Re: Yosemite Security and Malware

[Alan Smith]

Hi Ronni

I am very sorry to have disappointed you with my response.  Certainly I had no 
intention of ignoring all the other items in your answer.   You provided 
references to many days of reading which I have barely begun.

As WAMUG is a public (read) forum I feel I need to explain.  Your several 
responses over recent days raised tantalising hints that skirted around my 
original problem.  I responded immediately to just the Flash Player item in 
your last email because it really rocked me.  Apple disable it if they suspect 
a potential security problem so I felt secure.  Your general advice over the 
years was that this application is now not at the heart of malware infection 
and can be used with proper precautions.  Then your specific statement linking 
Flash Player and malware!  Other tantalising hints were raised in your original 
reply but I had not done further research into the implications of that.  I 
will raise this later.

One fault on my part was failure to assimilate your earlier comments and 
“tantalising hints”.  By taking blind action the security breach symptoms may 
have been removed, but not understood.  And would have left me with continuing 
doubts about the overall security of my network.  Perhaps I have now found the 
cause.

The basic problem on my part was one of communication.  My initial email was 
too long and the real issue was lost.  When requesting help from WAMUG I wanted 
to explain what actions I had taken to analyse the situation.  My diagnosis 
pointed to a "security breach" in Yosemite or Google, hence my three questions. 
I felt you responded to general security items and malware and did not deviate 
from that line, hence I felt that my original problem was not being addressed.

The original course of events is re-stated here:  I very recently installed 
Google Hangouts.  Soon after that I upgraded to OSX Yosemite.  Google then 
advised that attempts had been made to login to my account but the attempts 
were blocked.   Google security at this point seemed to be working perfectly.  
My thoughts were to find the cause and to stop the “unauthorised” login 
attempts.  There was nothing from Google to identify the target area of the 
break-in.  Was it directed to Hangouts, YouTube or Gmail?  I found that all 
attempts were made when the computer was in DarkWake mode during the iMac 
maintenance time window, or when I had just logged in.  In retrospect, my 
“help” request should have just asked what I could do as Google advised it had 
blocked account access from an unidentified device - and let you or other 
wamuggers initiate the analysis. 

I do not use the popular “social media” apps so Hangouts was a new experience.  
I recall your warnings of a few years ago with Google invasion of privacy 
through targeted search engine use etc, and the recommendation to update Google 
privacy and history.  I installed Hangouts because of an immediate need and 
potential for further use with closed group meetings of around 10 people.  The 
unforseen consequences of signing up to Hangouts alarmed me: Google swamped me 
with invitations and suggestions to expand my “circle” with hundreds(?) of 
proposed contacts of people that I might be interested in - and these were 
mostly contacts of people “in my circle".  I felt this threatened my personal 
privacy.  Then the Google security alert!  Panic: had I opened my computer to 
the world of hackers, scammers and phishers?

Now back to your other tantalising hint in your original reply.
>> 2. Does Yosemite initiate a logon process to gmail (or Hangouts) when a 
>> Mac wakes up?
> 
> I guess it depends on your Login and Settings at Google.

I have a dormant Gmail account.  Yesterday I created a new mail account in the 
iMac with this identity.  Then overnight I got another Google warning alert 
that a login attempt had been blocked.  What, another email password hacked 
within hours of creation?  The iMac Console log provided a clue.  While I am 
trying not to jump to conclusions - I haven’t researched the evidence - the 
Console log entry “Mail: No worthy mechs found” at the precise time noted by 
Google seem to point to a standard Yosemite task (presumably one that checks 
for new mail) as the culprit.  Google has done its security check and told me 
about the blocked login attempt.  With this extra knowledge I can now go to my 
Google account and tick the appropriate security boxes.  I guess one of those 
boxes will be to allow access to “less secure apps”, which from Google’s point 
of view may well be the Yosemite mail check process.  Another of your original 
tantalising hints, which I did raise later without resolution.

I am very conscious of privacy and security and follow all (well, nearly all) 
of the approved processes.  But I possibly go too far and react too quickly to 
security alerts.

Again, I am sorry to have caused you distress.  Your dedication, knowledge and 
patience with WAMUG members is much admir

Re: Yosemite Security and Malware

[Ronda Brown]

Hi Alan,

I've found it difficult this week with work commitments to make time to respond 
to WAMUG... But I have put in time & effort to help and I'm disappointed that 
your only response is this one comment below.

>> Why do you think you have Malware - Have you recently tried to download & 
>> install  'Flash Player' or ?


> Are you saying that Flash Player should be deleted?

Not necessarily as long as it is updated to the latest version from Adobe, not 
from some website telling you to.

I only mentioned Flash Player as here in the real world widespread adoption of 
Adobe Flash, Adobe Reader, and Oracle's Java makes all three irresistible 
targets for hackers and malware peddlers. The attacks reached a fever pitch in 
the early months of 2013, with a flood of reports about Flash, Reader, and Java 
exploits. 
Apple stopped providing its own Java browser plug-in in October, 2012 and a 
subsequent software update deleted it. Oracle has assumed responsibility for 
the Java applet plug-in since then.
All three (if you need to use them) need to be kept updated.

You haven't mentioned whether you have read and understood the security & 
privacy & Malware information or downloaded and run AdwareMedic to test.
Or if you are going to update your software and security & privacy settings.

You indicated you were concerned about security and protecting your privacy (& 
you should be), but you seem to be ignoring advise from Apple, Google & myself 
and not prepared to do anything about it.

Cheers,
Ronni

Sent from Ronni's iPad4


> On 4 Jun 2015, at 7:33 pm, Alan Smith  wrote:
> 
> Hi Ronni
> 
>>   Have you recently tried to download & install  'Flash Player' or ?
> 
> Are you saying that Flash Player should be deleted?  I have used Flash Player 
> irregularly for several years for viewing YouTube movies.  I understood the 
> app was approved by Apple and that access is blocked if there is a security 
> risk.  Adobe will then release a software update.
> 
> I also have AIR by Adobe installed for the W.A. Libraries 'Zinio Reader' app.
> 
> Cheers
> Alan
> 
> 
>> On 4 Jun 2015, at 1:30 pm, Ronni Brown  wrote:
>> 
>> Hi Alan,
>> 
>> I thought I had explained how Yosemite handles Malware / Security & Privacy 
>> in my first reply.
>> 
>> "Keep your Apple software up to date, especially Security Updates install 
>> Security Updates immediately they are available.
>> Gatekeeper - It’s an old feature (presented in OS X Mountain Lion 10.8) that 
>> protects a Mac from malware and “misbehaving apps downloaded from the 
>> internet.”
>> Privacy Controls, Sandboxing and Core-level Protection all these tools are 
>> in OS X Yosemite.
>> 
>> Did you read the link that I included?... 
>> 
>> 
>> Apple is extremely adept at issuing security updates that remove OS X 
>> malware as it is discovered. 
>> But... Apple can't help if you don't let it help you!
>> 
>> Comments in Situ
>> 
>>> On 3 Jun 2015, at 1:22 pm, Alan Smith  wrote:
>>> 
>>> Hi Ronni
>>> 
>>> OK, so OSX does not include any method to test for malware.  If a mechancal 
>>> fault (the loose nut in the keyboard!) lets some in then I can’t test for 
>>> it until smoke appears?
>> 
>> I repeat - Apple is extremely adept at issuing security updates that remove 
>> OS X malware as it is discovered. 
>> 
>> Why do you think you have Malware - Have you recently tried to download & 
>> install  'Flash Player' or ?
>> Malware doesn't attempt to get into your machine without your knowledge - it 
>> is malicious software disguised as legitimate software. 
>> It tricks you into installing it as you would any other program, and then 
>> when it is installed it starts to gather information about you. 
>> In most instances it wants to get hold of your credit card or banking 
>> details and passes them on to nefarious individuals on the other end.
>> 
>> Where things get tricky is that most Mac malware pretends to be the very 
>> thing you want to use to get rid of it. Most Mac malware seems to masquerade 
>> as anti-virus or anti-malware software. While there is no definitive list of 
>> OS X malware, here are some names to watch out for:
>> • MacKeeper
>>  • MacDefender
>>  • MacProtector
>>  • MacSecurity
>> 
>> So, to be clear: these are names of programs you should be avoiding.
>> 
>> If you feel you might have downloaded Malware go here & download AdwareMedic 
>> 2.2.3  
>> I recommend AdwareMedic as it takes care of all currently known adware and 
>> is self-updating within a day of anything new being discovered.
>> AdwareMedic is safe, secure and very fast to clean your Mac. It's free and 
>> of course have the option to Donate. 
>> 
>> 
>>> 
>>> I note that both Apple and Google place high value on Customer privacy and 
>>> security - and both want to enhance my internet experience!  Which is very 
>>> pleasing… (?)
>

Re: Yosemite Security and Malware

[Alan Smith]

Hi Ronni

>   Have you recently tried to download & install  'Flash Player' or ?

Are you saying that Flash Player should be deleted?  I have used Flash Player 
irregularly for several years for viewing YouTube movies.  I understood the app 
was approved by Apple and that access is blocked if there is a security risk.  
Adobe will then release a software update.

I also have AIR by Adobe installed for the W.A. Libraries 'Zinio Reader' app.

Cheers
Alan


> On 4 Jun 2015, at 1:30 pm, Ronni Brown  wrote:
> 
> Hi Alan,
> 
> I thought I had explained how Yosemite handles Malware / Security & Privacy 
> in my first reply.
> 
> "Keep your Apple software up to date, especially Security Updates install 
> Security Updates immediately they are available.
> Gatekeeper - It’s an old feature (presented in OS X Mountain Lion 10.8) that 
> protects a Mac from malware and “misbehaving apps downloaded from the 
> internet.”
> Privacy Controls, Sandboxing and Core-level Protection all these tools are in 
> OS X Yosemite.
> 
> Did you read the link that I included?... 
>  >
> 
> Apple is extremely adept at issuing security updates that remove OS X malware 
> as it is discovered. 
> But... Apple can't help if you don't let it help you!
> 
> Comments in Situ
> 
>> On 3 Jun 2015, at 1:22 pm, Alan Smith > > wrote:
>> 
>> Hi Ronni
>> 
>> OK, so OSX does not include any method to test for malware.  If a mechancal 
>> fault (the loose nut in the keyboard!) lets some in then I can’t test for it 
>> until smoke appears?
> 
> I repeat - Apple is extremely adept at issuing security updates that remove 
> OS X malware as it is discovered. 
> 
> Why do you think you have Malware - Have you recently tried to download & 
> install  'Flash Player' or ?
> Malware doesn't attempt to get into your machine without your knowledge - it 
> is malicious software disguised as legitimate software. 
> It tricks you into installing it as you would any other program, and then 
> when it is installed it starts to gather information about you. 
> In most instances it wants to get hold of your credit card or banking details 
> and passes them on to nefarious individuals on the other end.
> 
> Where things get tricky is that most Mac malware pretends to be the very 
> thing you want to use to get rid of it. Most Mac malware seems to masquerade 
> as anti-virus or anti-malware software. While there is no definitive list of 
> OS X malware, here are some names to watch out for:
> • MacKeeper
>   • MacDefender
>   • MacProtector
>   • MacSecurity
> 
> So, to be clear: these are names of programs you should be avoiding.
> 
> If you feel you might have downloaded Malware go here & download AdwareMedic 
> 2.2.3   >
> I recommend AdwareMedic  as it takes 
> care of all currently known adware and is self-updating within a day of 
> anything new being discovered.
> AdwareMedic is safe, secure and very fast to clean your Mac. It's free and of 
> course have the option to Donate. 
>  >
> 
>> 
>> I note that both Apple and Google place high value on Customer privacy and 
>> security - and both want to enhance my internet experience!  Which is very 
>> pleasing… (?)
> 
> If you take notice of their advice and security! 
>> 
>> I still have security concerns.  I will rephrase the problem and my 
>> perceptions of Google’s involvement.
>> 
>> A few months ago with OSX Mavericks 10.9.5 I took part in a Google Hangouts 
>> meeting.  I wanted to isolate Hangouts from Safari so I downloaded Chrome 
>> which has Hangouts video and voice facilities built-in.  I thought the 
>> Chrome browser and Google conditions of use were too invasive: I deleted it 
>> completely.  I then downloaded Firefox and installed the Google Hangouts 
>> plug-ins.  All went well as far as I could tell.  I then upgraded to OSX 
>> Yosemite 10.10.3. 
>> 
>> Google then advised they blocked a login attempt to my account so I changed 
>> the password.  Google sent a second advice a few days later about a similar 
>> attempt.  This time I determined that the attempt came from my own URL 
>> address.  (Didn’t check that for the first try.)  You said:
>>> Follow the link and simply enable "Access for less secure apps". 
>> 
>> That sounds counter-intuitive.  I don’t want less secure apps to 
>> automatically access my account!  Or do I?
> 
> Apple Mail client is not less secure, but you sound determined to use Google 
> and participate in Google Hangouts regardless of not having upgraded your 
> Google Accounts security.
> Your Gmail is still secure with SSL in Apple Mail.
>> 
>> Yosemite Console log shows several entries each day about “Google Software 
>

Re: Yosemite Security and Malware

[Ronni Brown]

Hi Alan,

I thought I had explained how Yosemite handles Malware / Security & Privacy in 
my first reply.

"Keep your Apple software up to date, especially Security Updates install 
Security Updates immediately they are available.
Gatekeeper - It’s an old feature (presented in OS X Mountain Lion 10.8) that 
protects a Mac from malware and “misbehaving apps downloaded from the internet.”
Privacy Controls, Sandboxing and Core-level Protection all these tools are in 
OS X Yosemite.

Did you read the link that I included?... 


Apple is extremely adept at issuing security updates that remove OS X malware 
as it is discovered. 
But... Apple can't help if you don't let it help you!

Comments in Situ

> On 3 Jun 2015, at 1:22 pm, Alan Smith  wrote:
> 
> Hi Ronni
> 
> OK, so OSX does not include any method to test for malware.  If a mechancal 
> fault (the loose nut in the keyboard!) lets some in then I can’t test for it 
> until smoke appears?

I repeat - Apple is extremely adept at issuing security updates that remove OS 
X malware as it is discovered. 

Why do you think you have Malware - Have you recently tried to download & 
install  'Flash Player' or ?
Malware doesn't attempt to get into your machine without your knowledge - it is 
malicious software disguised as legitimate software. 
It tricks you into installing it as you would any other program, and then when 
it is installed it starts to gather information about you. 
In most instances it wants to get hold of your credit card or banking details 
and passes them on to nefarious individuals on the other end.

Where things get tricky is that most Mac malware pretends to be the very thing 
you want to use to get rid of it. Most Mac malware seems to masquerade as 
anti-virus or anti-malware software. While there is no definitive list of OS X 
malware, here are some names to watch out for:
• MacKeeper
• MacDefender
• MacProtector
• MacSecurity

So, to be clear: these are names of programs you should be avoiding.

If you feel you might have downloaded Malware go here & download AdwareMedic 
2.2.3  
I recommend AdwareMedic  as it takes care 
of all currently known adware and is self-updating within a day of anything new 
being discovered.
AdwareMedic is safe, secure and very fast to clean your Mac. It's free and of 
course have the option to Donate. 
>

> 
> I note that both Apple and Google place high value on Customer privacy and 
> security - and both want to enhance my internet experience!  Which is very 
> pleasing… (?)

If you take notice of their advice and security! 
> 
> I still have security concerns.  I will rephrase the problem and my 
> perceptions of Google’s involvement.
> 
> A few months ago with OSX Mavericks 10.9.5 I took part in a Google Hangouts 
> meeting.  I wanted to isolate Hangouts from Safari so I downloaded Chrome 
> which has Hangouts video and voice facilities built-in.  I thought the Chrome 
> browser and Google conditions of use were too invasive: I deleted it 
> completely.  I then downloaded Firefox and installed the Google Hangouts 
> plug-ins.  All went well as far as I could tell.  I then upgraded to OSX 
> Yosemite 10.10.3. 
> 
> Google then advised they blocked a login attempt to my account so I changed 
> the password.  Google sent a second advice a few days later about a similar 
> attempt.  This time I determined that the attempt came from my own URL 
> address.  (Didn’t check that for the first try.)  You said:
>> Follow the link and simply enable "Access for less secure apps". 
> 
> That sounds counter-intuitive.  I don’t want less secure apps to 
> automatically access my account!  Or do I?

Apple Mail client is not less secure, but you sound determined to use Google 
and participate in Google Hangouts regardless of not having upgraded your 
Google Accounts security.
Your Gmail is still secure with SSL in Apple Mail.
> 
> Yosemite Console log shows several entries each day about “Google Software 
> Update Daemon”.  I don’t want Google to update anything without my approval!  
> I usually have “auto update” options turned off, no matter who offers it.   I 
> logged out of all of my Google accounts and tried to turn off the plug-ins 
> and cancel auto-updates in preferences.   Then I found that the Hangouts 
> plug-ins were installed in Safari as well as Firefox.  Obviously a sysem-wide 
> installation, not just for Firefox as I had thought.  

Google Software Update is a background application for the Mac OS that helps 
ensure that you always have the most up-to-date, stable, and secure versions of 
the Google software you have installed. Google Software Update may run two 
services: GoogleSoftwareUpdateAgent and GoogleSoftwareUpdateDaemon. 
These services allow Google 

Re: Yosemite Security and Malware

[Alan Smith]

Hi Ronni

OK, so OSX does not include any method to test for malware.  If a mechancal 
fault (the loose nut in the keyboard!) lets some in then I can’t test for it 
until smoke appears?

I note that both Apple and Google place high value on Customer privacy and 
security - and both want to enhance my internet experience!  Which is very 
pleasing… (?)

I still have security concerns.  I will rephrase the problem and my perceptions 
of Google’s involvement.

A few months ago with OSX Mavericks 10.9.5 I took part in a Google Hangouts 
meeting.  I wanted to isolate Hangouts from Safari so I downloaded Chrome which 
has Hangouts video and voice facilities built-in.  I thought the Chrome browser 
and Google conditions of use were too invasive: I deleted it completely.  I 
then downloaded Firefox and installed the Google Hangouts plug-ins.  All went 
well as far as I could tell.  I then upgraded to OSX Yosemite 10.10.3. 

Google then advised they blocked a login attempt to my account so I changed the 
password.  Google sent a second advice a few days later about a similar 
attempt.  This time I determined that the attempt came from my own URL address. 
 (Didn’t check that for the first try.)  You said:
> Follow the link and simply enable "Access for less secure apps". 

That sounds counter-intuitive.  I don’t want less secure apps to automatically 
access my account!  Or do I?

Yosemite Console log shows several entries each day about “Google Software 
Update Daemon”.  I don’t want Google to update anything without my approval!  I 
usually have “auto update” options turned off, no matter who offers it.   I 
logged out of all of my Google accounts and tried to turn off the plug-ins and 
cancel auto-updates in preferences.   Then I found that the Hangouts plug-ins 
were installed in Safari as well as Firefox.  Obviously a sysem-wide 
installation, not just for Firefox as I had thought.  

I don’t want to succumb to total paranoia about Google - other people no doubt 
use their apps without problems.  It seems that “something” is/was logging in 
to my Google account.  Can I find out what it is?

Cheers
Alan

> On 2 Jun 2015, at 3:58 pm, Ronni Brown  wrote:
> 
> Hi Alan,
> 
>> On 1 Jun 2015, at 9:51 am, Alan Smith > > wrote:
>> 
>> Three questions re security:
>> 1. Is there a user test for malware that may be present on my iMac?
> 
> Apple states, security was “the first thought. Not an afterthought.” Which is 
> very pleasing...
> Keep your Apple software up to date, especially Security Updates install 
> Security Updates immediately they are available.
> Gatekeeper - It’s an old feature (presented in OS X Mountain Lion 10.8) that 
> protects a Mac from malware and “misbehaving apps downloaded from the 
> internet.”
> Privacy Controls, Sandboxing and Core-level Protection all these tools are in 
> OS X Yosemite.
> Use Common sense - don't click on links in emails - keep away from suspect 
> websites...
> 
>  >
> 
>> 2. Does Yosemite initiate a logon process to gmail (or Hangouts) when a Mac 
>> wakes up?
> 
> I guess it depends on your Login and Settings at Google.
> 
>> 3. Is Google forcing customers to move from password access to their own 
>> cloud verification system?
> 
>   
> >
> 
>> 
>> On 24 May I upgraded my Late 2012 iMac to Yosemite.
>> 
>> On 25 May Google advised “We recently blocked a sign-in attempt to your 
>> Google Account … at 1:23 AM from Perth Australia. Whoever tried to sign in 
>> to your account knows your password …"   I was asleep at the time - but the 
>> iMac was doing its 2-hourly test sequence(?) around this time.   Google 
>> website details showed my 2 iMacs as recognised users, with an unauthorised 
>> login from a third “unidentified device”.  I changed the password. 
>> 
>> Today, 1 June, Google sent me another email advising  “We recently blocked a 
>> sign-in attempt to your Google Account … at 8:34 AM from Perth Australia. 
>> Whoever tried to sign in to your account knows your password …”.  Google 
>> website account details advised logon attempt  came from a “less secure 
>> app”.   I had just woken my iMac from sleep around this time.  I did not 
>> change the password or take up Google’s offer for two-step validation.
> 
> Follow the link and simply enable "Access for less secure apps". Sounds like 
> Google is using fear tactics to get people to use their Gmail client. 
> Your Gmail is still secure with SSL in Apple Mail.
> 
> Cheers,
> Ronni
>> 
>> There are a large number of Console log messages.  Some look alarming, but 
>> as the Apple Services and log vocabulary is completely different to 
>> Mavericks, it probably means there is no problem - just working harder.   I 
>> note log messa

Re: Yosemite Security and Malware

[Ronni Brown]

Hi Alan,

> On 1 Jun 2015, at 9:51 am, Alan Smith  wrote:
> 
> Three questions re security:
> 1. Is there a user test for malware that may be present on my iMac?

Apple states, security was “the first thought. Not an afterthought.” Which is 
very pleasing...
Keep your Apple software up to date, especially Security Updates install 
Security Updates immediately they are available.
Gatekeeper - It’s an old feature (presented in OS X Mountain Lion 10.8) that 
protects a Mac from malware and “misbehaving apps downloaded from the internet.”
Privacy Controls, Sandboxing and Core-level Protection all these tools are in 
OS X Yosemite.
Use Common sense - don't click on links in emails - keep away from suspect 
websites...



> 2. Does Yosemite initiate a logon process to gmail (or Hangouts) when a Mac 
> wakes up?

I guess it depends on your Login and Settings at Google.

> 3. Is Google forcing customers to move from password access to their own 
> cloud verification system?



> 
> On 24 May I upgraded my Late 2012 iMac to Yosemite.
> 
> On 25 May Google advised “We recently blocked a sign-in attempt to your 
> Google Account … at 1:23 AM from Perth Australia. Whoever tried to sign in to 
> your account knows your password …"   I was asleep at the time - but the iMac 
> was doing its 2-hourly test sequence(?) around this time.   Google website 
> details showed my 2 iMacs as recognised users, with an unauthorised login 
> from a third “unidentified device”.  I changed the password. 
> 
> Today, 1 June, Google sent me another email advising  “We recently blocked a 
> sign-in attempt to your Google Account … at 8:34 AM from Perth Australia. 
> Whoever tried to sign in to your account knows your password …”.  Google 
> website account details advised logon attempt  came from a “less secure app”. 
>   I had just woken my iMac from sleep around this time.  I did not change the 
> password or take up Google’s offer for two-step validation.

Follow the link and simply enable "Access for less secure apps". Sounds like 
Google is using fear tactics to get people to use their Gmail client. 
Your Gmail is still secure with SSL in Apple Mail.

Cheers,
Ronni
> 
> There are a large number of Console log messages.  Some look alarming, but as 
> the Apple Services and log vocabulary is completely different to Mavericks, 
> it probably means there is no problem - just working harder.   I note log 
> messages include frequent multiple entries from Google Software Update 
> Daemon, iTunes, coreaudio Airplay and Mail.
> 
> Regards, 
> Alan
> 
> Alan Smith
>  Late 2012 iMac 27" Intel Quad Core i5  Fusion 3.2GHz 8G RAM - OSX 10.10.3 
> Yosemite
>  Late 2009 iMac 21.5" Intel Core 2 Duo 3.06GHz 12G RAM - OSX 10.10.3 Yosemite
>  iPhone5;  iPad2;  ATV2
-- The WA Macintosh User Group Mailing List --
Archives - 
Guidelines - 
Settings & Unsubscribe - 

Yosemite Security and Malware

[Alan Smith]

Three questions re security:
1. Is there a user test for malware that may be present on my iMac?
2. Does Yosemite initiate a logon process to gmail (or Hangouts) when a Mac 
wakes up?
3. Is Google forcing customers to move from password access to their own cloud 
verification system?

On 24 May I upgraded my Late 2012 iMac to Yosemite.

On 25 May Google advised “We recently blocked a sign-in attempt to your Google 
Account … at 1:23 AM from Perth Australia. Whoever tried to sign in to your 
account knows your password …"   I was asleep at the time - but the iMac was 
doing its 2-hourly test sequence(?) around this time.   Google website details 
showed my 2 iMacs as recognised users, with an unauthorised login from a third 
“unidentified device”.  I changed the password. 

Today, 1 June, Google sent me another email advising  “We recently blocked a 
sign-in attempt to your Google Account … at 8:34 AM from Perth Australia. 
Whoever tried to sign in to your account knows your password …”.  Google 
website account details advised logon attempt  came from a “less secure app”.   
I had just woken my iMac from sleep around this time.  I did not change the 
password or take up Google’s offer for two-step validation.

There are a large number of Console log messages.  Some look alarming, but as 
the Apple Services and log vocabulary is completely different to Mavericks, it 
probably means there is no problem - just working harder.   I note log messages 
include frequent multiple entries from Google Software Update Daemon, iTunes, 
coreaudio Airplay and Mail.

Regards, 
Alan

Alan Smith
  Late 2012 iMac 27" Intel Quad Core i5  Fusion 3.2GHz 8G RAM - OSX 10.10.3 
Yosemite
  Late 2009 iMac 21.5" Intel Core 2 Duo 3.06GHz 12G RAM - OSX 10.10.3 Yosemite
  iPhone5;  iPad2;  ATV2










-- The WA Macintosh User Group Mailing List --
Archives - 
Guidelines - 
Settings & Unsubscribe -