One of the defining characteristics of Apple computers is their seemingly impenetrable security system. Business and individual consumers alike who value security most in an operating system choose Apple products. Will this still be the case now that malware attacks on MacOS are increasing -- 744% in 2016, according to reports? Read on to find out.

How the new malware attacks Macs

The new strain of malware targeted at Macs is called OSX/Dok, which was first discovered in April 2017. OSX/Dok infiltrates Macs through phishing attacks, whereby users receive a suspicious email with a zip file attachment. Like all phishing attacks, it contains a message that tricks the recipient into opening the attachment purportedly about tax returns.

Mayhem ensues once the malware is in the system, gains administrator privileges, takes over encrypted communications, changes network settings, and performs other system tweaks that put the users at its mercy.

What the malware does

The malware targets mostly European networks, but it’s expected to spread into other regions. Even more alarming is its ability to bypass Gatekeeper, a security feature in the MacOS designed to fend off malware. This is because its developers were able to obtain a valid Apple developer certificate, which makes the attachment appear totally legitimate. Although Apple has addressed the issue by revoking the developer’s certificate of the earliest versions of the malware, the attackers remain persistent and now use a new developer ID.

How to avoid the mayhem

The Mac-targeted OSX/Dok malware is easy to avoid if you keep your wits about you when receiving zip files from unknown senders -- these files should be treated as high-risk and be reported to your IT team, quarantined, or junked. Whether you’re using a Mac or a Windows computer, clicking on suspicious ads can download and install apps from third-party sources that put your system at risk.

Mac users are not completely safe, and complacency with security could only result in compromised and irreparable systems, ruined reputation, and lost profits for businesses. For this particular malware, a simple act of vigilance may be all it takes to avoid having your Apple computer bitten by bugs. If you want to double the layer of protection for your business’s Mac computers, call us for robust security solutions.

Since 2013 when the current Mac Pro model was released, nothing has been confirmed regarding the progeny of the high-end workstation, until now. When will the new Mac Pro be released? What can you expect under the hood? How much will it cost? We answer all that and more.

Processor

The new Mac Pro is rumored to feature the next-generation Intel Xeon E5 processor. While the current models are configurable up to 3.5GHz for the six-core option, 3.0GHz for the eight-core option, and 2.7GHz for the 12-core option, the 2018 model could offer up to 14 or 18 cores per processor. What’s more, each model will likely come equipped with the Iris Pro Graphics P580, a highly powerful graphics processing unit (GPU) that will make heavy file renders a breeze.

However, there’s a small chance that Apple might abandon Intel chips altogether and move to AMD’s RYZEN 7 CPUs, which just set a new standard for high performing CPU processors.

RAM and storage

The new Intel Xeon chips are rumored to have DDR4 memory controllers, and if that’s true, you can expect uber fast memory and low latency without having to worry about issues with overheating. Currently, the 15-inch MacBook Pro comes with 16GB RAM, so it’s likely that you could expect the same RAM with the updated entry-level model of the Mac Pro. And because Apple knows that users usually work with very large files, an option for 2TB flash storage could be possible.

Ports

Claims that the new Mac Pro might offer more Thunderbolt ports in the form of USB-3 are also up in the air. This makes sense as it brings Thunderbolt to USB-C at 40Gbps which ensures faster data transfer speed.

While a number of users wish Apple would offer PCI slots so they could add faster SSDs and more powerful video cards, looking back at the company’s previous releases, we don’t think you should get your hopes up just yet.

Design

According to Apple, the triangular design of the Mac Pro’s thermal core was what limited them from offering updates to the machine. Because of that, we’ll probably see a completely new design in the 2018 model.

Prices

Apple just rolled out some minor updates to the current Mac Pro, including enhanced specs at lower price points. For the $2,999, you now get a 6-core Intel Xeon processor, dual AMD FirePro D500 GPUs and 16GB of memory. And for $3,999, you now get an 8-core processor and dual D700 GPUs.

Having said that, you can expect slightly higher prices for the new Mac Pro than the current models, like with most new Apple releases.

Release date

The timeframe is 2018, but keep in mind that the present Mac Pro was unveiled at WWDC in 2013 and supply was so restrained that people didn’t get theirs until the following spring. Therefore it’s highly possible that the new model will be launched at WWDC 2018 during summer and won’t probably ship until the end of the year.

Stay tuned for more updates on the new Mac Pro. And if you’d like to know more about other Apple products, or learn how they can streamline your operations, give us a call and we’ll be happy to help.

Microsoft Word is a staple business application. But since so many people use it on a daily basis, hackers work tirelessly to expose and exploit flaws in the system. In fact, cybercriminals stumbled upon a Word vulnerability that puts your sensitive data at risk. Read on to learn more about the exploit and what you can do about it.

The attack On April 10, cybersecurity firm Proofpoint discovered scammers running email campaigns to trick people into clicking malware-ridden Word attachments. The fraudulent emails, simply titled “Scan Data,” included attached documents that were named “Scan,” followed by randomized digits.

Although the emails seem harmless, clicking on the documents triggers a download for Dridex malware, a Trojan virus designed to give hackers direct access to your banking information. From there, they can simply log in to your online account and make unauthorized transactions under your name.

In 2015, the distribution of Dridex allowed cybercriminals to steal approximately $25 million from European accounts. And if your business fell victim to this malware, there’s a possibility your company might not be able to recover from the loss.

The solution Fortunately, two days after the discovery of the bug, Microsoft released a security update to disable the dangerous documents, urging users to install the patch as soon as possible. But even though Dridex was inoculated relatively quickly, employees continue to be the biggest problem.

Like most malware attacks, Dridex was distributed via phishing campaigns that preyed on a victim’s trust and curiosity. Hackers added barely any text to the email, yet people were still fooled into clicking on dangerous links.

To make sure Dridex never reaches your company, you must provide comprehensive security awareness training. In your sessions, encourage employees to practice safe computing habits, which include being cautious of online links, setting strong passwords, and avoiding downloads from untrusted and unknown sources.

Much like updating your software, keeping your staff’s security knowledge up to date on the latest threats is also imperative. Ultimately, your goal is to have employees with a security-focused mindset when browsing the web.

Of course, if security training and cybersecurity solutions are not your company’s specialties, you can always rely on a trusted managed services provider like us to protect your business. We can update and secure your systems regularly, and make sure your staff are actively doing their part to reduce security risks. Contact us today!