RPRNA

Search results for: “february 2022 update”

  • Apple’s security update in the UK made simple

    Apple’s security update in the UK made simple

    On February 21, Apple stopped offering its Advanced Data Protection feature in the UK after the government quietly asked for a way to unlock private user data stored in iCloud—not just in the UK, but everywhere. This decision has left some UK Apple users wondering how safe their information is now. Let’s break it down.

    What Was Advanced Data Protection?

    Advanced Data Protection, or ADP, started in 2022 as Apple’s top security option for iCloud. It’s a setting users can turn on to lock more of their data—like backups, photos, and notes—with a special kind of protection called end-to-end encryption. This means only the user can unlock it on their own devices, and no one else, not even Apple, can peek inside. Without ADP, Apple uses regular encryption for things like email and calendars, where it keeps a spare key and can open the data if a court orders it.

    Not many people likely used ADP since Apple never shared numbers. Some might not know about it, while others have older devices that can’t handle it because they need the latest software.
    Who’s Impacted by This Change?

    This affects two groups in the UK:

    • New users: Since February 21, they can’t turn on ADP. They’ll see a message saying it’s no longer available.
    • Current ADP users: If you already had it on, you’ll need to switch it off yourself soon to keep using iCloud. Apple can’t do it for you and promises more help later.

    If you never used ADP, nothing changes—your data still has Apple’s basic protection, where Apple holds the key.

    What’s Still Safe?

    Even without ADP, some iCloud features stay super secure by default, like iMessage, FaceTime, passwords, and health info. These use end-to-end encryption no matter what.

    Why Did This Happen?

    The UK government used a law to secretly demand Apple build a hidden way into encrypted data worldwide. Apple said no, worried it would weaken security for everyone—like leaving a house key out for anyone to find. Instead, they pulled ADP from the UK, hoping to bring it back someday with better safety for users.

  • What’s happening with WWDC 2025? here’s the scoop

    What’s happening with WWDC 2025? here’s the scoop

    Apple fans, get ready—one of the biggest events of the year is coming soon! WWDC happens every June, and it’s when Apple shows off what’s new for its software, like iOS, watchOS, and macOS. In 2025, we’ll see iOS 19, watchOS 12, macOS 16, and more.

    When Will Apple Share WWDC 2025 Plans?

    Apple usually tells us about WWDC in March. Looking back, here’s when they’ve done it before:

    • 2017: February 16
    • 2018: March 13
    • 2019: March 14
    • 2020: March 13
    • 2021: March 30
    • 2022: April 5
    • 2023: March 29
    • 2024: March 26

    Since the timing has been pretty steady lately, I’d guess WWDC 2025 will be announced in late March.

    When Is WWDC 2025 Happening?

    WWDC usually takes place in early June. Here are some past dates:

    • 2017: June 5-9
    • 2018: June 4-8
    • 2019: June 3-7
    • 2020: June 22-26
    • 2021: June 7-11
    • 2022: June 6-10
    • 2023: June 5-9
    • 2024: June 10-14

    One thing to note: Apple’s been slow with some iOS 18 features from last year. Big Siri upgrades might not come until May or June 2025 with iOS 18.5. Could that push WWDC a bit later? It’s possible!

    What’s Coming at WWDC 2025?

    This year, Apple Intelligence will steal the show. Reports say iOS 19 will bring a smarter Siri that acts more human, powered by fancy tech like ChatGPT or Google’s Gemini. There’s also talk that iOS 19 might borrow some cool design ideas from visionOS, like a major update to the Camera app. Some iOS 18 features got delayed to spring 2026, so WWDC 2025 might tease a bunch of iOS 19 goodies that won’t arrive right away. Want more? Check our iOS 19 guide! Apple will also reveal:

    • iPadOS 19
    • visionOS 3
    • tvOS 19
    • macOS 16
    • watchOS 12

    Any New Gear?

    Hardware’s a maybe. The M4 MacBook Air could drop before WWDC, but the M4 Mac Studio and Mac Pro might show up at the event. Stay tuned!

  • When to expect the iOS 18.4 test version

    When to expect the iOS 18.4 test version

    Apple finished the iOS 18.3 test phase a few weeks back, and we’re usually quick to see new test versions. But, we’re still waiting for the first test of iOS 18.4. The good news is, we might not have to wait much longer.

    iOS 18.4’s first test should come out next week

    Apple typically sticks to a schedule where new test versions come out soon after a big update goes live. This time, however, we’ve had a longer wait than usual. iOS 18.3 went public at the end of January, and here we are in mid-February, still without the new test. According to Mark Gurman from Bloomberg, we could see the iOS 18.4 test sometime between the middle of this week and early next week.

    Siri in the New iOS

    This week has passed without any new test releases, but next week looks promising.

    Keep in mind, that Monday, February 17 is President’s Day in the US, so don’t count on a release then. Also, on Wednesday, February 19, Apple has a big product reveal planned, so they might not want to overshadow it with a software update. That leaves Tuesday, February 18 as a likely day for the iOS 18.4 test version.

    While there’s always a chance it could be delayed, a release next week seems pretty sure, especially since Apple has already announced that iOS 18.4 will be available to everyone in April. They need to start testing soon for the new features in Apple Intelligence and Siri.

    A Longer Gap Between Tests is Rare but Not New

    It’s not common for three whole weeks to pass between test releases, but it has happened before. Here’s how the last few years looked:

    • 2024: iOS 17.3 went live on January 22, with the first iOS 17.4 test on January 25.
    • 2023: iOS 16.3 was released on January 23, and the first iOS 16.4 test came on February 16.
    • 2022: iOS 15.3 launched on January 26, followed by the first iOS 15.4 test on January 27.

    So, while this longer wait is unusual, it does have precedent, showing that Apple sometimes changes up its schedule.

  • Exciting new Apple gadgets coming soon

    Exciting new Apple gadgets coming soon

    The new year of 2025 is off to a great start with Apple ready to unveil some impressive gadgets in the coming months. Here’s a sneak peek at what you can expect:

    M4 MacBook Air

    Apple’s beloved MacBook Air is getting a boost with the M4 chip. This update is set to include:

    • 16GB of RAM as standard
    • A new nano-texture display option
    • A 12MP camera for better video calls
    • Support for two external displays when the laptop is open
    • Better battery life
    • Keeping the familiar 13-inch and 15-inch designs

    Look for this refreshed MacBook Air sometime in February or early March.

    iPhone SE 4

    The iPhone SE 4 is shaping up to be a must-have for many:

    • It boasts an iPhone 14-like design with an OLED screen and no home button
    • Includes Face ID with a notch
    • Runs on the powerful A18 chip
    • Supports Apple Intelligence, previously only on higher-end models
    • Comes with 8GB of RAM and a 48MP camera
    • Has a USB-C port and Apple’s first self-made 5G modem
    • Priced to be affordable, expected under $499

    This new iPhone SE is slated for a March release.

    ‘HomePad’ Smart Display

    Apple is set to mix things up with the ‘HomePad’, a smart home device:

    • It will focus on voice commands through Siri, home control, and communication
    • You can use apps like Safari and Music, but there’s no App Store
    • The screen size is about that of two iPhones side by side
    • Includes speakers, a camera for FaceTime, and a battery
    • You can mount it on walls or place it on various surfaces
    • It’s designed with security in mind, including features for video and audio intercom

    Though initially expected in March, there might be a slight delay.

    11th Generation iPad

    Apple fans can look forward to the new 11th-generation iPad:

    • It’s likely to feature a new, faster A-series chip with 8GB RAM
    • Could include new Wi-Fi and Bluetooth chips
    • This update aims to keep the iPad accessible and up-to-date

    M3 iPad Air

    The iPad Air is also in line for an upgrade with the M3 chip:

    • Expected to support new keyboard accessories
    • Will maintain the 11-inch and 13-inch sizes

    Apple Watch SE 3

    There’s talk of a new Apple Watch SE:

    • Could be released in the spring, possibly alongside the iPhone SE 4
    • An update from the last SE model which came out in 2022

    These product launches promise a dynamic start to 2025 for Apple, setting the stage for an exciting year with more innovations expected at WWDC and the fall launch season.

  • Decoding macOS Security: A deep dive into XProtect and malware defense

    Decoding macOS Security: A deep dive into XProtect and malware defense

    The digital landscape is constantly evolving, and with it, the threats that target our devices. For Mac users, the built-in security suite, XProtect, stands as a crucial first line of defense. But how effective is it? What exactly does it protect against? This article delves into the inner workings of XProtect, exploring its components, detection methods, and the specific malware it targets, offering a comprehensive look at macOS security in 2025. 

    My journey into the world of macOS security has been a fascinating one. From attending security conferences in unexpected locations, like my trip to Kyiv for Objective-See’s Objective by the Sea v2.0, to engaging with leading security experts, I’ve gained invaluable insights into the ever-present battle against malware. This exploration culminates in a detailed examination of XProtect, a topic I began investigating last year and have continued to refine as Apple updates its defenses.

    XProtect: More Than Just a Malware Blocker

    Introduced in macOS X 10.6 Snow Leopard back in 2009, XProtect initially served as a simple malware detector, alerting users to potentially harmful files during installation. However, it has evolved significantly over the years. The 2022 retirement of the Malware Removal Tool (MRT) marked a turning point, paving the way for XProtectRemediator (XPR), a more sophisticated anti-malware component responsible for both detecting and removing threats. 

    XProtect’s strength lies in its use of Yara rules, an open-source tool that identifies malware based on specific patterns within its code or metadata. This allows Apple, and indeed anyone, to create custom detection rules.  

    Today, the XProtect suite comprises three key components:

    • XProtect App: This component uses Yara rules to scan applications upon launch, modification, or signature updates, detecting known malware.

      XProtectRemediator (XPR): XPR takes a more proactive approach, regularly scanning the system for threats using Yara rules and other methods. These scans occur in the background during periods of low activity, minimizing performance impact.

      XProtectBehaviorService (XBS): Introduced more recently, XBS monitors system behavior, looking for suspicious activity related to critical resources.

    The Challenge of Obfuscated Signatures

    One of the challenges in understanding XProtect’s capabilities is Apple’s use of internal naming schemes for its Yara rules. While this obfuscation serves a security purpose, it makes it difficult to pinpoint the exact malware being targeted. For instance, while some rules have relatively clear names like XProtect_MACOS_PIRRIT_GEN (targeting Pirrit adware), many are given generic names like XProtect_MACOS_2fc5997 or internal codenames like XProtect_snowdrift.

    This is where the work of security researchers like Phil Stokes of Sentinel One Labs and independent researcher Alden becomes crucial. Stokes maintains a public repository on GitHub that maps Apple’s obfuscated signatures to common malware names recognized by security vendors and public scanners like VirusTotal. Alden has made significant strides in understanding XPR’s functionality by extracting Yara rules directly from its scanning modules. 

    Locating XProtect on Your Mac

    XProtect is enabled by default on all macOS installations and operates silently in the background. Updates are also automatic. To locate XProtect on your system: 

    1. Open Finder and navigate to Macintosh HD > Library > Apple > System > Library > CoreServices.
    2. Locate “XProtect” and right-click (or Control-click).
    3. Select “Show Package Contents.”
    4. Navigate to Contents > MacOS.

    Important Note: While XProtect provides a solid baseline of protection, it primarily focuses on known threats. Relying solely on XProtect is not advisable. Employing reputable third-party anti-malware solutions is strongly recommended for enhanced security.

    XProtectRemediator v147: A Look at the Malware Arsenal

    XPR’s scanning modules are responsible for malware removal. Examining version 147 reveals a targeted approach against a variety of threats. Here’s a breakdown of some of the identified remediators:

    • Adload: This adware and bundleware loader has been targeting macOS users since 2017, demonstrating a persistent threat. Recent XProtect updates have significantly improved the detection of this malware.
    • BlueTop: Identified as a Trojan-Proxy campaign documented by Kaspersky in late 2023.
    • ColdSnap: Likely targeting the macOS version of the SimpleTea malware, a Remote Access Trojan (RAT) with ties to the 3CX breach and similarities to Linux and Windows variants.
    • Crapyrator: Identified as macOS.Bkdr.Activator, a large-scale malware campaign discovered in February 2024, potentially aimed at creating a macOS botnet or distributing further malware.

      DubRobber (XCSSET): A versatile and concerning Trojan dropper.

    • Genieo: A widely known potentially unwanted program (PUP).

      KeySteal: A macOS information stealer first observed in 2021 and added to XProtect in February 2023.

    • Pirrit: An adware family known for injecting ads, collecting browsing data, and manipulating search results.
    • RankStank: Linked to the 3CX supply chain attack attributed to the Lazarus Group.
    • SnowDrift: Identified as the CloudMensis macOS spyware.
    • Trovi: A cross-platform browser hijacker similar to Pirrit, known for redirecting searches, tracking browsing history, and injecting ads.

    Several other remediators, such as BadGacha, CardboardCutout, FloppyFlipper, GreenAcre, RoachFlight, SheepSwap, ShowBeagle, ToyDrop, and WaterNet, remain unidentified at this time, highlighting the ongoing effort to decipher XProtect’s full capabilities.

    The Ongoing Evolution of macOS Security

    The fight against malware is a constant arms race. Apple continuously updates XProtect to address emerging threats, and security researchers work tirelessly to uncover the intricacies of its defenses. By understanding the components and capabilities of XProtect, Mac users can gain a deeper appreciation for the built-in security measures and make informed decisions about their overall security posture. While XProtect provides a valuable layer of protection, combining it with reputable third-party security software remains the most effective approach to safeguarding your Mac in today’s complex digital world.

More posts