To Customer Support To Customer Support

“Huge” number of Mac apps vulnerable to hijacking, and a fix is elusive

  • 10 February 2016
  • 3 replies
  • 221 views
Jasper_The_Rasper
Rank
Userlevel 7
Badge +54

Apps that use 3rd-party updater over insecure HTTP channels subject to MiTM attacks.

by Dan Goodin (US) - Feb 10, 2016
 
Camtasia, uTorrent, and a large number of other Mac apps are susceptible to man-in-the-middle attacks that install malicious code, thanks to a vulnerability in Sparkle, the third-party software framework the apps use to receive updates.
 
The vulnerability is the result of apps that use a vulnerable version of Sparkle along with an unencrypted HTTP channel to receive data from update servers. It involves the way Sparkle interacts with functions built into the WebKit rendering engine to allow JavaScript execution. As a result, attackers with the ability to manipulate the traffic passing between the end user and the server—say, an adversary on the same Wi-Fi network—can inject malicious code into the communication. A security engineer who goes by the name Radek said that the attack is viable on both the current El Capitan Mac platform and its predecessor Yosemite.
 
                                                           
 
Full Article

3 replies

Jasper_The_Rasper
Rank
Userlevel 7
Badge +54
Thursday, February 11,  By Swati Khandelwal
 

Who's Affected?

 The Sparkle vulnerabilities affects third-party apps outside of the Mac App Store, which is downloaded from the Internet manually by the user and uses an outdated version of the Sparkle. Although the actual number of affected apps is not known, Radek estimated the number could be "huge."

Among the affected apps are uTorrent (version 1.8.7), Camtasia 2 (version 2.10.4), Sketch (version 3.5.1), and DuetDisplay (version 1.5.2.4).

Check if You're Affected


Check this list of apps that use Sparkle Updater framework. If you have installed any of these apps on your Apple Mac, you could probably be at risk of being hacked. Full Article 
R
Rank
Userlevel 7
Its becoming more and more prevalent that Mac's and apps are being targeted by these exploits. Its time for this platform to be more proactive in their security.
Ssherjj
Rank
Userlevel 7
Badge +62
Thank you ?!
 
That's quite a list and I hope this srticle gets out to all those Mac users. Looks like I am okay since I don't have any of those apps listed! I used to have Evernote ages ago ....
Windows Insider, iMac 2021 27 in i5 Retina 5, iMac OS Sonoma (14.3.1}, Security: iPads, W 10 & (VM:15), ALIENWARE 17R4, W10 Workstation, ALIENWARE 15 R6, W11, Webroot® SecureAnywhere™ Internet Security Complete (Android Samsung Galaxy Ultra Note 23, Webroot Beta Tester. Security

Reply


Terms & Conditions

© 2004 - Webroot Inc.

We have recently updated our Privacy Policies. We encourage you to read the full terms here.