Dispatches From The Geeks

News and Announcements from the MCS Systems Group

MacOS, iOS, and browser security updates needed.

See the attached note from Cyber. Short story is if you’re not current on MacOS, you’ll start getting blocked by the proxy if you’re on Argonne Auth wifi.

Systems is taking care of machines we manage.

It appears that Apple has fallen victim to the a vuln very similar to last year’s StageFright found on Android systems last year.

Using almost any/every method (MMS, iMessage, Mail, web browsing, … to get a trojan TIFF image to the device, a buffer overflow can be exploited to run anything on the system the malware wants to do.
This was patched in last weeks patch set from Apple. This needs to be applied to any iPhone, Mac, AppleTV, and even Apple Watch.
You’ll need to install one of these on your device.
iOS 9.3.3
El Capitan 10.11.6
tvOS 9.2.2
watchOS 2.2.2
latest patch set for 10.10.5 Yosemite.

Starting Tuesday, July 26, we will be updating the web filter block list to include MacOS 10.11.5 to the outdated software list. You should already have this applied.

So people are aware, Apple still supports 10.10.5, but patch detection on that is not as easy to see if it is up to date or the original release. Please make sure these machines are up to date. Anything below 10.10.4 is going to be blocked. This will include any of the 10.9 and 10.8 releases. Those upgrades should have been completed some time ago.
On the web browser front,
Chrome has updated to version 51 for everything and headed to version 52. We will be blocking anything indicating version 49 and below.
Firefox is at version 47 for Stable release and 45.2 for Extended support release. Anything below those releases will also be blocked.
Patching should be routine, so this shouldn’t impact many systems.
–Gene

Advertisements

Written by Craig Stacey

July 25, 2016 at 10:15 am

Posted in Uncategorized

%d bloggers like this: