Links...
 
Tighten Pro
C/C++/Cocoa tool for codesign security, Developer ID, & Mac App Store Receipt Validation

Tighten Pro - in the Mac App Store

Tighten Pro is now available in the Mac App Store. Simply click on the icon to the left to purchase directly from Apple. Or choose PKCS#7Viewer.app by clicking the image to the right.

3.28.2017
Mac Developer: Apple squashes cert-handling bug affecting macOS and iOS • The Register

Apple squashes cert-handling bug affecting macOS and iOS • The Register: "The flaw – discovered and responsibly disclosed by security researchers from Cisco Talos – stemmed from bugs in the X.509 certificate validation functionality of Apple macOS and iOS. Improper handling of X.509v3 certificate extensions fields created the code injection risk.

Unruly.

Labels: ,

By : Tighten Apple squashes cert-handling bug affecting macOS and iOS • The Register 0 comments

 
3.24.2017
Mac Developer: Google slaps Symantec for sloppy certs, slow show of SNAFUs • The Register

Google slaps Symantec for sloppy certs, slow show of SNAFUs • The Register: "Google's Chrome development team has posted a stinging criticism of Symantec's certificate-issuance practices, saying it has lost confidence in the company's practices and therefore in the safety of sessions hopefully-secured by Symantec-issued certificates."

Securing internet transactions: a house of cards. Will I buy a $9.99/year Google-issued certificate? The answer is a resounding yes, Go Daddy!

Labels: ,

By : Tighten Google slaps Symantec for sloppy certs, slow show of SNAFUs • The Register 0 comments

 
Mac Developer: Microsoft Word macro malware automatically adapts attack techniques for macOS, Windows

Microsoft Word macro malware automatically adapts attack techniques for macOS, Windows: "When executed, the macro reads and decodes base 64-encoded data stored in the file's "comments" property. This code turns out to be a python script that attempts to detect the operating system the file is opened inside, running one of two different functions depending on if the host system is running macOS or Windows. "

Things that go hmmm in the night.

Labels:

By : Tighten Microsoft Word macro malware automatically adapts attack techniques for macOS, Windows 0 comments

 
3.22.2017
Mac Developer: Inside the Hunt for Russia's Most Notorious Hacker | WIRED

Inside the Hunt for Russia's Most Notorious Hacker | WIRED: "Werner, as it happened, knew quite a bit about Evgeniy Bogachev. He knew in precise, technical detail how Bogachev had managed to loot and terrorize the world’s financial systems with impunity for years.

A barnburner, terrific article.

Labels: , ,

By : Tighten Inside the Hunt for Russia's Most Notorious Hacker | WIRED 0 comments

 
3.15.2017
Mac Developer: Apple hires renowned iPhone jailbreaker to help protect privacy | Cult of Mac

Apple hires renowned iPhone jailbreaker to help protect privacy | Cult of Mac: "Jonathan Zdziarski, who was active in the iPhone jailbreaking community for years, revealed today that he has accepted an offer to join Apple’s Security Engineering and Architecture team."

Feeling tightened?

Labels: , ,

By : Tighten Apple hires renowned iPhone jailbreaker to help protect privacy | Cult of Mac 0 comments

 
3.12.2017
Mac Developer: WikiLeaks documents show CIA struggling to crack Apple gear, little danger to everyday folk

WikiLeaks documents show CIA struggling to crack Apple gear, little danger to everyday folk: "Apple has since revealed that it has patched most of the CIA's exploits in iOS 10.

Feeling trusty yet?

Labels:

By : Tighten WikiLeaks documents show CIA struggling to crack Apple gear, little danger to everyday folk 0 comments

 
Mac Developer: 'Password rules are bullsh*t!' Stackoverflow Jeff's rage overflows • The Register

'Password rules are bullsh*t!' Stackoverflow Jeff's rage overflows • The Register: ""These days, given the state of cloud computing and GPU password hash cracking, any password of 8 characters or less is perilously close to no password at all," he said."

Stackoverflow is one of the most useful sites on the inter web.

Labels:

By : Tighten 'Password rules are bullsh*t!' Stackoverflow Jeff's rage overflows • The Register 0 comments

 
3.08.2017
Mac Developer: After NSA hacking exposé, CIA staffers asked where Equation Group went wrong | Ars Technica

After NSA hacking exposé, CIA staffers asked where Equation Group went wrong | Ars Technica: "A third error was the failure to renew some of the domain name registrations Equation Group-infected computers reported to. When Kaspersky Lab obtained the addresses, the researchers were shocked to find some machines infected by a malware platform abandoned more than 10 years earlier were still connecting to it."

Seems like everyone hates GoDaddy autorenew.

Labels:

By : Tighten After NSA hacking exposé, CIA staffers asked where Equation Group went wrong | Ars Technica 0 comments

 
Mac Developer: WikiLeaks document dump reveals CIA iPhone penetration team, insecurity of exploit library

WikiLeaks document dump reveals CIA iPhone penetration team, insecurity of exploit library: "Overall, WikiLeaks claims that the Engineering Development Group inside the agency's CCI has produced more than 1000 hacking systems and "weaponized" malware. Reportedly, the codebase associated with the vectors is larger than Facebook's."

Your tax dollars hard at work. Thanks, Obama!

Labels:

By : Tighten WikiLeaks document dump reveals CIA iPhone penetration team, insecurity of exploit library 0 comments

 
Mac Developer: How Google's lack of human curation spreads and monetizes fake news

How Google's lack of human curation spreads and monetizes fake news: "Google search is developing a credibility problem that could be blamed on artificial intelligence. In a statement, the company said its algorithms for generating "featured snippet" answers can cause "instances when we feature a site with inappropriate or misleading content," resulting in false answers."

Worse than yellow journalism? You tell me.

Labels:

By : Tighten How Google's lack of human curation spreads and monetizes fake news 0 comments

 

 

 
 
 

 Tighten    
 Generate    
 Secure    
 Inspect    
 Quarantino    
 QTZ    
 Downloads    
 Support    
 Documentation    
 Tighten App.app    
 Tighten Pro.app    
 PKCS#7Viewer.app    
 Quarzenegger.app    
 About    
 Hire    
 Contact    
 Blogger    
 FaceBook    
 iTunes Direct Link    
 Hollywood CA    
 spctl --assess -vvv    
 spctl --master-enable    
 spctl --master-disable    
 Mac App Store Receipt Validation    
 Apple Code Signing Certificates    
 Gatekeeper Developer ID Apple    
 Xcode codesign tutorial    
 [Site Map]    
 


Copyright © 2005-2020
All Rights Reserved
Tighten Pro