Links...
 
Tighten Pro
C/C++/Cocoa tool for codesign security, Developer ID, & Mac App Store Receipt Validation

Tighten Pro - in the Mac App Store

Tighten Pro is now available in the Mac App Store. Simply click on the icon to the left to purchase directly from Apple. Or choose PKCS#7Viewer.app by clicking the image to the right.

4.23.2017
Mac Developer: Uber Secretly Tracked Users, Spied On Lyft Prompting Tim Cook To Threaten Apple Store Expulsion | Zero Hedge

Uber Secretly Tracked Users, Spied On Lyft Prompting Tim Cook To Threaten Apple Store Expulsion | Zero Hedge: " The idea of fooling Apple, the main distributor of Uber’s app, began in 2014. At the time, Uber was dealing with widespread account fraud in places like China, where tricksters bought stolen iPhones that were erased of their memory and resold. Some Uber drivers there would then create dozens of fake email addresses to sign up for new Uber rider accounts attached to each phone, and request rides from those phones, which they would then accept. Since Uber was handing out incentives to drivers to take more rides, the drivers could earn more money this way."

If the rules allow iPhone device holders to perpetrate fraud, I think the rules should be changed.

Labels:

By : Tighten Uber Secretly Tracked Users, Spied On Lyft Prompting Tim Cook To Threaten Apple Store Expulsion | Zero Hedge 0 comments

4.21.2017
Mac Developer: Script kiddies pwn 1000s of Windows boxes using leaked NSA hack tools • The Register

Script kiddies pwn 1000s of Windows boxes using leaked NSA hack tools • The Register: "Tentler reckons that when the Shadow Brokers' arsenal hit the web on Easter weekend, script kiddies around the world grabbed the cyber-arms, went out, and infected everything they could find."

The gift that keeps on giving...

Labels: ,

By : Tighten Script kiddies pwn 1000s of Windows boxes using leaked NSA hack tools • The Register 0 comments

4.19.2017
Mac Developer: We're spying on you for your own protection, says NSA, FBI • The Register

We're spying on you for your own protection, says NSA, FBI • The Register: "The document even claims that it is surveilling US citizens for their own protection while at the same time claiming that it is not doing so.

Hmmm.

Labels:

By : Tighten We're spying on you for your own protection, says NSA, FBI • The Register 0 comments

4.15.2017
Mac Developer: Apple's Mac, iPad dodge an ugly new NSA hacker bomb targeting majority of Windows PCs globally

Apple's Mac, iPad dodge an ugly new NSA hacker bomb targeting majority of Windows PCs globally: "As noted in a report by Lorenzo Franceschi-Bicchierai for Motherboard, the NSA tools were leaked by hacker group known as the "Shadow Brokers.""

I'm sure all the bugs are fixed.

Labels: ,

By : Tighten Apple's Mac, iPad dodge an ugly new NSA hacker bomb targeting majority of Windows PCs globally 0 comments

4.10.2017
Mac Developer: WikiLeaks just dropped the CIA’s secret how-to for infecting Windows | Ars Technica

WikiLeaks just dropped the CIA’s secret how-to for infecting Windows | Ars Technica: "WikiLeaks has published what it says is another batch of secret hacking manuals belonging to the US Central Intelligence Agency as part of its Vault7 series of leaks. The site is billing Vault7 as the largest publication of intelligence documents ever."

The wilds get wilder.

Labels:

By : Tighten WikiLeaks just dropped the CIA’s secret how-to for infecting Windows | Ars Technica 0 comments

Mac Developer: Eric S. Raymond says you probably fit one of eight tech archetypes • The Register

Eric S. Raymond says you probably fit one of eight tech archetypes • The Register: "'Castellans' memorise manuals, 'Tinkers' can't stop hacking hardware. Keep 'Algorithmicists' out of a corner office"

What color is your propellerhead?

Labels:

By : Tighten Eric S. Raymond says you probably fit one of eight tech archetypes • The Register 0 comments

4.03.2017
Mac Developer: Found: Quite possibly the most sophisticated Android espionage app ever | Ars Technica

Found: Quite possibly the most sophisticated Android espionage app ever | Ars Technica: "The iOS version of Pegasus took hold of targeted devices by exploiting a trio of critical security vulnerabilities that were unknown to Apple and most other security researchers. "

Exploits, exploits, exploits.

Labels: ,

By : Tighten Found: Quite possibly the most sophisticated Android espionage app ever | Ars Technica 0 comments

3.28.2017
Mac Developer: Apple squashes cert-handling bug affecting macOS and iOS • The Register

Apple squashes cert-handling bug affecting macOS and iOS • The Register: "The flaw – discovered and responsibly disclosed by security researchers from Cisco Talos – stemmed from bugs in the X.509 certificate validation functionality of Apple macOS and iOS. Improper handling of X.509v3 certificate extensions fields created the code injection risk.

Unruly.

Labels: ,

By : Tighten Apple squashes cert-handling bug affecting macOS and iOS • The Register 0 comments

3.24.2017
Mac Developer: Google slaps Symantec for sloppy certs, slow show of SNAFUs • The Register

Google slaps Symantec for sloppy certs, slow show of SNAFUs • The Register: "Google's Chrome development team has posted a stinging criticism of Symantec's certificate-issuance practices, saying it has lost confidence in the company's practices and therefore in the safety of sessions hopefully-secured by Symantec-issued certificates."

Securing internet transactions: a house of cards. Will I buy a $9.99/year Google-issued certificate? The answer is a resounding yes, Go Daddy!

Labels: ,

By : Tighten Google slaps Symantec for sloppy certs, slow show of SNAFUs • The Register 0 comments

Mac Developer: Microsoft Word macro malware automatically adapts attack techniques for macOS, Windows

Microsoft Word macro malware automatically adapts attack techniques for macOS, Windows: "When executed, the macro reads and decodes base 64-encoded data stored in the file's "comments" property. This code turns out to be a python script that attempts to detect the operating system the file is opened inside, running one of two different functions depending on if the host system is running macOS or Windows. "

Things that go hmmm in the night.

Labels:

By : Tighten Microsoft Word macro malware automatically adapts attack techniques for macOS, Windows 0 comments

3.22.2017
Mac Developer: Inside the Hunt for Russia's Most Notorious Hacker | WIRED

Inside the Hunt for Russia's Most Notorious Hacker | WIRED: "Werner, as it happened, knew quite a bit about Evgeniy Bogachev. He knew in precise, technical detail how Bogachev had managed to loot and terrorize the world’s financial systems with impunity for years.

A barnburner, terrific article.

Labels: , ,

By : Tighten Inside the Hunt for Russia's Most Notorious Hacker | WIRED 0 comments

3.15.2017
Mac Developer: Apple hires renowned iPhone jailbreaker to help protect privacy | Cult of Mac

Apple hires renowned iPhone jailbreaker to help protect privacy | Cult of Mac: "Jonathan Zdziarski, who was active in the iPhone jailbreaking community for years, revealed today that he has accepted an offer to join Apple’s Security Engineering and Architecture team."

Feeling tightened?

Labels: , ,

By : Tighten Apple hires renowned iPhone jailbreaker to help protect privacy | Cult of Mac 0 comments

3.12.2017
Mac Developer: WikiLeaks documents show CIA struggling to crack Apple gear, little danger to everyday folk

WikiLeaks documents show CIA struggling to crack Apple gear, little danger to everyday folk: "Apple has since revealed that it has patched most of the CIA's exploits in iOS 10.

Feeling trusty yet?

Labels:

By : Tighten WikiLeaks documents show CIA struggling to crack Apple gear, little danger to everyday folk 0 comments

Mac Developer: 'Password rules are bullsh*t!' Stackoverflow Jeff's rage overflows • The Register

'Password rules are bullsh*t!' Stackoverflow Jeff's rage overflows • The Register: ""These days, given the state of cloud computing and GPU password hash cracking, any password of 8 characters or less is perilously close to no password at all," he said."

Stackoverflow is one of the most useful sites on the inter web.

Labels:

By : Tighten 'Password rules are bullsh*t!' Stackoverflow Jeff's rage overflows • The Register 0 comments

3.08.2017
Mac Developer: After NSA hacking exposé, CIA staffers asked where Equation Group went wrong | Ars Technica

After NSA hacking exposé, CIA staffers asked where Equation Group went wrong | Ars Technica: "A third error was the failure to renew some of the domain name registrations Equation Group-infected computers reported to. When Kaspersky Lab obtained the addresses, the researchers were shocked to find some machines infected by a malware platform abandoned more than 10 years earlier were still connecting to it."

Seems like everyone hates GoDaddy autorenew.

Labels:

By : Tighten After NSA hacking exposé, CIA staffers asked where Equation Group went wrong | Ars Technica 0 comments

Mac Developer: WikiLeaks document dump reveals CIA iPhone penetration team, insecurity of exploit library

WikiLeaks document dump reveals CIA iPhone penetration team, insecurity of exploit library: "Overall, WikiLeaks claims that the Engineering Development Group inside the agency's CCI has produced more than 1000 hacking systems and "weaponized" malware. Reportedly, the codebase associated with the vectors is larger than Facebook's."

Your tax dollars hard at work. Thanks, Obama!

Labels:

By : Tighten WikiLeaks document dump reveals CIA iPhone penetration team, insecurity of exploit library 0 comments

Mac Developer: How Google's lack of human curation spreads and monetizes fake news

How Google's lack of human curation spreads and monetizes fake news: "Google search is developing a credibility problem that could be blamed on artificial intelligence. In a statement, the company said its algorithms for generating "featured snippet" answers can cause "instances when we feature a site with inappropriate or misleading content," resulting in false answers."

Worse than yellow journalism? You tell me.

Labels:

By : Tighten How Google's lack of human curation spreads and monetizes fake news 0 comments

2.24.2017
Mac Developer: Mysterious Gmail account lockouts prompt hack fears • The Register

Mysterious Gmail account lockouts prompt hack fears • The Register: "El Reg requested comment directly from Google on Friday morning but we're yet to hear back. While we've been waiting for a response, we've canvassed security folks through Twitter, two of whom have said they've been been asked to reauthenticate themselves and log back into their Google accounts."

Just such a bad time for it.

Labels:

By : Tighten Mysterious Gmail account lockouts prompt hack fears • The Register 0 comments

2.09.2017
Mac Developer: New Mac malware from Iran targets US defense industry, human rights advocates with fake Flash updates

New Mac malware from Iran targets US defense industry, human rights advocates with fake Flash updates: "Visitors to the current fake site would be provided with malware for either Windows or macOS, depending on the detected operating system. In MacDownloader's case, it creates a fake Adobe Flash Player dialog that offers to update the Flash player, or to close the window. "

Huggadah, huggadah.

Labels:

By : Tighten New Mac malware from Iran targets US defense industry, human rights advocates with fake Flash updates 0 comments

1.31.2017
Mac Developer: Apple smashes expectations: record setting $78.4B in revenue on sales of 78.3M iPhones

Apple smashes expectations: record setting $78.4B in revenue on sales of 78.3M iPhones: "Mac sales were up slightly, reaching 5.4 million in the holiday period. That bested the 5.3 million units Apple shipped a year ago."

We'll take it.

Labels:

By : Tighten Apple smashes expectations: record setting $78.4B in revenue on sales of 78.3M iPhones 0 comments

1.26.2017
Mac Developer: Windows code-signing tweaks sure to irritate software developers • The Register

Windows code-signing tweaks sure to irritate software developers • The Register: "Changes that mean signing certificates for Windows can only be sold in hardware form – or from an as-yet undefined cloud-based "service” – from the start of February are likely to have a big effect on software development."

Linux will eat everything.

Labels:

By : Tighten Windows code-signing tweaks sure to irritate software developers • The Register 0 comments

1.24.2017
Mac Developer: 'Right to Repair' bills in five states could force Apple to provide iPhone parts, support to independent repair shops

'Right to Repair' bills in five states could force Apple to provide iPhone parts, support to independent repair shops: "Five states have introduced bills that would give citizens the "Right to Repair" electronics, compelling Apple and other manufacturers to provide service manuals and easier access to spare parts to consumers and third-party repair shops. "

Not everyone wants soma for breakfast, lunch and dinner.

Labels:

By : Tighten 'Right to Repair' bills in five states could force Apple to provide iPhone parts, support to independent repair shops 0 comments

1.23.2017
Mac Developer: Annoyingly precocious teen who ruined Trek is now an asteroid • The Register

Annoyingly precocious teen who ruined Trek is now an asteroid • The Register: "Actor Asteroid 391257, who rose to prominence for playing annoyingly precocious teen Starfleet member Wesley Crusher in Star Trek: The Next Generation, now has an asteroid named after him."

This is not fake news.

Labels:

By : Tighten Annoyingly precocious teen who ruined Trek is now an asteroid • The Register 0 comments

1.19.2017
Mac Developer: Disposable, anonymous servers, via Bitcoin and Python • The Register

Disposable, anonymous servers, via Bitcoin and Python • The Register: "Teran McKinney, a Texas-based systems engineer with a professed fondness for Ayn Rand, is taking disposable infrastructure a step further with a service called SporeStack that allows developers to deploy servers anonymously, paid for in Bitcoin."

Disposably yours.

Labels:

By : Tighten Disposable, anonymous servers, via Bitcoin and Python • The Register 0 comments

1.18.2017
Mac Developer: 'Fruitfly' malware patched by Apple relies on 'ancient' Mac system calls

'Fruitfly' malware patched by Apple relies on 'ancient' Mac system calls: "The company noted that Apple has already released a silent update for macOS, dubbing the malware "Fruitfly." Malwarebytes' own app identifies the code as "OSX.Backdoor.Quimitchin," making a reference to ancient Aztec spies."

libJPEG, what?

Labels: , ,

By : Tighten 'Fruitfly' malware patched by Apple relies on 'ancient' Mac system calls 0 comments

1.16.2017
Mac Developer: Windows 10 Anniversary Update crushed exploits without need of patches • The Register

Windows 10 Anniversary Update crushed exploits without need of patches • The Register: "The August updates brought in a series of operating system security improvements including boosts to Windows Defender and use of AppContainer, designed to raise the difficulty of having zero day exploits execute on patched systems."

Hear, hear.

Labels:

By : Tighten Windows 10 Anniversary Update crushed exploits without need of patches • The Register 0 comments

Mac Developer: US appeals court says public has right to sue Apple over App Store exclusivity

US appeals court says public has right to sue Apple over App Store exclusivity: "A U.S. federal appeals court ruled on Thursday that people do indeed have the right to sue Apple over limiting iOS devices to apps from the App Store, potentially paving the way for an open app marketplace in the future."

Caveat emptor.

Labels: ,

By : Tighten US appeals court says public has right to sue Apple over App Store exclusivity 0 comments

 

 
 
 

 Tighten    
 Generate    
 Secure    
 Inspect    
 Quarantino    
 Downloads    
 Support    
 Documentation    
 Tighten App.app    
 Tighten Pro.app    
 PKCS#7Viewer.app    
 About    
 Hire    
 Contact    
 Blogger    
 FaceBook    
 iTunes Direct Link    
 Hollywood CA    
 spctl --assess -vvv    
 spctl --master-enable    
 spctl --master-disable    
 Mac App Store Receipt Validation    
 Apple Code Signing Certificates    
 Gatekeeper Developer ID Apple    
 Xcode codesign tutorial    
 [Site Map]    
 


Copyright © 2005-2015
All Rights Reserved
Tighten Pro