Hi Alan, I thought I had explained how Yosemite handles Malware / Security & Privacy in my first reply.
"Keep your Apple software up to date, especially Security Updates install Security Updates immediately they are available. Gatekeeper - It’s an old feature (presented in OS X Mountain Lion 10.8) that protects a Mac from malware and “misbehaving apps downloaded from the internet.” Privacy Controls, Sandboxing and Core-level Protection all these tools are in OS X Yosemite. Did you read the link that I included?... <http://www.apple.com/osx/what-is/security/> Apple is extremely adept at issuing security updates that remove OS X malware as it is discovered. But... Apple can't help if you don't let it help you! Comments in Situ > On 3 Jun 2015, at 1:22 pm, Alan Smith <sma...@iinet.net.au> wrote: > > Hi Ronni > > OK, so OSX does not include any method to test for malware. If a mechancal > fault (the loose nut in the keyboard!) lets some in then I can’t test for it > until smoke appears? I repeat - Apple is extremely adept at issuing security updates that remove OS X malware as it is discovered. Why do you think you have Malware - Have you recently tried to download & install 'Flash Player' or ? Malware doesn't attempt to get into your machine without your knowledge - it is malicious software disguised as legitimate software. It tricks you into installing it as you would any other program, and then when it is installed it starts to gather information about you. In most instances it wants to get hold of your credit card or banking details and passes them on to nefarious individuals on the other end. Where things get tricky is that most Mac malware pretends to be the very thing you want to use to get rid of it. Most Mac malware seems to masquerade as anti-virus or anti-malware software. While there is no definitive list of OS X malware, here are some names to watch out for: • MacKeeper • MacDefender • MacProtector • MacSecurity So, to be clear: these are names of programs you should be avoiding. If you feel you might have downloaded Malware go here & download AdwareMedic 2.2.3 <http://www.adwaremedic.com/index.php> I recommend AdwareMedic <http://www.adwaremedic.com/index.php> as it takes care of all currently known adware and is self-updating within a day of anything new being discovered. AdwareMedic is safe, secure and very fast to clean your Mac. It's free and of course have the option to Donate. <http://www.adwaremedic.com/versionhistory.php <http://www.adwaremedic.com/versionhistory.php>> > > I note that both Apple and Google place high value on Customer privacy and > security - and both want to enhance my internet experience! Which is very > pleasing… (?) If you take notice of their advice and security! > > I still have security concerns. I will rephrase the problem and my > perceptions of Google’s involvement. > > A few months ago with OSX Mavericks 10.9.5 I took part in a Google Hangouts > meeting. I wanted to isolate Hangouts from Safari so I downloaded Chrome > which has Hangouts video and voice facilities built-in. I thought the Chrome > browser and Google conditions of use were too invasive: I deleted it > completely. I then downloaded Firefox and installed the Google Hangouts > plug-ins. All went well as far as I could tell. I then upgraded to OSX > Yosemite 10.10.3. > > Google then advised they blocked a login attempt to my account so I changed > the password. Google sent a second advice a few days later about a similar > attempt. This time I determined that the attempt came from my own URL > address. (Didn’t check that for the first try.) You said: >> Follow the link and simply enable "Access for less secure apps". > > That sounds counter-intuitive. I don’t want less secure apps to > automatically access my account! Or do I? Apple Mail client is not less secure, but you sound determined to use Google and participate in Google Hangouts regardless of not having upgraded your Google Accounts security. Your Gmail is still secure with SSL in Apple Mail. > > Yosemite Console log shows several entries each day about “Google Software > Update Daemon”. I don’t want Google to update anything without my approval! > I usually have “auto update” options turned off, no matter who offers it. I > logged out of all of my Google accounts and tried to turn off the plug-ins > and cancel auto-updates in preferences. Then I found that the Hangouts > plug-ins were installed in Safari as well as Firefox. Obviously a sysem-wide > installation, not just for Firefox as I had thought. Google Software Update is a background application for the Mac OS that helps ensure that you always have the most up-to-date, stable, and secure versions of the Google software you have installed. Google Software Update may run two services: GoogleSoftwareUpdateAgent and GoogleSoftwareUpdateDaemon. These services allow Google applications to be safely and securely updated. > > I don’t want to succumb to total paranoia about Google - other people no > doubt use their apps without problems. It seems that “something” is/was > logging in to my Google account. Can I find out what it is? Other people probably install security and software updates when they are available. Cheers, Ronni > Cheers > Alan > >> On 2 Jun 2015, at 3:58 pm, Ronni Brown <ro...@mac.com >> <mailto:ro...@mac.com>> wrote: >> >> Hi Alan, >> >>> On 1 Jun 2015, at 9:51 am, Alan Smith <sma...@iinet.net.au >>> <mailto:sma...@iinet.net.au>> wrote: >>> >>> Three questions re security: >>> 1. Is there a user test for malware that may be present on my iMac? >> >> Apple states, security was “the first thought. Not an afterthought.” Which >> is very pleasing... >> Keep your Apple software up to date, especially Security Updates install >> Security Updates immediately they are available. >> Gatekeeper - It’s an old feature (presented in OS X Mountain Lion 10.8) that >> protects a Mac from malware and “misbehaving apps downloaded from the >> internet.” >> Privacy Controls, Sandboxing and Core-level Protection all these tools are >> in OS X Yosemite. >> Use Common sense - don't click on links in emails - keep away from suspect >> websites... >> >> <http://www.apple.com/osx/what-is/security/ >> <http://www.apple.com/osx/what-is/security/>> >> >>> 2. Does Yosemite initiate a logon process to gmail (or Hangouts) when a Mac >>> wakes up? >> >> I guess it depends on your Login and Settings at Google. >> >>> 3. Is Google forcing customers to move from password access to their own >>> cloud verification system? >> >> <http://googleblog.blogspot.com.au/2015/06/privacy-security-tools-improvements.html >> >> <http://googleblog.blogspot.com.au/2015/06/privacy-security-tools-improvements.html>> >> >>> >>> On 24 May I upgraded my Late 2012 iMac to Yosemite. >>> >>> On 25 May Google advised “We recently blocked a sign-in attempt to your >>> Google Account … at 1:23 AM from Perth Australia. Whoever tried to sign in >>> to your account knows your password …" I was asleep at the time - but the >>> iMac was doing its 2-hourly test sequence(?) around this time. Google >>> website details showed my 2 iMacs as recognised users, with an unauthorised >>> login from a third “unidentified device”. I changed the password. >>> >>> Today, 1 June, Google sent me another email advising “We recently blocked >>> a sign-in attempt to your Google Account … at 8:34 AM from Perth Australia. >>> Whoever tried to sign in to your account knows your password …”. Google >>> website account details advised logon attempt came from a “less secure >>> app”. I had just woken my iMac from sleep around this time. I did not >>> change the password or take up Google’s offer for two-step validation. >> >> Follow the link and simply enable "Access for less secure apps". Sounds like >> Google is using fear tactics to get people to use their Gmail client. >> Your Gmail is still secure with SSL in Apple Mail. >> >> Cheers, >> Ronni >>> >>> There are a large number of Console log messages. Some look alarming, but >>> as the Apple Services and log vocabulary is completely different to >>> Mavericks, it probably means there is no problem - just working harder. I >>> note log messages include frequent multiple entries from Google Software >>> Update Daemon, iTunes, coreaudio Airplay and Mail. >>> >>> Regards, >>> Alan >>> >>> Alan Smith >>> Late 2012 iMac 27" Intel Quad Core i5 Fusion 3.2GHz 8G RAM - OSX 10.10.3 >>> Yosemite >>> Late 2009 iMac 21.5" Intel Core 2 Duo 3.06GHz 12G RAM - OSX 10.10.3 >>> Yosemite >>> iPhone5; iPad2; ATV2 >>
-- The WA Macintosh User Group Mailing List -- Archives - <http://www.wamug.org.au/mailinglist/archives.shtml> Guidelines - <http://www.wamug.org.au/mailinglist/guidelines.shtml> Settings & Unsubscribe - <http://lists.wamug.org.au/listinfo/wamug.org.au-wamug>
