Hi Ronni > Have you recently tried to download & install 'Flash Player' or ?
Are you saying that Flash Player should be deleted? I have used Flash Player irregularly for several years for viewing YouTube movies. I understood the app was approved by Apple and that access is blocked if there is a security risk. Adobe will then release a software update. I also have AIR by Adobe installed for the W.A. Libraries 'Zinio Reader' app. Cheers Alan > On 4 Jun 2015, at 1:30 pm, Ronni Brown <ro...@mac.com> wrote: > > Hi Alan, > > I thought I had explained how Yosemite handles Malware / Security & Privacy > in my first reply. > > "Keep your Apple software up to date, especially Security Updates install > Security Updates immediately they are available. > Gatekeeper - It’s an old feature (presented in OS X Mountain Lion 10.8) that > protects a Mac from malware and “misbehaving apps downloaded from the > internet.” > Privacy Controls, Sandboxing and Core-level Protection all these tools are in > OS X Yosemite. > > Did you read the link that I included?... > <http://www.apple.com/osx/what-is/security/ > <http://www.apple.com/osx/what-is/security/>> > > Apple is extremely adept at issuing security updates that remove OS X malware > as it is discovered. > But... Apple can't help if you don't let it help you! > > Comments in Situ > >> On 3 Jun 2015, at 1:22 pm, Alan Smith <sma...@iinet.net.au >> <mailto:sma...@iinet.net.au>> wrote: >> >> Hi Ronni >> >> OK, so OSX does not include any method to test for malware. If a mechancal >> fault (the loose nut in the keyboard!) lets some in then I can’t test for it >> until smoke appears? > > I repeat - Apple is extremely adept at issuing security updates that remove > OS X malware as it is discovered. > > Why do you think you have Malware - Have you recently tried to download & > install 'Flash Player' or ? > Malware doesn't attempt to get into your machine without your knowledge - it > is malicious software disguised as legitimate software. > It tricks you into installing it as you would any other program, and then > when it is installed it starts to gather information about you. > In most instances it wants to get hold of your credit card or banking details > and passes them on to nefarious individuals on the other end. > > Where things get tricky is that most Mac malware pretends to be the very > thing you want to use to get rid of it. Most Mac malware seems to masquerade > as anti-virus or anti-malware software. While there is no definitive list of > OS X malware, here are some names to watch out for: > • MacKeeper > • MacDefender > • MacProtector > • MacSecurity > > So, to be clear: these are names of programs you should be avoiding. > > If you feel you might have downloaded Malware go here & download AdwareMedic > 2.2.3 <http://www.adwaremedic.com/index.php > <http://www.adwaremedic.com/index.php>> > I recommend AdwareMedic <http://www.adwaremedic.com/index.php> as it takes > care of all currently known adware and is self-updating within a day of > anything new being discovered. > AdwareMedic is safe, secure and very fast to clean your Mac. It's free and of > course have the option to Donate. > <http://www.adwaremedic.com/versionhistory.php > <http://www.adwaremedic.com/versionhistory.php>> > >> >> I note that both Apple and Google place high value on Customer privacy and >> security - and both want to enhance my internet experience! Which is very >> pleasing… (?) > > If you take notice of their advice and security! >> >> I still have security concerns. I will rephrase the problem and my >> perceptions of Google’s involvement. >> >> A few months ago with OSX Mavericks 10.9.5 I took part in a Google Hangouts >> meeting. I wanted to isolate Hangouts from Safari so I downloaded Chrome >> which has Hangouts video and voice facilities built-in. I thought the >> Chrome browser and Google conditions of use were too invasive: I deleted it >> completely. I then downloaded Firefox and installed the Google Hangouts >> plug-ins. All went well as far as I could tell. I then upgraded to OSX >> Yosemite 10.10.3. >> >> Google then advised they blocked a login attempt to my account so I changed >> the password. Google sent a second advice a few days later about a similar >> attempt. This time I determined that the attempt came from my own URL >> address. (Didn’t check that for the first try.) You said: >>> Follow the link and simply enable "Access for less secure apps". >> >> That sounds counter-intuitive. I don’t want less secure apps to >> automatically access my account! Or do I? > > Apple Mail client is not less secure, but you sound determined to use Google > and participate in Google Hangouts regardless of not having upgraded your > Google Accounts security. > Your Gmail is still secure with SSL in Apple Mail. >> >> Yosemite Console log shows several entries each day about “Google Software >> Update Daemon”. I don’t want Google to update anything without my approval! >> I usually have “auto update” options turned off, no matter who offers it. >> I logged out of all of my Google accounts and tried to turn off the plug-ins >> and cancel auto-updates in preferences. Then I found that the Hangouts >> plug-ins were installed in Safari as well as Firefox. Obviously a >> sysem-wide installation, not just for Firefox as I had thought. > > Google Software Update is a background application for the Mac OS that helps > ensure that you always have the most up-to-date, stable, and secure versions > of the Google software you have installed. Google Software Update may run two > services: GoogleSoftwareUpdateAgent and GoogleSoftwareUpdateDaemon. > These services allow Google applications to be safely and securely updated. >> >> I don’t want to succumb to total paranoia about Google - other people no >> doubt use their apps without problems. It seems that “something” is/was >> logging in to my Google account. Can I find out what it is? > > Other people probably install security and software updates when they are > available. > > Cheers, > Ronni > >> Cheers >> Alan >> >>> On 2 Jun 2015, at 3:58 pm, Ronni Brown <ro...@mac.com >>> <mailto:ro...@mac.com>> wrote: >>> >>> Hi Alan, >>> >>>> On 1 Jun 2015, at 9:51 am, Alan Smith <sma...@iinet.net.au >>>> <mailto:sma...@iinet.net.au>> wrote: >>>> >>>> Three questions re security: >>>> 1. Is there a user test for malware that may be present on my iMac? >>> >>> Apple states, security was “the first thought. Not an afterthought.” Which >>> is very pleasing... >>> Keep your Apple software up to date, especially Security Updates install >>> Security Updates immediately they are available. >>> Gatekeeper - It’s an old feature (presented in OS X Mountain Lion 10.8) >>> that protects a Mac from malware and “misbehaving apps downloaded from the >>> internet.” >>> Privacy Controls, Sandboxing and Core-level Protection all these tools are >>> in OS X Yosemite. >>> Use Common sense - don't click on links in emails - keep away from suspect >>> websites... >>> >>> <http://www.apple.com/osx/what-is/security/ >>> <http://www.apple.com/osx/what-is/security/>> >>> >>>> 2. Does Yosemite initiate a logon process to gmail (or Hangouts) when a >>>> Mac wakes up? >>> >>> I guess it depends on your Login and Settings at Google. >>> >>>> 3. Is Google forcing customers to move from password access to their own >>>> cloud verification system? >>> >>> <http://googleblog.blogspot.com.au/2015/06/privacy-security-tools-improvements.html >>> >>> <http://googleblog.blogspot.com.au/2015/06/privacy-security-tools-improvements.html>> >>> >>>> >>>> On 24 May I upgraded my Late 2012 iMac to Yosemite. >>>> >>>> On 25 May Google advised “We recently blocked a sign-in attempt to your >>>> Google Account … at 1:23 AM from Perth Australia. Whoever tried to sign in >>>> to your account knows your password …" I was asleep at the time - but >>>> the iMac was doing its 2-hourly test sequence(?) around this time. >>>> Google website details showed my 2 iMacs as recognised users, with an >>>> unauthorised login from a third “unidentified device”. I changed the >>>> password. >>>> >>>> Today, 1 June, Google sent me another email advising “We recently blocked >>>> a sign-in attempt to your Google Account … at 8:34 AM from Perth >>>> Australia. Whoever tried to sign in to your account knows your password >>>> …”. Google website account details advised logon attempt came from a >>>> “less secure app”. I had just woken my iMac from sleep around this time. >>>> I did not change the password or take up Google’s offer for two-step >>>> validation. >>> >>> Follow the link and simply enable "Access for less secure apps". Sounds >>> like Google is using fear tactics to get people to use their Gmail client. >>> Your Gmail is still secure with SSL in Apple Mail. >>> >>> Cheers, >>> Ronni >>>> >>>> There are a large number of Console log messages. Some look alarming, but >>>> as the Apple Services and log vocabulary is completely different to >>>> Mavericks, it probably means there is no problem - just working harder. >>>> I note log messages include frequent multiple entries from Google Software >>>> Update Daemon, iTunes, coreaudio Airplay and Mail. >>>> >>>> Regards, >>>> Alan >>>> >>>> Alan Smith >>>> Late 2012 iMac 27" Intel Quad Core i5 Fusion 3.2GHz 8G RAM - OSX 10.10.3 >>>> Yosemite >>>> Late 2009 iMac 21.5" Intel Core 2 Duo 3.06GHz 12G RAM - OSX 10.10.3 >>>> Yosemite >>>> iPhone5; iPad2; ATV2 >>> > > -- The WA Macintosh User Group Mailing List -- > Archives - <http://www.wamug.org.au/mailinglist/archives.shtml> > Guidelines - <http://www.wamug.org.au/mailinglist/guidelines.shtml> > Settings & Unsubscribe - > <http://lists.wamug.org.au/listinfo/wamug.org.au-wamug>
-- The WA Macintosh User Group Mailing List -- Archives - <http://www.wamug.org.au/mailinglist/archives.shtml> Guidelines - <http://www.wamug.org.au/mailinglist/guidelines.shtml> Settings & Unsubscribe - <http://lists.wamug.org.au/listinfo/wamug.org.au-wamug>
