{"id":61918,"date":"2017-01-25T09:32:21","date_gmt":"2017-01-25T17:32:21","guid":{"rendered":"https:\/\/www.intego.com\/mac-security-blog\/?p=61918"},"modified":"2024-03-21T06:07:26","modified_gmt":"2024-03-21T13:07:26","slug":"month-in-review-apple-security-in-january-2017","status":"publish","type":"post","link":"https:\/\/www.intego.com\/mac-security-blog\/month-in-review-apple-security-in-january-2017\/","title":{"rendered":"Month in Review: Apple Security in January 2017"},"content":{"rendered":"

\"Month<\/p>\n

The year has only just begun, and there’s already plenty to talk about with regard to Apple user security and privacy!<\/p>\n

Here are some of the highlights from this past month’s security news relevant to users of Macs, iPhones, iPads, and other Apple products.<\/p>\n

ClientCapture (Fruitfly, Quimitchin) Malware Discovered
\n<\/h3>\n

Two weeks ago, Intego analyzed malware samples discovered by a university IT administrator, found after some strange network traffic had been observed on a Mac Pro. The malware (the components of which Intego VirusBarrier<\/a> detects as OSX\/ClientCapture<\/strong>, Perl\/ClientCapture<\/strong>, and Java\/ClientCapture<\/strong>) appears to have been part of a targeted attack, and may have existing on the university’s computer for years before being discovered and submitted to Intego and other companies for analysis.<\/p>\n

Apple calls\u00a0the threat “Fruitfly,” and it is also known\u00a0as\u00a0“Quimitchin.” See Intego’s writeup for further details: Targeted Malware Attacks and the Importance of Layered Protection<\/a>.<\/p>\n

“Meitu” Mobile App Has Privacy Risks<\/h3>\n

It was reported last week that an\u00a0iOS and Android app called Meitu<\/strong>, which morphs selfies into anime characterizations, contains a number of privacy risks. The app, which was developed in China and has been in the App Store\u00a0for several years, has recently gained popularity.<\/p>\n

Security researcher\u00a0Jonathan Zdziarski took to Twitter to offer\u00a0his take on Meitu:<\/p>\n

\n

Summary: Meitu is a throw-together of multiple analytics and marketing\/ad tracking packages, with something cute to get people to use it.<\/p>\n

— Jonathan Zdziarski (@JZdziarski) January 19, 2017<\/a><\/p><\/blockquote>\n