Posts

Hackers are beginning to target Apple iPhone users by sending them text messages that appear to be from Apple. The text message have messages indicating that a lost device has been found and use URLs that have Apple product names in them such as: apple.com-support[.]id, apple.com-findlocation[.]id, apple.com-sign[.]in, apple.com-isupport[.]in, icloud.com-site-log[.]in

There is a widespread belief that Apple products are inherently more secure than Android or Windows devices. Inherent security doesn’t matter here, if the hacker can convince you to install their viruses and malware it is game over for you.

Of course, other companies, especially Microsoft, have been battling this for years. The part that is unique here is the SMS delivery and Apple-specific targeting.

How do you respond? After 20 years of telling people not to click on links, we’ve discovered that doesn’t work: they are going to click.

  1. Turn on multi factor authentication for everywhere that supports it. Do not limit this to the “important” sites.
  2. Store information on systems that use AI to detect usage that is different from your, unique, usage and alert you when something is amiss, like the credit card companies do for travel.
  3. Assume that people are going click and design your security around that, instead of assuming that they can and will accurately determine the safety of links.

ToTok, a social media app that recently took off in international popularity, is the United Arab Emirates actually spying on your according to a new article from the New York Times.

Officially it’s supposed to be a secure way to communicate with family and friends, even in countries that block similar tools. However, is actually a spying tool the United Arab Emirates government.

While both Google and Apple have removed it from their stores it will not be automatically uninstalled from your phone.

We understand that a number of readers of our blog are not social media aficionados. However, given the widespread scope of the spying of this app we highly recommend that you send this article out as a PSA to your employees who are digital natives.

The app appears to track messages, analyze user calls, analyze user contacts and track location. And that’s just what we know so far. This raises another question. Given practical and regulatory risks of such data, and creating vulnerability for your company through your employees phones, how are you securing your company on these devices? 

Apple doesn’t put their products on sale.

Not ever. It’s a point of pride.

However, Friday through Monday they’ll do the closet thing you’ll find them doing to a sale, and that’s giving you an Apple Store Gift Card worth up to $200. Their website is short on details but you can find what they’ve posted at https://www.apple.com/us/shop/gifts/shopping-event

Acer Chromebook, Amazon listing.

This time of year all the electronics seem to go on sale, except for Apple’s — why do you think that is?

Read more

Apple just announced a battery replacement program for certain 13 inch MacBook Pro’s (non touch bar) manufactured between October 2016 and October 2017.

From Apple:

Apple has determined that, in a limited number of 13-inch MacBook Pro (non Touch Bar) units, a component may fail causing the built-in battery to expand. This is not a safety issue and Apple will replace eligible batteries, free of charge. Affected units were manufactured between October 2016 and October 2017 and eligibility is determined by the product serial number.

You can see if your laptop is affected here. All managed services customers of JM Addington and Kairos Dynamic Digital Managed Services have already had their serial numbers run across the the program by JM Addington staff.

Find more reporting by Ars Technica here.