal can benifit you! With the easy to access interface you can keep track of one of multiple computers at the same time and easily report stolen computers. Read more about Stealth Signal 12.05.2001 News: Intego released NetBarrier X and we reviewed it for you. NetBarrier is Intego's antivandel/firewall suite for the Macintosh, NetBarrier 10.0 adds more functionality than ever offer users many new features dealing with firewall settings. See how NetBarrier X (NBX)'s firewall functionality differs from what comes prepackaged with the operating system. Read more, upgrade from 2.0 to NBX - Read the Review 12.03.2001 News: Better Safe than Sorry.... You've heard it before and we will help you understand why. This article will share with you why you should take the extra steps to keep your computer safe and what methods to follow. Read the article : Better Safe than Sorry ShredIt 4.9 is available for download, are you insecure about your 'private' files getting in the hands of the wrong people? ShredIt will safely delete your files on your hard drive by overwriting the space taken by the file with miscellaneous data. Version 4.9 adds the Safe Place™ feature. Important items, like children's homework, can be kept in a Safe Place folder and ShredIt will not shred them. Simply create the Safe Place folder, drag important items into the folder. GPGMail for Mac OS X lets you add encryption to the Mail.app. Don't send messages without encryption as hackers can snoop on what you are sending out. Sniffing e-mail is done every day, you never know when someone may catch your e-mail in their traps. Read about and install GPGMail for Mac OS X. 11.27.2001 News: Ettercap will run on Mac OS X - a known bug was found that complicated the installation process of this network utility and has been fixed. Read this page for patching instructions. 11.26.2001 News: Crypt a encryption / decryption package for Mac OS X by Steve which utilizes the OpenSSH package. This simple and nice interface makes it easy enough for anyone to keep their files secure. Read about Crypt for Mac OS X and start to install 11.13.2001 News: Apple's second generation Airport Base Station and Cards are out now supporting 128-bit encryption for passwords and data. Cards are compatible with the Cisco LEAP security method. Compatible with AOL and OS X with firewall functionality. AirPort 2.0. Apple's greatest networking device hands down 11.12.2001 News: MacAnalysis 2.0b8 the security auditing suite for the Macintosh is out, this new version includes advancements with the application along with bug fixes. Scan your whole network from your Macintosh to find security holes. Once found look to MacAnalysis recommended fixes to help guide the way to security. Download 2.0b8 of MacAnalysis now IPNetSentry 1.3 offers more efficiency and reliability to help protect your servers from the heavy payload of the Nimda and Code Red. IPNetSentry is a shareware ($35.00) firewall application which will instantly blocks someone who tries "scanning" your machine from the Internet from gaining access. Get protected - download IPNetSentry Ettercap 0.6.2 the unix based multipurpose sniffer/interceptor/logger for switched LAN has been released. Now multi-threaded single process, with many bug fixes and updates. This software is compatibly for Mac OS X and is free of charge. Read more about ettercap and download 0.6.2. 11.08.2001 News: Complete our security archives. How do you describe the words 'Macintosh Security'. We are working hard every day to keep our web sites up to date with the most current aspects of mac security. If we do not have a software title reviewed, a security method discussed or a hardware device (mechanical or physical) covered send us a email and we will get it on SecureMac. 10.29.2001 News: Backing up your data is one of the simplest ways to ensure security. Tri-BACKUP is the first utility for both Mac OS and Mac OS X which preforms backups. Many features in this program make it easy to keep backup current even protect the backups with password protection. Read more about Tri-BACKUP and backing up your files 10.21.2001 News: FIX for the security issues which found setuid root applications allow root shell access has been fixed by Apple. Way to go apple on the quick update and taking security as a concern. To fix the security concern in Mac OS X simply go to the Apple Software Update utility and start the downloads followed by a restart. Read about the security issue and what concerns you should have with this risk if unpatched. 10.17.2001 News: Security ALERT: Security Concern with Mac OS X, any user who is logged into the system can obtain a root (god) shell by simply opening a few programs in sequence. Read about this security alert: Setuid root applications allow root shell access 10.16.2001 News: SANS Institute has posted a paper that Roland E. Miller, III has written titled Mac OS X 10.0 Security Essentials. The paper specifically covers version 10.0, however, most of the issues presented also apply to the current version 10.1.  Roland is determined to try to keep the paper up to date. 10.12.2001 News: PGP Freeware's lock functions are causing iMac users to feel insecure. It was noted that the lock functionality can be easily bypassed on iMacs by a simple paperclip inserted into the force-reboot hole. We note this just because sometimes the obvious is the most insecure. Pulling the plug on the computer has the same effect, the computer will reboot and you will need some sort of desktop security software or startup software in place to keep people out of the machine, try open firmware password protection as described below. 10.11.2001 News: BrickHouse 1.1b6 a Mac OS X firewall configuration utility makes it very easy for Mac users to edit their firewall settings to keep their computer secure from the outside intruders. Read about BrickHouse 1.1b6 new features 10.10.2001 News: MacAnalysis free giveaway is over, for those of you who filled out the request form please wait for a responce. The team said the giveaway was such a success and wanted to thank everyone for participating. 10.08.2001 News: SecureMac.com's article entitled 'Marketing your Macintosh Security Programs' helps the security program developers get the word out. This document is created by developers who have software they have developed and have disclosed some of their techniques. The document will grow as developers submit their ideas. Read How to Advertise Foolproof 3.5.2 adds support for Mac OS 9.2.1 10.05.2001 News: Vulnerability in PowerPoint/Excel 2001 for the Mac leave it open to execute malicious code. Read about this problem and how Microsoft has solved the problem, get the patches and fixes. See if your version of the PowerPoint and Excel are vulnerable. 10.03.2001 News: gorka writes in to tell us how to disable the auto execution function in IE 5 under Mac OS X 10.1 which can allow launching of malicious programs... "In preferences of Explorer, under Security Zones tab, select Custom and disable, "Launch Applications and Files" I've downloaded the same archive that first automatically executed again and this time there was no installation :o)" 10.02.2001 News: Earlier a Macintouch reader said in IE 5/OS X 10.1 .."I've noticed a very disturbing "feature" in my copy of IE 5 for Mac OS X 10.1 5G48.. When it downloads some programs (namely, applications that have been encoded with MacBinary), it de-.bins them as it downloads, which is normal, but after the file is downloaded IE runs the application! This is a very dangerous way to program software, especially something like a web browser.. Someone could easily make an IE 5 user download a virus application that will automatically load as soon as it is downloaded. I'm on a 400MHz G4 connected to an OC3. I probably wouldn't notice if a 50K trojan was downloaded and run even if I was at the computer while it happened. I did a quick scan of the IE preferences panel, and I didn't see anything that will turn this option off. Hopefully, this isn't present in the version shipping with OS X 10.1. " SECURITY ALERT! iDisk under Mac OS X 10.1 has been found to send iDisk passwords in plaintext rather than the normal encrypted WebDAV format. Your iDisk account user data can be found by a hacker sniffing the network. Notice: iDisk normally sends in encrypted format. Follow instructions to connect securely untill Apple releases public fix. If a hacker finds your user information by using a packet sniffer he/she has full access to your iDisk account including the disk, the web site and the e-mail account. Read more about this security alert published by Open Door Networks October virus definitions have been released, all antivirus information can be found on the left side of the navigation. Vscan 1.8.8 the shareware anti-virus detection/removal program is also out. NetBarrier 2.1 is available for free trial version download and the update is out for those of you who did not know about the new features. Stop the CodeRed worm from slowing down your Mac. Read more about Intego's NetBarrier ShredIt 4.8.2 by ARC is out, one of those people who is insecure about just deleting sensitive data because you know it could be recovered in seconds. ShredIt's method of destroying data is by choosing the overwrite pattern and the number of times it will overwrite the original data. Download ShredIt iKeeper 1.2 makes it possible to store your passwords in one central location, although it offers some sort of protection SecureMac suggests you store the file on a removable media device. There are some passwords you just don't really care about, for instance Hotmail accounts you setup so you wouldn't get spam at you @Mac.com email account. We have taught you not to write your passwords down on stickie notes and not to use the same password twice. Now we teach you not to store all your eggs (passwords) in one basket The people @ macosx.forked have created some ports to additional software needed to run ettercap under Mac OS X. Ettercap as described below is a network sniffing, monitoring tool used by network administrators to keep tabs on the network from unix, and now Mac OS X (; Macintosh Security Store is where Mac users find security products - books, t-shirts and more for Macintosh and computer security and hacking. Great prices. Special Discounts and more!! 09.27.2001 News: Firewalk X 1.3.8 for Mac OS X - A firewall configuration tool has been released. This version offers full support for OS X 10.1 and minor bug fixes and minor improvements. Learn about setting up the firewall on Mac OS X, it is not hard and with a program like Firewalk X no one should be left open to the public. 09.25.2001 News: Startup Security 1.2 was released offering more Mac OS 9 security and making it possible to stop users from disabling the extension during startup. More features added. To learn about this application and how it secures your computer using the open firmware password protection click here 09.24.2001 News: Ettercap 0.6.0 the unix (Mac OS X) multipurpose sniffer/interceptor/logger for switched LAN has been released. Must add to the toolbox for Administrators interested in security, Mac OS X is still new to many people and the unix aspect of security still has those people baffled. Learn more about what happens on your network by using Ettercap 0.6.0 MacAnalysis 2.0b7 is available for download. MacAnalysis is a software package which performs security sweeps of your computer or a remote computer. The package comes with all of the standard network tools such as ping, nslookup. Once the audit has been done the package enables you to test the vulnerability for true validity and will help you with securing the hole. read more about MacAnalysis Virus Definitions have been updated. (see left hand side navigation) SecureMac.com is back online, the web server was offline due to hardware failure, we were originally supposed to be back up in 4 days, from August 29th except we had to wait for parts to arrive. Updates will take place, we are reviewing new software and keeping you up to date on security news. 08.31.2001 News: Security Alert America Online Instant Messenger (AIM) users are finding their messaging services interrupted due to a hackers hijacking their accounts. The hack can effect all AIM subscribers that have the username of 10 characters or less. The password will be changed leaving the account holder helpless. When the attacker hijacks a user account they have full access.... Read more about this security issue and the AIMThief 08.29.2001 News: Mac OS X Firewall Security: Shareware Method article will inform you how to keep Mac OS X secure with shareware firewall utilities. From talking to many people who run Mac OS X, they say that they will configure the built in firewall by command line, after confronting them a week later they say they meant to but didn't have the time to sit down and learn it. Check out this paper as it will help you decide how you want to handle Firewall security with shareware methods. 08.28.2001 News: A new enhanced version of the shareware key logging application Monitorer has been released. At version 2.0 you may now utilize the screen capturing options. If you are looking for a program to keep track of what you type and are using Mac OS 9+ this is the right program for you. Startup Security 1.1 - Open Firmware Password configuration utility new features include, disable shift key during startup, bug fixes and now more Mac OS 9 support and features. (learn more about open firmware password protection and read more about Startup Security 1.1 08.27.2001 News: Shift Key Suite 1.0.6 (shareware) will give you the ability to disable the shift key during startup. Many people utilize security programs which can be bypassed by holding down the shift key to disable extensions, this program will stop users from being able to do so. Read more about SKS - Shift Key Suite 08.21.2001 News: Startup Security 1.0 is a application for Mac OS 9 and OS X to configure the Open Firmware Password protection. If you are looking to add a little more security to your Mac yet you don't like the command line then this Graphical User Interfaced Application is for you. Try Startup Security today! IPNetSentry 1.1.5 has been released. This new version of the Firewall software adds better logging functionality. If you have not checked out this shareware software yet and are looking for a solution for firewall functionality without barricading yourself in try IPNetSentry. 08.20.2001 News: Security Alert! - FileGuard has a weakness in its authentication scheme which allowed one Mac programming group to create a file to display the information of the user names and passwords stored. If run by a user on the computer they could obtain all the users passwords including the administrators password and have full administrative privileges. Read about this security issues and what you can do to prevent it. 08.15.2001 News: Security Alert! - Open Firmware can be used to set passwords equivalent to BIOS passwords on a Macintosh to help keep the Macintosh secure. Do not feel that secure if you have the password set because there is a way around this protection method. We are not talking about switching out the RAM and zapping the PRAM. The method used is software based a application called FWSucker; It will extract the password stored and display it in plain text. Read more about this security issue and how to keep your Macs secure. Macintosh Security Store opened its doors this morning offering Mac users a different selection of Macintosh Security Goods including Books, CDs, and T-Shirts all shipped from our location with a all new design. 08.10.2001 News: FileGuard 4.0 is out and is now owned by Intego, read about the new advancements and what is going to happen with the software. If you are looking for a desktop security solution for single users to multiple user environment then this might be your fix. Read about FileGuard and see how we ranked this software MacAnalysis 2.0b6 allows you to perform security audits against your network from your Mac using the classic interface. Scan your system for open security holes and fix them before the hackers get to your network. This is the most complete security auditing kit for the Macintosh we give it a five lock rating. Read more and download MacAnalysis xnu a patch for Mac OS X have been created by Peter Bartoli, to enable your Mac (Mac OS X/ Darwin) to spoof MAC addresses - this feature may be used in programs such as ettercap and Nemesis Trying to install ettercap but you are recieving the message that ncurses isn't installed? Revisit the ettercap page for a download of ncurses for Mac OS X. 08.06.2001 News: Update 08.15.2001 -Mac OS X Firewalk 1.3.6 has been released, fixing a bug that prevented the dockling from listing rule sets. To learn more about this firewall tool for the Mac OS X read more. 08.02.2001 News: Ettercap has just been ported to Mac OS X, this is the perfect network monitoring tool for all system administrators and hardcore computer users. This tool will let you sniff the network and analyze/log network packets. This is a full suite with many additional features such as plugin support, packet filtering, and SSH1 login capture. Download ettercap and learn more. 07.31.2001 News: ForgotIt 1.3 the password keeper program is now out for Mac OS X along with updates in the classic versions. If you are looking for a place to store passwords and pins (ie: serial numbers) then try this blowfish encrypted password saver. Firewalk 1.3.4 has been released, this is a Mac OS X firewall configuration tool with many features to keep your mac a little safer from the outsiders. 07.30.2001 News: ALERT! - Subseven Macintosh edition (Sub7Me) server has been released. Subseven is a popular windows based trojan (remote administration tool) which has gained much attention amongst hackers and home users alike. Read about the uses and features of this program here and what to watch out for. 07.26.2001 News: Apple has released Web Sharing Update 1.0 which offers security improvements to Apache (support for the case-insensitive Mac OS Extended file system -HFS+) and the latest version of OpenSSH 07.25.2001 News: Intego just released FileGuard 4.0. Please send us all your comments about this product and your prior uses, we are compiling the review of this program with user comments. This is a 59.00 product and has been used by over a million people. 07.24.2001 News: Monitorer is the newest addition to the security world offering Macintosh users a way to capture and log keystrokes. This extension hides in the background logging everything the user types, from term papers to confidential data. Monitorer is ideal for the computer user who types term papers for school and want to have a backup of the data stored incase the computer crashes before he/she saves. Read about Monitorer and what is has to offer in our Keystroke Library Previous Macintosh Security News : March 2001 - Sept 2001 and The Year of 2001 Macintosh Security News Here

Knowing security is important. Most people are blinded by the word 'security + mac' your current security program probably is not secure the way it should be for your office, school, internet, or even home. I hope you learn more from this site then you have ever known about macintosh security. We will constantly update it with the most current programs, news and downloads. If you are a programmer for the mac, please contact us, we are looking to make a program. email SecureMac for more information

Email us with anything we are missing. Want your application listed ? Want to exploit another program. Are we missing anything! Come on send it in. Make this THE Mac security Site!


Commercial Macintosh Security Website
listed on Freaks Mac Archives, macinstein.com, macsurfer.com, macaddict.com, macobserver.com , MacFixit.com, MacWeek.com , mac-mania.com, resexcellence.com, Webintosh.com, maccentric.com, macnytt.applepaj.se, applelinks.com, antionline.com,