From ronladams7 at gmail.com Tue Jun 1 11:48:58 2010 From: ronladams7 at gmail.com (R_Adams) Date: Tue, 1 Jun 2010 11:48:58 -0600 Subject: [NPMUG] FT.com / Technology - Google ditches Windows on security concerns Message-ID: http://www.ft.com/cms/s/2/d2f3f04e-6ccf-11df-91c8-00144feab49a.html -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100601/43d1440c/attachment.htm From dave at davesevick.com Tue Jun 1 20:42:13 2010 From: dave at davesevick.com (Dave Sevick) Date: Tue, 1 Jun 2010 22:42:13 -0400 Subject: [NPMUG] Meeting notes from the June 1 at MacOutfitters of Cranberry Message-ID: <4A711360-9107-4A1E-9B65-4A870C886EBD@davesevick.com> Norton Removers - a command line utility was used to help a user remove an unwanted version of Norton Antivirus. FileMaker - How the User Group card is made ..... a closer look at layouts, find, preview, browse and printing. Edubuntu 10.04 - demonstration - April 2010 (Lucid Lynx) Long-Term Support - and how it compares to the Mac ... and why this is so important. http://edubuntu.org/UsingEdubuntu Dave Nolder - the Goodwill Store manager lost in a car crash - a great guy honored as our first "KIND SOUL". His friends and co-workers tell us that he went to ITT Tech and "knew more than the teachers !" He worked at PNC Bank doing networks, Sony repairing monitors, installing carpets, auto repair, and National Tire & Battery before coming to Goodwill. We won't forget all Dave did to help Mac guys at Goodwill. http://www.thepittsburghchannel.com/news/23258183/detail.html Warren Church - scratch and dents @ Goodwill x 22 Macs ... we watched the video. http://www.youtube.com/watch?v=yQeETMarZpw Liberia, Africa - ELWA Hospital and Brother's Brother Foundation x 63 Macs - we surfed the website. http://www.elwaministries.org/AreasofMinistry/Hospital/tabid/59/Default.aspx http://www.elwamausa.org/why/elwahospital.html Goodwill's Move back to Lawrenceville - Mac Folks Asked To Roll With The Changes New strategies for much less space, as we transition into 2400 Carson St temporarily. But Mac recycling will continue. Discussion ...... Prepping Macs to go Nicaragua - a major project announcement, the return to service schools all over Nicragua underway. http://www.youtube.com/watch?v=kK34yNhnRGs Discount cards can be purchased with a credit card at http://davesevick.com/user-groups.html Nightcap at the House of Chen ! www.chencranberry.com -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100601/99ffa40a/attachment-0006.htm -------------- next part -------------- A non-text attachment was scrubbed... Name: edubuntu-desktop.png Type: image/png Size: 113165 bytes Desc: not available Url : http://davesevick.com/pipermail/npmug/attachments/20100601/99ffa40a/attachment-0001.png -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100601/99ffa40a/attachment-0007.htm -------------- next part -------------- A non-text attachment was scrubbed... Name: DaveNolder.jpeg Type: image/jpeg Size: 21449 bytes Desc: not available Url : http://davesevick.com/pipermail/npmug/attachments/20100601/99ffa40a/attachment-0001.jpeg -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100601/99ffa40a/attachment-0008.htm -------------- next part -------------- A non-text attachment was scrubbed... Name: 2ufbxu0.jpg Type: image/jpeg Size: 7286 bytes Desc: not available Url : http://davesevick.com/pipermail/npmug/attachments/20100601/99ffa40a/attachment-0001.jpg -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100601/99ffa40a/attachment-0009.htm -------------- next part -------------- A non-text attachment was scrubbed... Name: scratch.pdf Type: application/pdf Size: 437172 bytes Desc: not available Url : http://davesevick.com/pipermail/npmug/attachments/20100601/99ffa40a/attachment-0002.pdf -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100601/99ffa40a/attachment-0010.htm -------------- next part -------------- A non-text attachment was scrubbed... Name: nica.pdf Type: application/pdf Size: 53985 bytes Desc: not available Url : http://davesevick.com/pipermail/npmug/attachments/20100601/99ffa40a/attachment-0003.pdf -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100601/99ffa40a/attachment-0011.htm From ndb2 at mac.com Thu Jun 3 07:02:23 2010 From: ndb2 at mac.com (nancy dolan-brady) Date: Thu, 03 Jun 2010 09:02:23 -0400 Subject: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely Distributed Mac Applications References: Message-ID: <3FBF8A9E-CA2B-4F17-A60B-981DD17E25EF@mac.com> Sent to me this am from good friend at the SEI ( cmu's software engineering institute) > > Malware: OSX/OpinionSpy > Risk: High > > ...a spyware application that is installed by a number of freely > distributed Mac applications and screen savers found on a variety of > websites. This spyware, OSX/OpinionSpy, performs a number of > malicious actions, from scanning files to recording user activity, > as well as sending information about this activity to remote servers > and opening a backdoor on infected Macs. > > OSX/OpinionSpy is installed by a number of applications and screen > savers that are distributed on sites such as MacUpdate, > VersionTracker and Softpedia. The spyware itself is not contained in > these applications, but is downloaded during the installation > process. This shows the need for an up-to-date anti-malware program > with a real-time scanner that can detect this malware when it is > downloaded by the original application's installer. > > The information provided with some of these applications contains a > misleading text that users must accept explaining that a "market > research" program is installed with them, but not all of these > specify this. Some of these programs are also distributed directly > from developers' web sites with no such warning. > > OSX/OpinionSpy performs the following actions: > > * This application, which has no interface, runs as root (it > requests an administrator's password on installation) with full > rights to access and change any file on the infected user's computer. > * If for any reason the application stops running, it is re- > launched via launchd, the system-wide application and service > launching facility. > * It opens an HTTP backdoor using port 8254. > * It scans all accessible volumes, analyzing files, and using a > great deal of CPU time. It is not clear what data it copies and > sends to its servers, but it scans files on both local and network > volumes, potentially opening up large numbers of confidential files > on a network to intrusion. > * It analyzes packets entering and leaving the infected Mac over > a local network, analyzing data coming from and being sent to other > computers. One infected Mac can therefore collect a great deal of > data from different computers on a local network, such as in a > business or school. > * It injects code, without user intervention, into Safari, > Firefox and iChat, and copies personal data from these applications. > Code injection is a form of behavior similar to that of a virus, and > this malware "infects" applications when they are running to be able > to carry out its operations. (It infects the applications' code in > the Mac's memory, and does not infect the actual applications' files > on the user's hard disk.) > * It regularly sends data, in encrypted form, to a number of > servers using ports 80 and 443. It sends data to these servers about > files it has scanned locally, and also sends e-mail addresses, iChat > message headers and URLs, as well as other data. This data may > include personal data, such as user names, passwords, credit card > numbers, web browser bookmarks, history and much more. > * Given the type of data that it collects, the company behind > this spyware can store detailed records of users, their habits, > their contacts, their location and much more. > * The application can be upgraded automatically, with new > features added, with no user intervention, and without the user > being aware of this. It occasionally asks users for information, via > the display of dialogs, such as their name, or asks them to fill out > surveys. > * In some cases, computers with this spyware installed no longer > work correctly after a certain period of time; it is necessary to > force-reboot such Macs. > * If a user deletes the original application or screen saver that > installed this spyware, the spyware itself will remain installed and > continue to operate. > > As can be seen above, this application that purports to collect > information for marketing reasons does much more, going as far as > scanning all the files on an infected Mac. Users have no way of > knowing exactly what data is collected and sent to remote servers; > such data may include user names, passwords, credit card numbers and > more. The risk of this data being collected and used without users' > permission makes this spyware particularly dangerous to users' > privacy. > > The fact that this application collects data in this manner, and > that it opens a backdoor, makes it a very serious security threat. > In addition, the risk of it collecting sensitive data such as user > names, passwords and credit card numbers, makes this a very high- > risk spyware. While its distribution is limited, we warn Mac users > to pay careful attention to which software they download and install. > From charles at firthconsulting.com Thu Jun 3 07:33:27 2010 From: charles at firthconsulting.com (Charles Firth) Date: Thu, 3 Jun 2010 09:33:27 -0400 Subject: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely Distributed Mac Applications In-Reply-To: <3FBF8A9E-CA2B-4F17-A60B-981DD17E25EF@mac.com> References: <3FBF8A9E-CA2B-4F17-A60B-981DD17E25EF@mac.com> Message-ID: This is actually a newer version of an older Windows trojan - and appears to be manufactured by the same company. http://www.sophos.com/blogs/duck/g/2010/06/02/mac-osx-monitorware/ And once again hammers home the importance of being careful with what you install. This malware, like almost all OSX malware, needs your permission and help to be installed. Only install software you trust - and think twice before anything asks you to enter your username/password. And I gotta second the shout-out to the SEI - I have a good friend who works there as well (and both my father and brother have worked there in the past) - smart place. On Jun 3, 2010, at 9:02 AM, nancy dolan-brady wrote: > Sent to me this am from good friend at the SEI ( cmu's software > engineering institute) > > >> >> Malware: OSX/OpinionSpy >> Risk: High >> >> ...a spyware application that is installed by a number of freely >> distributed Mac applications and screen savers found on a variety of >> websites. This spyware, OSX/OpinionSpy, performs a number of >> malicious actions, from scanning files to recording user activity, >> as well as sending information about this activity to remote servers >> and opening a backdoor on infected Macs. >> >> OSX/OpinionSpy is installed by a number of applications and screen >> savers that are distributed on sites such as MacUpdate, >> VersionTracker and Softpedia. The spyware itself is not contained in >> these applications, but is downloaded during the installation >> process. This shows the need for an up-to-date anti-malware program >> with a real-time scanner that can detect this malware when it is >> downloaded by the original application's installer. >> >> The information provided with some of these applications contains a >> misleading text that users must accept explaining that a "market >> research" program is installed with them, but not all of these >> specify this. Some of these programs are also distributed directly >> from developers' web sites with no such warning. >> >> OSX/OpinionSpy performs the following actions: >> >> * This application, which has no interface, runs as root (it >> requests an administrator's password on installation) with full >> rights to access and change any file on the infected user's computer. >> * If for any reason the application stops running, it is re- >> launched via launchd, the system-wide application and service >> launching facility. >> * It opens an HTTP backdoor using port 8254. >> * It scans all accessible volumes, analyzing files, and using a >> great deal of CPU time. It is not clear what data it copies and >> sends to its servers, but it scans files on both local and network >> volumes, potentially opening up large numbers of confidential files >> on a network to intrusion. >> * It analyzes packets entering and leaving the infected Mac over >> a local network, analyzing data coming from and being sent to other >> computers. One infected Mac can therefore collect a great deal of >> data from different computers on a local network, such as in a >> business or school. >> * It injects code, without user intervention, into Safari, >> Firefox and iChat, and copies personal data from these applications. >> Code injection is a form of behavior similar to that of a virus, and >> this malware "infects" applications when they are running to be able >> to carry out its operations. (It infects the applications' code in >> the Mac's memory, and does not infect the actual applications' files >> on the user's hard disk.) >> * It regularly sends data, in encrypted form, to a number of >> servers using ports 80 and 443. It sends data to these servers about >> files it has scanned locally, and also sends e-mail addresses, iChat >> message headers and URLs, as well as other data. This data may >> include personal data, such as user names, passwords, credit card >> numbers, web browser bookmarks, history and much more. >> * Given the type of data that it collects, the company behind >> this spyware can store detailed records of users, their habits, >> their contacts, their location and much more. >> * The application can be upgraded automatically, with new >> features added, with no user intervention, and without the user >> being aware of this. It occasionally asks users for information, via >> the display of dialogs, such as their name, or asks them to fill out >> surveys. >> * In some cases, computers with this spyware installed no longer >> work correctly after a certain period of time; it is necessary to >> force-reboot such Macs. >> * If a user deletes the original application or screen saver that >> installed this spyware, the spyware itself will remain installed and >> continue to operate. >> >> As can be seen above, this application that purports to collect >> information for marketing reasons does much more, going as far as >> scanning all the files on an infected Mac. Users have no way of >> knowing exactly what data is collected and sent to remote servers; >> such data may include user names, passwords, credit card numbers and >> more. The risk of this data being collected and used without users' >> permission makes this spyware particularly dangerous to users' >> privacy. >> >> The fact that this application collects data in this manner, and >> that it opens a backdoor, makes it a very serious security threat. >> In addition, the risk of it collecting sensitive data such as user >> names, passwords and credit card numbers, makes this a very high- >> risk spyware. While its distribution is limited, we warn Mac users >> to pay careful attention to which software they download and install. >> > > > _______________________________________________ > NPMUG mailing list > NPMUG at davesevick.com > http://davesevick.com/mailman/listinfo/npmug -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100603/4297113f/attachment.htm From markd at borkware.com Thu Jun 3 08:04:57 2010 From: markd at borkware.com (Mark Dalrymple) Date: Thu, 3 Jun 2010 10:04:57 -0400 Subject: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely Distributed Mac Applications In-Reply-To: <3FBF8A9E-CA2B-4F17-A60B-981DD17E25EF@mac.com> References: <3FBF8A9E-CA2B-4F17-A60B-981DD17E25EF@mac.com> Message-ID: >> ...a spyware application that is installed by a number of freely >> distributed Mac applications and screen savers It's actually a bunch of screen savers made by one company, and one (one) obscure conversion utility: http://www.loopinsight.com/2010/06/01/intego-releases-list-of-mac-apps-that-download-spyware-to-your-computer/ Cheers, ++md From harmonyroute at mac.com Thu Jun 3 08:06:21 2010 From: harmonyroute at mac.com (harmonyroute at mac.com) Date: Thu, 03 Jun 2010 10:06:21 -0400 Subject: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely Distributed Mac Applications In-Reply-To: References: <3FBF8A9E-CA2B-4F17-A60B-981DD17E25EF@mac.com> Message-ID: <63937EDE-6DFF-42EC-833F-281C9C63389F@mac.com> I noticed that this was a big deal on macintouch.com when I was at the Tuesday night MacOutfitters meeting. Macintouch was quoting Intego. http://macintouch.com/newsrecent.shtml Dave suggested that Intego was not a good source for this and we should look for something from Sophos. Thanks for the link. Keep smilin':=}CuZinBruce web.mac.com/cuzinbrucie cuzinbrucie at mac.com On Jun 3, 2010, at 9:33 AM, Charles Firth wrote: This is actually a newer version of an older Windows trojan - and appears to be manufactured by the same company. http://www.sophos.com/blogs/duck/g/2010/06/02/mac-osx-monitorware/ And once again hammers home the importance of being careful with what you install. This malware, like almost all OSX malware, needs your permission and help to be installed. Only install software you trust - and think twice before anything asks you to enter your username/password. And I gotta second the shout-out to the SEI - I have a good friend who works there as well (and both my father and brother have worked there in the past) - smart place. On Jun 3, 2010, at 9:02 AM, nancy dolan-brady wrote: > Sent to me this am from good friend at the SEI ( cmu's software > engineering institute) > > >> >> Malware: OSX/OpinionSpy >> Risk: High >> >> ...a spyware application that is installed by a number of freely >> distributed Mac applications and screen savers found on a variety of >> websites. This spyware, OSX/OpinionSpy, performs a number of >> malicious actions, from scanning files to recording user activity, >> as well as sending information about this activity to remote servers >> and opening a backdoor on infected Macs. >> >> OSX/OpinionSpy is installed by a number of applications and screen >> savers that are distributed on sites such as MacUpdate, >> VersionTracker and Softpedia. The spyware itself is not contained in >> these applications, but is downloaded during the installation >> process. This shows the need for an up-to-date anti-malware program >> with a real-time scanner that can detect this malware when it is >> downloaded by the original application's installer. >> >> The information provided with some of these applications contains a >> misleading text that users must accept explaining that a "market >> research" program is installed with them, but not all of these >> specify this. Some of these programs are also distributed directly >> from developers' web sites with no such warning. >> >> OSX/OpinionSpy performs the following actions: >> >> * This application, which has no interface, runs as root (it >> requests an administrator's password on installation) with full >> rights to access and change any file on the infected user's computer. >> * If for any reason the application stops running, it is re- >> launched via launchd, the system-wide application and service >> launching facility. >> * It opens an HTTP backdoor using port 8254. >> * It scans all accessible volumes, analyzing files, and using a >> great deal of CPU time. It is not clear what data it copies and >> sends to its servers, but it scans files on both local and network >> volumes, potentially opening up large numbers of confidential files >> on a network to intrusion. >> * It analyzes packets entering and leaving the infected Mac over >> a local network, analyzing data coming from and being sent to other >> computers. One infected Mac can therefore collect a great deal of >> data from different computers on a local network, such as in a >> business or school. >> * It injects code, without user intervention, into Safari, >> Firefox and iChat, and copies personal data from these applications. >> Code injection is a form of behavior similar to that of a virus, and >> this malware "infects" applications when they are running to be able >> to carry out its operations. (It infects the applications' code in >> the Mac's memory, and does not infect the actual applications' files >> on the user's hard disk.) >> * It regularly sends data, in encrypted form, to a number of >> servers using ports 80 and 443. It sends data to these servers about >> files it has scanned locally, and also sends e-mail addresses, iChat >> message headers and URLs, as well as other data. This data may >> include personal data, such as user names, passwords, credit card >> numbers, web browser bookmarks, history and much more. >> * Given the type of data that it collects, the company behind >> this spyware can store detailed records of users, their habits, >> their contacts, their location and much more. >> * The application can be upgraded automatically, with new >> features added, with no user intervention, and without the user >> being aware of this. It occasionally asks users for information, via >> the display of dialogs, such as their name, or asks them to fill out >> surveys. >> * In some cases, computers with this spyware installed no longer >> work correctly after a certain period of time; it is necessary to >> force-reboot such Macs. >> * If a user deletes the original application or screen saver that >> installed this spyware, the spyware itself will remain installed and >> continue to operate. >> >> As can be seen above, this application that purports to collect >> information for marketing reasons does much more, going as far as >> scanning all the files on an infected Mac. Users have no way of >> knowing exactly what data is collected and sent to remote servers; >> such data may include user names, passwords, credit card numbers and >> more. The risk of this data being collected and used without users' >> permission makes this spyware particularly dangerous to users' >> privacy. >> >> The fact that this application collects data in this manner, and >> that it opens a backdoor, makes it a very serious security threat. >> In addition, the risk of it collecting sensitive data such as user >> names, passwords and credit card numbers, makes this a very high- >> risk spyware. While its distribution is limited, we warn Mac users >> to pay careful attention to which software they download and install. >> > > > _______________________________________________ > NPMUG mailing list > NPMUG at davesevick.com > http://davesevick.com/mailman/listinfo/npmug _______________________________________________ NPMUG mailing list NPMUG at davesevick.com http://davesevick.com/mailman/listinfo/npmug -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100603/297b294f/attachment-0001.htm From sarahbrim2 at mac.com Thu Jun 3 08:17:16 2010 From: sarahbrim2 at mac.com (Sarah Brim) Date: Thu, 03 Jun 2010 10:17:16 -0400 Subject: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely Distributed Mac Applications In-Reply-To: References: <3FBF8A9E-CA2B-4F17-A60B-981DD17E25EF@mac.com> Message-ID: <5ef45b226fef8b6ccc2803017942adda@mac.com> Thank you so much for this important information. Regards, Sarah From edjb at zoominternet.net Thu Jun 3 09:01:21 2010 From: edjb at zoominternet.net (Edwin Borrebach) Date: Thu, 3 Jun 2010 11:01:21 -0400 Subject: [NPMUG] NPMUG Digest, Vol 54, Issue 2 In-Reply-To: References: Message-ID: <788FF4BD-F12B-4DD5-83F2-694604EC98D5@zoominternet.net> Well, all that info, repeated three or four times, tells me lots about this spyware, but how do I know if I have it? How do I get rid of it? When Apple asks me to okay some update to the installed software, how can I find out what they are going to install? Normally they don't tell me what it is or what they're in the process of installing. Just "Do you want IT? (no definition supplied of what IT is) and then 'It's installed." So how do I know this isn't a piece of spyware? Ed B On Jun 3, 2010, at 10:06 AM, npmug-request at davesevick.com wrote: > Send NPMUG mailing list submissions to > npmug at davesevick.com > > To subscribe or unsubscribe via the World Wide Web, visit > http://davesevick.com/mailman/listinfo/npmug > or, via email, send a message with subject or body 'help' to > npmug-request at davesevick.com > > You can reach the person managing the list at > npmug-owner at davesevick.com > > When replying, please edit your Subject line so it is more specific > than "Re: Contents of NPMUG digest..." > > > Today's Topics: > > 1. Fwd: fyi: [NEW] Spyware Installed by Freely Distributed Mac > Applications (nancy dolan-brady) > 2. Re: Fwd: fyi: [NEW] Spyware Installed by Freely Distributed > Mac Applications (Charles Firth) > 3. Re: Fwd: fyi: [NEW] Spyware Installed by Freely Distributed > Mac Applications (Mark Dalrymple) > 4. Re: Fwd: fyi: [NEW] Spyware Installed by Freely Distributed > Mac Applications (harmonyroute at mac.com) > > > ---------------------------------------------------------------------- > > Message: 1 > Date: Thu, 03 Jun 2010 09:02:23 -0400 > From: nancy dolan-brady > Subject: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely > Distributed Mac Applications > To: npmug at davesevick.com > Message-ID: <3FBF8A9E-CA2B-4F17-A60B-981DD17E25EF at mac.com> > Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes > > Sent to me this am from good friend at the SEI ( cmu's software > engineering institute) > > >> >> Malware: OSX/OpinionSpy >> Risk: High >> >> ...a spyware application that is installed by a number of freely >> distributed Mac applications and screen savers found on a variety of >> websites. This spyware, OSX/OpinionSpy, performs a number of >> malicious actions, from scanning files to recording user activity, >> as well as sending information about this activity to remote servers >> and opening a backdoor on infected Macs. >> >> OSX/OpinionSpy is installed by a number of applications and screen >> savers that are distributed on sites such as MacUpdate, >> VersionTracker and Softpedia. The spyware itself is not contained in >> these applications, but is downloaded during the installation >> process. This shows the need for an up-to-date anti-malware program >> with a real-time scanner that can detect this malware when it is >> downloaded by the original application's installer. >> >> The information provided with some of these applications contains a >> misleading text that users must accept explaining that a "market >> research" program is installed with them, but not all of these >> specify this. Some of these programs are also distributed directly >> from developers' web sites with no such warning. >> >> OSX/OpinionSpy performs the following actions: >> >> * This application, which has no interface, runs as root (it >> requests an administrator's password on installation) with full >> rights to access and change any file on the infected user's computer. >> * If for any reason the application stops running, it is re- >> launched via launchd, the system-wide application and service >> launching facility. >> * It opens an HTTP backdoor using port 8254. >> * It scans all accessible volumes, analyzing files, and using a >> great deal of CPU time. It is not clear what data it copies and >> sends to its servers, but it scans files on both local and network >> volumes, potentially opening up large numbers of confidential files >> on a network to intrusion. >> * It analyzes packets entering and leaving the infected Mac over >> a local network, analyzing data coming from and being sent to other >> computers. One infected Mac can therefore collect a great deal of >> data from different computers on a local network, such as in a >> business or school. >> * It injects code, without user intervention, into Safari, >> Firefox and iChat, and copies personal data from these applications. >> Code injection is a form of behavior similar to that of a virus, and >> this malware "infects" applications when they are running to be able >> to carry out its operations. (It infects the applications' code in >> the Mac's memory, and does not infect the actual applications' files >> on the user's hard disk.) >> * It regularly sends data, in encrypted form, to a number of >> servers using ports 80 and 443. It sends data to these servers about >> files it has scanned locally, and also sends e-mail addresses, iChat >> message headers and URLs, as well as other data. This data may >> include personal data, such as user names, passwords, credit card >> numbers, web browser bookmarks, history and much more. >> * Given the type of data that it collects, the company behind >> this spyware can store detailed records of users, their habits, >> their contacts, their location and much more. >> * The application can be upgraded automatically, with new >> features added, with no user intervention, and without the user >> being aware of this. It occasionally asks users for information, via >> the display of dialogs, such as their name, or asks them to fill out >> surveys. >> * In some cases, computers with this spyware installed no longer >> work correctly after a certain period of time; it is necessary to >> force-reboot such Macs. >> * If a user deletes the original application or screen saver that >> installed this spyware, the spyware itself will remain installed and >> continue to operate. >> >> As can be seen above, this application that purports to collect >> information for marketing reasons does much more, going as far as >> scanning all the files on an infected Mac. Users have no way of >> knowing exactly what data is collected and sent to remote servers; >> such data may include user names, passwords, credit card numbers and >> more. The risk of this data being collected and used without users' >> permission makes this spyware particularly dangerous to users' >> privacy. >> >> The fact that this application collects data in this manner, and >> that it opens a backdoor, makes it a very serious security threat. >> In addition, the risk of it collecting sensitive data such as user >> names, passwords and credit card numbers, makes this a very high- >> risk spyware. While its distribution is limited, we warn Mac users >> to pay careful attention to which software they download and install. >> > > > > > ------------------------------ > > Message: 2 > Date: Thu, 3 Jun 2010 09:33:27 -0400 > From: Charles Firth > Subject: Re: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely > Distributed Mac Applications > To: nancy dolan-brady > Cc: npmug at davesevick.com > Message-ID: > Content-Type: text/plain; charset="us-ascii" > > This is actually a newer version of an older Windows trojan - and appears to be manufactured by the same company. > http://www.sophos.com/blogs/duck/g/2010/06/02/mac-osx-monitorware/ > > And once again hammers home the importance of being careful with what you install. This malware, like almost all OSX malware, needs your permission and help to be installed. > > Only install software you trust - and think twice before anything asks you to enter your username/password. > > And I gotta second the shout-out to the SEI - I have a good friend who works there as well (and both my father and brother have worked there in the past) - smart place. > > > On Jun 3, 2010, at 9:02 AM, nancy dolan-brady wrote: > >> Sent to me this am from good friend at the SEI ( cmu's software >> engineering institute) >> >> >>> >>> Malware: OSX/OpinionSpy >>> Risk: High >>> >>> ...a spyware application that is installed by a number of freely >>> distributed Mac applications and screen savers found on a variety of >>> websites. This spyware, OSX/OpinionSpy, performs a number of >>> malicious actions, from scanning files to recording user activity, >>> as well as sending information about this activity to remote servers >>> and opening a backdoor on infected Macs. >>> >>> OSX/OpinionSpy is installed by a number of applications and screen >>> savers that are distributed on sites such as MacUpdate, >>> VersionTracker and Softpedia. The spyware itself is not contained in >>> these applications, but is downloaded during the installation >>> process. This shows the need for an up-to-date anti-malware program >>> with a real-time scanner that can detect this malware when it is >>> downloaded by the original application's installer. >>> >>> The information provided with some of these applications contains a >>> misleading text that users must accept explaining that a "market >>> research" program is installed with them, but not all of these >>> specify this. Some of these programs are also distributed directly >>> from developers' web sites with no such warning. >>> >>> OSX/OpinionSpy performs the following actions: >>> >>> * This application, which has no interface, runs as root (it >>> requests an administrator's password on installation) with full >>> rights to access and change any file on the infected user's computer. >>> * If for any reason the application stops running, it is re- >>> launched via launchd, the system-wide application and service >>> launching facility. >>> * It opens an HTTP backdoor using port 8254. >>> * It scans all accessible volumes, analyzing files, and using a >>> great deal of CPU time. It is not clear what data it copies and >>> sends to its servers, but it scans files on both local and network >>> volumes, potentially opening up large numbers of confidential files >>> on a network to intrusion. >>> * It analyzes packets entering and leaving the infected Mac over >>> a local network, analyzing data coming from and being sent to other >>> computers. One infected Mac can therefore collect a great deal of >>> data from different computers on a local network, such as in a >>> business or school. >>> * It injects code, without user intervention, into Safari, >>> Firefox and iChat, and copies personal data from these applications. >>> Code injection is a form of behavior similar to that of a virus, and >>> this malware "infects" applications when they are running to be able >>> to carry out its operations. (It infects the applications' code in >>> the Mac's memory, and does not infect the actual applications' files >>> on the user's hard disk.) >>> * It regularly sends data, in encrypted form, to a number of >>> servers using ports 80 and 443. It sends data to these servers about >>> files it has scanned locally, and also sends e-mail addresses, iChat >>> message headers and URLs, as well as other data. This data may >>> include personal data, such as user names, passwords, credit card >>> numbers, web browser bookmarks, history and much more. >>> * Given the type of data that it collects, the company behind >>> this spyware can store detailed records of users, their habits, >>> their contacts, their location and much more. >>> * The application can be upgraded automatically, with new >>> features added, with no user intervention, and without the user >>> being aware of this. It occasionally asks users for information, via >>> the display of dialogs, such as their name, or asks them to fill out >>> surveys. >>> * In some cases, computers with this spyware installed no longer >>> work correctly after a certain period of time; it is necessary to >>> force-reboot such Macs. >>> * If a user deletes the original application or screen saver that >>> installed this spyware, the spyware itself will remain installed and >>> continue to operate. >>> >>> As can be seen above, this application that purports to collect >>> information for marketing reasons does much more, going as far as >>> scanning all the files on an infected Mac. Users have no way of >>> knowing exactly what data is collected and sent to remote servers; >>> such data may include user names, passwords, credit card numbers and >>> more. The risk of this data being collected and used without users' >>> permission makes this spyware particularly dangerous to users' >>> privacy. >>> >>> The fact that this application collects data in this manner, and >>> that it opens a backdoor, makes it a very serious security threat. >>> In addition, the risk of it collecting sensitive data such as user >>> names, passwords and credit card numbers, makes this a very high- >>> risk spyware. While its distribution is limited, we warn Mac users >>> to pay careful attention to which software they download and install. >>> >> >> >> _______________________________________________ >> NPMUG mailing list >> NPMUG at davesevick.com >> http://davesevick.com/mailman/listinfo/npmug > > -------------- next part -------------- > An HTML attachment was scrubbed... > URL: http://davesevick.com/pipermail/npmug/attachments/20100603/4297113f/attachment-0001.htm > > ------------------------------ > > Message: 3 > Date: Thu, 3 Jun 2010 10:04:57 -0400 > From: Mark Dalrymple > Subject: Re: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely > Distributed Mac Applications > To: npmug at davesevick.com > Message-ID: > > Content-Type: text/plain; charset=ISO-8859-1 > >>> ...a spyware application that is installed by a number of freely >>> distributed Mac applications and screen savers > > It's actually a bunch of screen savers made by one company, and one > (one) obscure conversion utility: > > http://www.loopinsight.com/2010/06/01/intego-releases-list-of-mac-apps-that-download-spyware-to-your-computer/ > > Cheers, > ++md > > > > ------------------------------ > > Message: 4 > Date: Thu, 03 Jun 2010 10:06:21 -0400 > From: harmonyroute at mac.com > Subject: Re: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely > Distributed Mac Applications > To: Charles Firth > Cc: npmug at davesevick.com > Message-ID: <63937EDE-6DFF-42EC-833F-281C9C63389F at mac.com> > Content-Type: text/plain; charset="us-ascii" > > I noticed that this was a big deal on macintouch.com when I was at the Tuesday night MacOutfitters meeting. Macintouch was quoting Intego. > > http://macintouch.com/newsrecent.shtml > > Dave suggested that Intego was not a good source for this and we should look for something from Sophos. Thanks for the link. > > Keep smilin':=}CuZinBruce > web.mac.com/cuzinbrucie > cuzinbrucie at mac.com > > > On Jun 3, 2010, at 9:33 AM, Charles Firth wrote: > > This is actually a newer version of an older Windows trojan - and appears to be manufactured by the same company. > http://www.sophos.com/blogs/duck/g/2010/06/02/mac-osx-monitorware/ > > And once again hammers home the importance of being careful with what you install. This malware, like almost all OSX malware, needs your permission and help to be installed. > > Only install software you trust - and think twice before anything asks you to enter your username/password. > > And I gotta second the shout-out to the SEI - I have a good friend who works there as well (and both my father and brother have worked there in the past) - smart place. > > > On Jun 3, 2010, at 9:02 AM, nancy dolan-brady wrote: > >> Sent to me this am from good friend at the SEI ( cmu's software >> engineering institute) >> >> >>> >>> Malware: OSX/OpinionSpy >>> Risk: High >>> >>> ...a spyware application that is installed by a number of freely >>> distributed Mac applications and screen savers found on a variety of >>> websites. This spyware, OSX/OpinionSpy, performs a number of >>> malicious actions, from scanning files to recording user activity, >>> as well as sending information about this activity to remote servers >>> and opening a backdoor on infected Macs. >>> >>> OSX/OpinionSpy is installed by a number of applications and screen >>> savers that are distributed on sites such as MacUpdate, >>> VersionTracker and Softpedia. The spyware itself is not contained in >>> these applications, but is downloaded during the installation >>> process. This shows the need for an up-to-date anti-malware program >>> with a real-time scanner that can detect this malware when it is >>> downloaded by the original application's installer. >>> >>> The information provided with some of these applications contains a >>> misleading text that users must accept explaining that a "market >>> research" program is installed with them, but not all of these >>> specify this. Some of these programs are also distributed directly >>> from developers' web sites with no such warning. >>> >>> OSX/OpinionSpy performs the following actions: >>> >>> * This application, which has no interface, runs as root (it >>> requests an administrator's password on installation) with full >>> rights to access and change any file on the infected user's computer. >>> * If for any reason the application stops running, it is re- >>> launched via launchd, the system-wide application and service >>> launching facility. >>> * It opens an HTTP backdoor using port 8254. >>> * It scans all accessible volumes, analyzing files, and using a >>> great deal of CPU time. It is not clear what data it copies and >>> sends to its servers, but it scans files on both local and network >>> volumes, potentially opening up large numbers of confidential files >>> on a network to intrusion. >>> * It analyzes packets entering and leaving the infected Mac over >>> a local network, analyzing data coming from and being sent to other >>> computers. One infected Mac can therefore collect a great deal of >>> data from different computers on a local network, such as in a >>> business or school. >>> * It injects code, without user intervention, into Safari, >>> Firefox and iChat, and copies personal data from these applications. >>> Code injection is a form of behavior similar to that of a virus, and >>> this malware "infects" applications when they are running to be able >>> to carry out its operations. (It infects the applications' code in >>> the Mac's memory, and does not infect the actual applications' files >>> on the user's hard disk.) >>> * It regularly sends data, in encrypted form, to a number of >>> servers using ports 80 and 443. It sends data to these servers about >>> files it has scanned locally, and also sends e-mail addresses, iChat >>> message headers and URLs, as well as other data. This data may >>> include personal data, such as user names, passwords, credit card >>> numbers, web browser bookmarks, history and much more. >>> * Given the type of data that it collects, the company behind >>> this spyware can store detailed records of users, their habits, >>> their contacts, their location and much more. >>> * The application can be upgraded automatically, with new >>> features added, with no user intervention, and without the user >>> being aware of this. It occasionally asks users for information, via >>> the display of dialogs, such as their name, or asks them to fill out >>> surveys. >>> * In some cases, computers with this spyware installed no longer >>> work correctly after a certain period of time; it is necessary to >>> force-reboot such Macs. >>> * If a user deletes the original application or screen saver that >>> installed this spyware, the spyware itself will remain installed and >>> continue to operate. >>> >>> As can be seen above, this application that purports to collect >>> information for marketing reasons does much more, going as far as >>> scanning all the files on an infected Mac. Users have no way of >>> knowing exactly what data is collected and sent to remote servers; >>> such data may include user names, passwords, credit card numbers and >>> more. The risk of this data being collected and used without users' >>> permission makes this spyware particularly dangerous to users' >>> privacy. >>> >>> The fact that this application collects data in this manner, and >>> that it opens a backdoor, makes it a very serious security threat. >>> In addition, the risk of it collecting sensitive data such as user >>> names, passwords and credit card numbers, makes this a very high- >>> risk spyware. While its distribution is limited, we warn Mac users >>> to pay careful attention to which software they download and install. >>> >> >> >> _______________________________________________ >> NPMUG mailing list >> NPMUG at davesevick.com >> http://davesevick.com/mailman/listinfo/npmug > > _______________________________________________ > NPMUG mailing list > NPMUG at davesevick.com > http://davesevick.com/mailman/listinfo/npmug > > -------------- next part -------------- > An HTML attachment was scrubbed... > URL: http://davesevick.com/pipermail/npmug/attachments/20100603/297b294f/attachment.htm > > ------------------------------ > > _______________________________________________ > NPMUG mailing list > NPMUG at davesevick.com > http://davesevick.com/mailman/listinfo/npmug > > > End of NPMUG Digest, Vol 54, Issue 2 > ************************************ > From ndb2 at mac.com Thu Jun 3 09:14:17 2010 From: ndb2 at mac.com (nancy dolan-brady) Date: Thu, 03 Jun 2010 11:14:17 -0400 Subject: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely Distributed Mac Applications In-Reply-To: <63937EDE-6DFF-42EC-833F-281C9C63389F@mac.com> References: <3FBF8A9E-CA2B-4F17-A60B-981DD17E25EF@mac.com> <63937EDE-6DFF-42EC-833F-281C9C63389F@mac.com> Message-ID: <6C57C7AC-546A-44D6-A734-CD6E8F45386C@mac.com> absolutely important for all to investigate- look- believe and trust whatever source (s) you feel are best. the info i passed on came from an internal announcement from within the cmu software engineering institute. personally- as the cutting edge global leaders on software engineering -security-for things such as multiple sovereign nations & governments ( including our own), international financial and communications systems, i take their messages seriously above all others.- which is why i passed it along. that said- it is always best ...up to each user to decide for themselves. :-) On Jun 3, 2010, at 10:06 AM, harmonyroute at mac.com wrote: > I noticed that this was a big deal on macintouch.com when I was at > the Tuesday night MacOutfitters meeting. Macintouch was quoting > Intego. > > http://macintouch.com/newsrecent.shtml > > Dave suggested that Intego was not a good source for this and we > should look for something from Sophos. Thanks for the link. > > Keep smilin':=}CuZinBruce > web.mac.com/cuzinbrucie > cuzinbrucie at mac.com > > > On Jun 3, 2010, at 9:33 AM, Charles Firth wrote: > > This is actually a newer version of an older Windows trojan - and > appears to be manufactured by the same company. > http://www.sophos.com/blogs/duck/g/2010/06/02/mac-osx-monitorware/ > > And once again hammers home the importance of being careful with > what you install. This malware, like almost all OSX malware, needs > your permission and help to be installed. > > Only install software you trust - and think twice before anything > asks you to enter your username/password. > > And I gotta second the shout-out to the SEI - I have a good friend > who works there as well (and both my father and brother have worked > there in the past) - smart place. > > > On Jun 3, 2010, at 9:02 AM, nancy dolan-brady wrote: > >> Sent to me this am from good friend at the SEI ( cmu's software >> engineering institute) >> >> >>> >>> Malware: OSX/OpinionSpy >>> Risk: High >>> >>> ...a spyware application that is installed by a number of freely >>> distributed Mac applications and screen savers found on a variety of >>> websites. This spyware, OSX/OpinionSpy, performs a number of >>> malicious actions, from scanning files to recording user activity, >>> as well as sending information about this activity to remote servers >>> and opening a backdoor on infected Macs. >>> >>> OSX/OpinionSpy is installed by a number of applications and screen >>> savers that are distributed on sites such as MacUpdate, >>> VersionTracker and Softpedia. The spyware itself is not contained in >>> these applications, but is downloaded during the installation >>> process. This shows the need for an up-to-date anti-malware program >>> with a real-time scanner that can detect this malware when it is >>> downloaded by the original application's installer. >>> >>> The information provided with some of these applications contains a >>> misleading text that users must accept explaining that a "market >>> research" program is installed with them, but not all of these >>> specify this. Some of these programs are also distributed directly >>> from developers' web sites with no such warning. >>> >>> OSX/OpinionSpy performs the following actions: >>> >>> * This application, which has no interface, runs as root (it >>> requests an administrator's password on installation) with full >>> rights to access and change any file on the infected user's >>> computer. >>> * If for any reason the application stops running, it is re- >>> launched via launchd, the system-wide application and service >>> launching facility. >>> * It opens an HTTP backdoor using port 8254. >>> * It scans all accessible volumes, analyzing files, and using a >>> great deal of CPU time. It is not clear what data it copies and >>> sends to its servers, but it scans files on both local and network >>> volumes, potentially opening up large numbers of confidential files >>> on a network to intrusion. >>> * It analyzes packets entering and leaving the infected Mac over >>> a local network, analyzing data coming from and being sent to other >>> computers. One infected Mac can therefore collect a great deal of >>> data from different computers on a local network, such as in a >>> business or school. >>> * It injects code, without user intervention, into Safari, >>> Firefox and iChat, and copies personal data from these applications. >>> Code injection is a form of behavior similar to that of a virus, and >>> this malware "infects" applications when they are running to be able >>> to carry out its operations. (It infects the applications' code in >>> the Mac's memory, and does not infect the actual applications' files >>> on the user's hard disk.) >>> * It regularly sends data, in encrypted form, to a number of >>> servers using ports 80 and 443. It sends data to these servers about >>> files it has scanned locally, and also sends e-mail addresses, iChat >>> message headers and URLs, as well as other data. This data may >>> include personal data, such as user names, passwords, credit card >>> numbers, web browser bookmarks, history and much more. >>> * Given the type of data that it collects, the company behind >>> this spyware can store detailed records of users, their habits, >>> their contacts, their location and much more. >>> * The application can be upgraded automatically, with new >>> features added, with no user intervention, and without the user >>> being aware of this. It occasionally asks users for information, via >>> the display of dialogs, such as their name, or asks them to fill out >>> surveys. >>> * In some cases, computers with this spyware installed no longer >>> work correctly after a certain period of time; it is necessary to >>> force-reboot such Macs. >>> * If a user deletes the original application or screen saver that >>> installed this spyware, the spyware itself will remain installed and >>> continue to operate. >>> >>> As can be seen above, this application that purports to collect >>> information for marketing reasons does much more, going as far as >>> scanning all the files on an infected Mac. Users have no way of >>> knowing exactly what data is collected and sent to remote servers; >>> such data may include user names, passwords, credit card numbers and >>> more. The risk of this data being collected and used without users' >>> permission makes this spyware particularly dangerous to users' >>> privacy. >>> >>> The fact that this application collects data in this manner, and >>> that it opens a backdoor, makes it a very serious security threat. >>> In addition, the risk of it collecting sensitive data such as user >>> names, passwords and credit card numbers, makes this a very high- >>> risk spyware. While its distribution is limited, we warn Mac users >>> to pay careful attention to which software they download and >>> install. >>> >> >> >> _______________________________________________ >> NPMUG mailing list >> NPMUG at davesevick.com >> http://davesevick.com/mailman/listinfo/npmug > > _______________________________________________ > NPMUG mailing list > NPMUG at davesevick.com > http://davesevick.com/mailman/listinfo/npmug > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100603/d0c8ac7a/attachment-0001.htm From patrick at cranstoninc.com Thu Jun 3 09:16:51 2010 From: patrick at cranstoninc.com (Patrick Cranston) Date: Thu, 3 Jun 2010 11:16:51 -0400 Subject: [NPMUG] NPMUG Digest, Vol 54, Issue 2 In-Reply-To: <788FF4BD-F12B-4DD5-83F2-694604EC98D5@zoominternet.net> References: <788FF4BD-F12B-4DD5-83F2-694604EC98D5@zoominternet.net> Message-ID: <88F02E30-617A-4C16-95AE-37D009C40574@cranstoninc.com> The spyware is only found in a couple pieces of free software that you can download from the internet. If you have not downloaded screensaver software from 7art-screensavers or the "MishInc FLV to Mp3" program then you do not have anything to worry about. Downloading software from trusted sources like "Apple" is not a problem. Spyware has to be actively added to software installs. It doesn't just happen "accidentally". Anytime you download and install something from the internet you are taking risk. I recommend using the same safety measures I use with my kids. If a stranger on a corner offers you a piece of candy don't take it. If someone you know and trust offers you a piece of candy you may accept it. If anyone in between offers you a piece of candy and you are not sure, ask me ( or someone you trust ) before accepting it. -------------------------------------------- Here is a link on how to remove OpinionSpy if you have installed it on your computer. http://www.guardian.co.uk/technology/askjack/2010/jun/02/how-to-remove-opinionspy Short Answer: Just go to Applications [Shift-Cmd-A]. Find the PremierOpinion folder. Go inside and click Uninstall". (Alternatively, move it to the Trash and delete; it if won't delete, choose "Empty Trash" while holding the Option/Alt key. You may need an administrator password.) Patrick Cranston Cranston Consulting, Inc. 888-813-5558 www.CranstonIT.com patrick at cranstonit.com Twitter: @cranstonIT Unlimited Support for your Macs, Data Backup and Training Classes for one low price. http://www.cranstonit.com/home On Jun 3, 2010, at 11:01 AM, Edwin Borrebach wrote: > Well, all that info, repeated three or four times, tells me lots about this spyware, but how do I know if I have it? How do I get rid of it? > > When Apple asks me to okay some update to the installed software, how can I find out what they are going to install? Normally they don't tell me what it is or what they're in the process of installing. Just "Do you want IT? (no definition supplied of what IT is) and then 'It's installed." So how do I know this isn't a piece of spyware? > > Ed B > > On Jun 3, 2010, at 10:06 AM, npmug-request at davesevick.com wrote: > >> Send NPMUG mailing list submissions to >> npmug at davesevick.com >> >> To subscribe or unsubscribe via the World Wide Web, visit >> http://davesevick.com/mailman/listinfo/npmug >> or, via email, send a message with subject or body 'help' to >> npmug-request at davesevick.com >> >> You can reach the person managing the list at >> npmug-owner at davesevick.com >> >> When replying, please edit your Subject line so it is more specific >> than "Re: Contents of NPMUG digest..." >> >> >> Today's Topics: >> >> 1. Fwd: fyi: [NEW] Spyware Installed by Freely Distributed Mac >> Applications (nancy dolan-brady) >> 2. Re: Fwd: fyi: [NEW] Spyware Installed by Freely Distributed >> Mac Applications (Charles Firth) >> 3. Re: Fwd: fyi: [NEW] Spyware Installed by Freely Distributed >> Mac Applications (Mark Dalrymple) >> 4. Re: Fwd: fyi: [NEW] Spyware Installed by Freely Distributed >> Mac Applications (harmonyroute at mac.com) >> >> >> ---------------------------------------------------------------------- >> >> Message: 1 >> Date: Thu, 03 Jun 2010 09:02:23 -0400 >> From: nancy dolan-brady >> Subject: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely >> Distributed Mac Applications >> To: npmug at davesevick.com >> Message-ID: <3FBF8A9E-CA2B-4F17-A60B-981DD17E25EF at mac.com> >> Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes >> >> Sent to me this am from good friend at the SEI ( cmu's software >> engineering institute) >> >> >>> >>> Malware: OSX/OpinionSpy >>> Risk: High >>> >>> ...a spyware application that is installed by a number of freely >>> distributed Mac applications and screen savers found on a variety of >>> websites. This spyware, OSX/OpinionSpy, performs a number of >>> malicious actions, from scanning files to recording user activity, >>> as well as sending information about this activity to remote servers >>> and opening a backdoor on infected Macs. >>> >>> OSX/OpinionSpy is installed by a number of applications and screen >>> savers that are distributed on sites such as MacUpdate, >>> VersionTracker and Softpedia. The spyware itself is not contained in >>> these applications, but is downloaded during the installation >>> process. This shows the need for an up-to-date anti-malware program >>> with a real-time scanner that can detect this malware when it is >>> downloaded by the original application's installer. >>> >>> The information provided with some of these applications contains a >>> misleading text that users must accept explaining that a "market >>> research" program is installed with them, but not all of these >>> specify this. Some of these programs are also distributed directly >>> from developers' web sites with no such warning. >>> >>> OSX/OpinionSpy performs the following actions: >>> >>> * This application, which has no interface, runs as root (it >>> requests an administrator's password on installation) with full >>> rights to access and change any file on the infected user's computer. >>> * If for any reason the application stops running, it is re- >>> launched via launchd, the system-wide application and service >>> launching facility. >>> * It opens an HTTP backdoor using port 8254. >>> * It scans all accessible volumes, analyzing files, and using a >>> great deal of CPU time. It is not clear what data it copies and >>> sends to its servers, but it scans files on both local and network >>> volumes, potentially opening up large numbers of confidential files >>> on a network to intrusion. >>> * It analyzes packets entering and leaving the infected Mac over >>> a local network, analyzing data coming from and being sent to other >>> computers. One infected Mac can therefore collect a great deal of >>> data from different computers on a local network, such as in a >>> business or school. >>> * It injects code, without user intervention, into Safari, >>> Firefox and iChat, and copies personal data from these applications. >>> Code injection is a form of behavior similar to that of a virus, and >>> this malware "infects" applications when they are running to be able >>> to carry out its operations. (It infects the applications' code in >>> the Mac's memory, and does not infect the actual applications' files >>> on the user's hard disk.) >>> * It regularly sends data, in encrypted form, to a number of >>> servers using ports 80 and 443. It sends data to these servers about >>> files it has scanned locally, and also sends e-mail addresses, iChat >>> message headers and URLs, as well as other data. This data may >>> include personal data, such as user names, passwords, credit card >>> numbers, web browser bookmarks, history and much more. >>> * Given the type of data that it collects, the company behind >>> this spyware can store detailed records of users, their habits, >>> their contacts, their location and much more. >>> * The application can be upgraded automatically, with new >>> features added, with no user intervention, and without the user >>> being aware of this. It occasionally asks users for information, via >>> the display of dialogs, such as their name, or asks them to fill out >>> surveys. >>> * In some cases, computers with this spyware installed no longer >>> work correctly after a certain period of time; it is necessary to >>> force-reboot such Macs. >>> * If a user deletes the original application or screen saver that >>> installed this spyware, the spyware itself will remain installed and >>> continue to operate. >>> >>> As can be seen above, this application that purports to collect >>> information for marketing reasons does much more, going as far as >>> scanning all the files on an infected Mac. Users have no way of >>> knowing exactly what data is collected and sent to remote servers; >>> such data may include user names, passwords, credit card numbers and >>> more. The risk of this data being collected and used without users' >>> permission makes this spyware particularly dangerous to users' >>> privacy. >>> >>> The fact that this application collects data in this manner, and >>> that it opens a backdoor, makes it a very serious security threat. >>> In addition, the risk of it collecting sensitive data such as user >>> names, passwords and credit card numbers, makes this a very high- >>> risk spyware. While its distribution is limited, we warn Mac users >>> to pay careful attention to which software they download and install. >>> >> >> >> >> >> ------------------------------ >> >> Message: 2 >> Date: Thu, 3 Jun 2010 09:33:27 -0400 >> From: Charles Firth >> Subject: Re: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely >> Distributed Mac Applications >> To: nancy dolan-brady >> Cc: npmug at davesevick.com >> Message-ID: >> Content-Type: text/plain; charset="us-ascii" >> >> This is actually a newer version of an older Windows trojan - and appears to be manufactured by the same company. >> http://www.sophos.com/blogs/duck/g/2010/06/02/mac-osx-monitorware/ >> >> And once again hammers home the importance of being careful with what you install. This malware, like almost all OSX malware, needs your permission and help to be installed. >> >> Only install software you trust - and think twice before anything asks you to enter your username/password. >> >> And I gotta second the shout-out to the SEI - I have a good friend who works there as well (and both my father and brother have worked there in the past) - smart place. >> >> >> On Jun 3, 2010, at 9:02 AM, nancy dolan-brady wrote: >> >>> Sent to me this am from good friend at the SEI ( cmu's software >>> engineering institute) >>> >>> >>>> >>>> Malware: OSX/OpinionSpy >>>> Risk: High >>>> >>>> ...a spyware application that is installed by a number of freely >>>> distributed Mac applications and screen savers found on a variety of >>>> websites. This spyware, OSX/OpinionSpy, performs a number of >>>> malicious actions, from scanning files to recording user activity, >>>> as well as sending information about this activity to remote servers >>>> and opening a backdoor on infected Macs. >>>> >>>> OSX/OpinionSpy is installed by a number of applications and screen >>>> savers that are distributed on sites such as MacUpdate, >>>> VersionTracker and Softpedia. The spyware itself is not contained in >>>> these applications, but is downloaded during the installation >>>> process. This shows the need for an up-to-date anti-malware program >>>> with a real-time scanner that can detect this malware when it is >>>> downloaded by the original application's installer. >>>> >>>> The information provided with some of these applications contains a >>>> misleading text that users must accept explaining that a "market >>>> research" program is installed with them, but not all of these >>>> specify this. Some of these programs are also distributed directly >>>> from developers' web sites with no such warning. >>>> >>>> OSX/OpinionSpy performs the following actions: >>>> >>>> * This application, which has no interface, runs as root (it >>>> requests an administrator's password on installation) with full >>>> rights to access and change any file on the infected user's computer. >>>> * If for any reason the application stops running, it is re- >>>> launched via launchd, the system-wide application and service >>>> launching facility. >>>> * It opens an HTTP backdoor using port 8254. >>>> * It scans all accessible volumes, analyzing files, and using a >>>> great deal of CPU time. It is not clear what data it copies and >>>> sends to its servers, but it scans files on both local and network >>>> volumes, potentially opening up large numbers of confidential files >>>> on a network to intrusion. >>>> * It analyzes packets entering and leaving the infected Mac over >>>> a local network, analyzing data coming from and being sent to other >>>> computers. One infected Mac can therefore collect a great deal of >>>> data from different computers on a local network, such as in a >>>> business or school. >>>> * It injects code, without user intervention, into Safari, >>>> Firefox and iChat, and copies personal data from these applications. >>>> Code injection is a form of behavior similar to that of a virus, and >>>> this malware "infects" applications when they are running to be able >>>> to carry out its operations. (It infects the applications' code in >>>> the Mac's memory, and does not infect the actual applications' files >>>> on the user's hard disk.) >>>> * It regularly sends data, in encrypted form, to a number of >>>> servers using ports 80 and 443. It sends data to these servers about >>>> files it has scanned locally, and also sends e-mail addresses, iChat >>>> message headers and URLs, as well as other data. This data may >>>> include personal data, such as user names, passwords, credit card >>>> numbers, web browser bookmarks, history and much more. >>>> * Given the type of data that it collects, the company behind >>>> this spyware can store detailed records of users, their habits, >>>> their contacts, their location and much more. >>>> * The application can be upgraded automatically, with new >>>> features added, with no user intervention, and without the user >>>> being aware of this. It occasionally asks users for information, via >>>> the display of dialogs, such as their name, or asks them to fill out >>>> surveys. >>>> * In some cases, computers with this spyware installed no longer >>>> work correctly after a certain period of time; it is necessary to >>>> force-reboot such Macs. >>>> * If a user deletes the original application or screen saver that >>>> installed this spyware, the spyware itself will remain installed and >>>> continue to operate. >>>> >>>> As can be seen above, this application that purports to collect >>>> information for marketing reasons does much more, going as far as >>>> scanning all the files on an infected Mac. Users have no way of >>>> knowing exactly what data is collected and sent to remote servers; >>>> such data may include user names, passwords, credit card numbers and >>>> more. The risk of this data being collected and used without users' >>>> permission makes this spyware particularly dangerous to users' >>>> privacy. >>>> >>>> The fact that this application collects data in this manner, and >>>> that it opens a backdoor, makes it a very serious security threat. >>>> In addition, the risk of it collecting sensitive data such as user >>>> names, passwords and credit card numbers, makes this a very high- >>>> risk spyware. While its distribution is limited, we warn Mac users >>>> to pay careful attention to which software they download and install. >>>> >>> >>> >>> _______________________________________________ >>> NPMUG mailing list >>> NPMUG at davesevick.com >>> http://davesevick.com/mailman/listinfo/npmug >> >> -------------- next part -------------- >> An HTML attachment was scrubbed... >> URL: http://davesevick.com/pipermail/npmug/attachments/20100603/4297113f/attachment-0001.htm >> >> ------------------------------ >> >> Message: 3 >> Date: Thu, 3 Jun 2010 10:04:57 -0400 >> From: Mark Dalrymple >> Subject: Re: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely >> Distributed Mac Applications >> To: npmug at davesevick.com >> Message-ID: >> >> Content-Type: text/plain; charset=ISO-8859-1 >> >>>> ...a spyware application that is installed by a number of freely >>>> distributed Mac applications and screen savers >> >> It's actually a bunch of screen savers made by one company, and one >> (one) obscure conversion utility: >> >> http://www.loopinsight.com/2010/06/01/intego-releases-list-of-mac-apps-that-download-spyware-to-your-computer/ >> >> Cheers, >> ++md >> >> >> >> ------------------------------ >> >> Message: 4 >> Date: Thu, 03 Jun 2010 10:06:21 -0400 >> From: harmonyroute at mac.com >> Subject: Re: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely >> Distributed Mac Applications >> To: Charles Firth >> Cc: npmug at davesevick.com >> Message-ID: <63937EDE-6DFF-42EC-833F-281C9C63389F at mac.com> >> Content-Type: text/plain; charset="us-ascii" >> >> I noticed that this was a big deal on macintouch.com when I was at the Tuesday night MacOutfitters meeting. Macintouch was quoting Intego. >> >> http://macintouch.com/newsrecent.shtml >> >> Dave suggested that Intego was not a good source for this and we should look for something from Sophos. Thanks for the link. >> >> Keep smilin':=}CuZinBruce >> web.mac.com/cuzinbrucie >> cuzinbrucie at mac.com >> >> >> On Jun 3, 2010, at 9:33 AM, Charles Firth wrote: >> >> This is actually a newer version of an older Windows trojan - and appears to be manufactured by the same company. >> http://www.sophos.com/blogs/duck/g/2010/06/02/mac-osx-monitorware/ >> >> And once again hammers home the importance of being careful with what you install. This malware, like almost all OSX malware, needs your permission and help to be installed. >> >> Only install software you trust - and think twice before anything asks you to enter your username/password. >> >> And I gotta second the shout-out to the SEI - I have a good friend who works there as well (and both my father and brother have worked there in the past) - smart place. >> >> >> On Jun 3, 2010, at 9:02 AM, nancy dolan-brady wrote: >> >>> Sent to me this am from good friend at the SEI ( cmu's software >>> engineering institute) >>> >>> >>>> >>>> Malware: OSX/OpinionSpy >>>> Risk: High >>>> >>>> ...a spyware application that is installed by a number of freely >>>> distributed Mac applications and screen savers found on a variety of >>>> websites. This spyware, OSX/OpinionSpy, performs a number of >>>> malicious actions, from scanning files to recording user activity, >>>> as well as sending information about this activity to remote servers >>>> and opening a backdoor on infected Macs. >>>> >>>> OSX/OpinionSpy is installed by a number of applications and screen >>>> savers that are distributed on sites such as MacUpdate, >>>> VersionTracker and Softpedia. The spyware itself is not contained in >>>> these applications, but is downloaded during the installation >>>> process. This shows the need for an up-to-date anti-malware program >>>> with a real-time scanner that can detect this malware when it is >>>> downloaded by the original application's installer. >>>> >>>> The information provided with some of these applications contains a >>>> misleading text that users must accept explaining that a "market >>>> research" program is installed with them, but not all of these >>>> specify this. Some of these programs are also distributed directly >>>> from developers' web sites with no such warning. >>>> >>>> OSX/OpinionSpy performs the following actions: >>>> >>>> * This application, which has no interface, runs as root (it >>>> requests an administrator's password on installation) with full >>>> rights to access and change any file on the infected user's computer. >>>> * If for any reason the application stops running, it is re- >>>> launched via launchd, the system-wide application and service >>>> launching facility. >>>> * It opens an HTTP backdoor using port 8254. >>>> * It scans all accessible volumes, analyzing files, and using a >>>> great deal of CPU time. It is not clear what data it copies and >>>> sends to its servers, but it scans files on both local and network >>>> volumes, potentially opening up large numbers of confidential files >>>> on a network to intrusion. >>>> * It analyzes packets entering and leaving the infected Mac over >>>> a local network, analyzing data coming from and being sent to other >>>> computers. One infected Mac can therefore collect a great deal of >>>> data from different computers on a local network, such as in a >>>> business or school. >>>> * It injects code, without user intervention, into Safari, >>>> Firefox and iChat, and copies personal data from these applications. >>>> Code injection is a form of behavior similar to that of a virus, and >>>> this malware "infects" applications when they are running to be able >>>> to carry out its operations. (It infects the applications' code in >>>> the Mac's memory, and does not infect the actual applications' files >>>> on the user's hard disk.) >>>> * It regularly sends data, in encrypted form, to a number of >>>> servers using ports 80 and 443. It sends data to these servers about >>>> files it has scanned locally, and also sends e-mail addresses, iChat >>>> message headers and URLs, as well as other data. This data may >>>> include personal data, such as user names, passwords, credit card >>>> numbers, web browser bookmarks, history and much more. >>>> * Given the type of data that it collects, the company behind >>>> this spyware can store detailed records of users, their habits, >>>> their contacts, their location and much more. >>>> * The application can be upgraded automatically, with new >>>> features added, with no user intervention, and without the user >>>> being aware of this. It occasionally asks users for information, via >>>> the display of dialogs, such as their name, or asks them to fill out >>>> surveys. >>>> * In some cases, computers with this spyware installed no longer >>>> work correctly after a certain period of time; it is necessary to >>>> force-reboot such Macs. >>>> * If a user deletes the original application or screen saver that >>>> installed this spyware, the spyware itself will remain installed and >>>> continue to operate. >>>> >>>> As can be seen above, this application that purports to collect >>>> information for marketing reasons does much more, going as far as >>>> scanning all the files on an infected Mac. Users have no way of >>>> knowing exactly what data is collected and sent to remote servers; >>>> such data may include user names, passwords, credit card numbers and >>>> more. The risk of this data being collected and used without users' >>>> permission makes this spyware particularly dangerous to users' >>>> privacy. >>>> >>>> The fact that this application collects data in this manner, and >>>> that it opens a backdoor, makes it a very serious security threat. >>>> In addition, the risk of it collecting sensitive data such as user >>>> names, passwords and credit card numbers, makes this a very high- >>>> risk spyware. While its distribution is limited, we warn Mac users >>>> to pay careful attention to which software they download and install. >>>> >>> >>> >>> _______________________________________________ >>> NPMUG mailing list >>> NPMUG at davesevick.com >>> http://davesevick.com/mailman/listinfo/npmug >> >> _______________________________________________ >> NPMUG mailing list >> NPMUG at davesevick.com >> http://davesevick.com/mailman/listinfo/npmug >> >> -------------- next part -------------- >> An HTML attachment was scrubbed... >> URL: http://davesevick.com/pipermail/npmug/attachments/20100603/297b294f/attachment.htm >> >> ------------------------------ >> >> _______________________________________________ >> NPMUG mailing list >> NPMUG at davesevick.com >> http://davesevick.com/mailman/listinfo/npmug >> >> >> End of NPMUG Digest, Vol 54, Issue 2 >> ************************************ >> > > > > _______________________________________________ > NPMUG mailing list > NPMUG at davesevick.com > http://davesevick.com/mailman/listinfo/npmug -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100603/252ea7dd/attachment-0001.htm From charles at firthconsulting.com Thu Jun 3 09:46:33 2010 From: charles at firthconsulting.com (Charles Firth) Date: Thu, 3 Jun 2010 11:46:33 -0400 Subject: [NPMUG] NPMUG Digest, Vol 54, Issue 2 In-Reply-To: <788FF4BD-F12B-4DD5-83F2-694604EC98D5@zoominternet.net> References: <788FF4BD-F12B-4DD5-83F2-694604EC98D5@zoominternet.net> Message-ID: Ed, An excellent question - I've been trying to find out how to check to see if you've got it, but haven't found any hard info. One of the reasons I'm not a big fan of Intego is they do this - they release an unhelpful "scare" notice without any hard data, and I have a devil of a time tracking real data down on the reality and facts behind the scare. One of the reasons I posted the message from Sophos is because they actually showed a couple of screenshots and explained where it comes from. So it wasn't the exact same data, and a bit more focused. Once Sophos gets it examined a bit closer, I'll expect to see more technical notes from their labs (the link was just a blog post, which tends to be more informal) The original message references that it runs as a process owned by root - so it check would be easy if we only knew what that process was called. I can't find that info, and am tempted to take a Mac, infect it, and see what pops up. To see all the processes on your Mac, you can use Activity Monitor (in the Utilities folder) - to view all processes, and see what's running, and who the owner is. So in theory if I knew what it was called, I could glance at Activity Monitor and see if it's running. Right now my Activity Monitor has a ton of stuff running (as always) but nothing new, and one handy trick is to simply Google any process name you don't recognize and see what pops up. If I find out what the process is called, I'll be sure to post it. Not sure yet I want to infect a machine just to find out however, since it could always change with an update/revision of the malware. As for Apple Updates - the "Software Update" stream has never been hacked and is confirmed as being from Apple. (NOTE: unless you're on a network with a custom Software Update Server that redirects SUS requests) So those I don't worry about at all - they're "safe" (any damages are unintentional). It's when you're downloading third-party "freebie" stuff and "cool game" or "cool pix" stuff that you need to worry. Even more so if you're downloading it from P2P or less reputable sources. On Jun 3, 2010, at 11:01 AM, Edwin Borrebach wrote: > Well, all that info, repeated three or four times, tells me lots about this spyware, but how do I know if I have it? How do I get rid of it? > > When Apple asks me to okay some update to the installed software, how can I find out what they are going to install? Normally they don't tell me what it is or what they're in the process of installing. Just "Do you want IT? (no definition supplied of what IT is) and then 'It's installed." So how do I know this isn't a piece of spyware? > > Ed B > > On Jun 3, 2010, at 10:06 AM, npmug-request at davesevick.com wrote: > >> Send NPMUG mailing list submissions to >> npmug at davesevick.com >> >> To subscribe or unsubscribe via the World Wide Web, visit >> http://davesevick.com/mailman/listinfo/npmug >> or, via email, send a message with subject or body 'help' to >> npmug-request at davesevick.com >> >> You can reach the person managing the list at >> npmug-owner at davesevick.com >> >> When replying, please edit your Subject line so it is more specific >> than "Re: Contents of NPMUG digest..." >> >> >> Today's Topics: >> >> 1. Fwd: fyi: [NEW] Spyware Installed by Freely Distributed Mac >> Applications (nancy dolan-brady) >> 2. Re: Fwd: fyi: [NEW] Spyware Installed by Freely Distributed >> Mac Applications (Charles Firth) >> 3. Re: Fwd: fyi: [NEW] Spyware Installed by Freely Distributed >> Mac Applications (Mark Dalrymple) >> 4. Re: Fwd: fyi: [NEW] Spyware Installed by Freely Distributed >> Mac Applications (harmonyroute at mac.com) >> >> >> ---------------------------------------------------------------------- >> >> Message: 1 >> Date: Thu, 03 Jun 2010 09:02:23 -0400 >> From: nancy dolan-brady >> Subject: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely >> Distributed Mac Applications >> To: npmug at davesevick.com >> Message-ID: <3FBF8A9E-CA2B-4F17-A60B-981DD17E25EF at mac.com> >> Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes >> >> Sent to me this am from good friend at the SEI ( cmu's software >> engineering institute) >> >> >>> >>> Malware: OSX/OpinionSpy >>> Risk: High >>> >>> ...a spyware application that is installed by a number of freely >>> distributed Mac applications and screen savers found on a variety of >>> websites. This spyware, OSX/OpinionSpy, performs a number of >>> malicious actions, from scanning files to recording user activity, >>> as well as sending information about this activity to remote servers >>> and opening a backdoor on infected Macs. >>> >>> OSX/OpinionSpy is installed by a number of applications and screen >>> savers that are distributed on sites such as MacUpdate, >>> VersionTracker and Softpedia. The spyware itself is not contained in >>> these applications, but is downloaded during the installation >>> process. This shows the need for an up-to-date anti-malware program >>> with a real-time scanner that can detect this malware when it is >>> downloaded by the original application's installer. >>> >>> The information provided with some of these applications contains a >>> misleading text that users must accept explaining that a "market >>> research" program is installed with them, but not all of these >>> specify this. Some of these programs are also distributed directly >>> from developers' web sites with no such warning. >>> >>> OSX/OpinionSpy performs the following actions: >>> >>> * This application, which has no interface, runs as root (it >>> requests an administrator's password on installation) with full >>> rights to access and change any file on the infected user's computer. >>> * If for any reason the application stops running, it is re- >>> launched via launchd, the system-wide application and service >>> launching facility. >>> * It opens an HTTP backdoor using port 8254. >>> * It scans all accessible volumes, analyzing files, and using a >>> great deal of CPU time. It is not clear what data it copies and >>> sends to its servers, but it scans files on both local and network >>> volumes, potentially opening up large numbers of confidential files >>> on a network to intrusion. >>> * It analyzes packets entering and leaving the infected Mac over >>> a local network, analyzing data coming from and being sent to other >>> computers. One infected Mac can therefore collect a great deal of >>> data from different computers on a local network, such as in a >>> business or school. >>> * It injects code, without user intervention, into Safari, >>> Firefox and iChat, and copies personal data from these applications. >>> Code injection is a form of behavior similar to that of a virus, and >>> this malware "infects" applications when they are running to be able >>> to carry out its operations. (It infects the applications' code in >>> the Mac's memory, and does not infect the actual applications' files >>> on the user's hard disk.) >>> * It regularly sends data, in encrypted form, to a number of >>> servers using ports 80 and 443. It sends data to these servers about >>> files it has scanned locally, and also sends e-mail addresses, iChat >>> message headers and URLs, as well as other data. This data may >>> include personal data, such as user names, passwords, credit card >>> numbers, web browser bookmarks, history and much more. >>> * Given the type of data that it collects, the company behind >>> this spyware can store detailed records of users, their habits, >>> their contacts, their location and much more. >>> * The application can be upgraded automatically, with new >>> features added, with no user intervention, and without the user >>> being aware of this. It occasionally asks users for information, via >>> the display of dialogs, such as their name, or asks them to fill out >>> surveys. >>> * In some cases, computers with this spyware installed no longer >>> work correctly after a certain period of time; it is necessary to >>> force-reboot such Macs. >>> * If a user deletes the original application or screen saver that >>> installed this spyware, the spyware itself will remain installed and >>> continue to operate. >>> >>> As can be seen above, this application that purports to collect >>> information for marketing reasons does much more, going as far as >>> scanning all the files on an infected Mac. Users have no way of >>> knowing exactly what data is collected and sent to remote servers; >>> such data may include user names, passwords, credit card numbers and >>> more. The risk of this data being collected and used without users' >>> permission makes this spyware particularly dangerous to users' >>> privacy. >>> >>> The fact that this application collects data in this manner, and >>> that it opens a backdoor, makes it a very serious security threat. >>> In addition, the risk of it collecting sensitive data such as user >>> names, passwords and credit card numbers, makes this a very high- >>> risk spyware. While its distribution is limited, we warn Mac users >>> to pay careful attention to which software they download and install. >>> >> >> >> >> >> ------------------------------ >> >> Message: 2 >> Date: Thu, 3 Jun 2010 09:33:27 -0400 >> From: Charles Firth >> Subject: Re: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely >> Distributed Mac Applications >> To: nancy dolan-brady >> Cc: npmug at davesevick.com >> Message-ID: >> Content-Type: text/plain; charset="us-ascii" >> >> This is actually a newer version of an older Windows trojan - and appears to be manufactured by the same company. >> http://www.sophos.com/blogs/duck/g/2010/06/02/mac-osx-monitorware/ >> >> And once again hammers home the importance of being careful with what you install. This malware, like almost all OSX malware, needs your permission and help to be installed. >> >> Only install software you trust - and think twice before anything asks you to enter your username/password. >> >> And I gotta second the shout-out to the SEI - I have a good friend who works there as well (and both my father and brother have worked there in the past) - smart place. >> >> >> On Jun 3, 2010, at 9:02 AM, nancy dolan-brady wrote: >> >>> Sent to me this am from good friend at the SEI ( cmu's software >>> engineering institute) >>> >>> >>>> >>>> Malware: OSX/OpinionSpy >>>> Risk: High >>>> >>>> ...a spyware application that is installed by a number of freely >>>> distributed Mac applications and screen savers found on a variety of >>>> websites. This spyware, OSX/OpinionSpy, performs a number of >>>> malicious actions, from scanning files to recording user activity, >>>> as well as sending information about this activity to remote servers >>>> and opening a backdoor on infected Macs. >>>> >>>> OSX/OpinionSpy is installed by a number of applications and screen >>>> savers that are distributed on sites such as MacUpdate, >>>> VersionTracker and Softpedia. The spyware itself is not contained in >>>> these applications, but is downloaded during the installation >>>> process. This shows the need for an up-to-date anti-malware program >>>> with a real-time scanner that can detect this malware when it is >>>> downloaded by the original application's installer. >>>> >>>> The information provided with some of these applications contains a >>>> misleading text that users must accept explaining that a "market >>>> research" program is installed with them, but not all of these >>>> specify this. Some of these programs are also distributed directly >>>> from developers' web sites with no such warning. >>>> >>>> OSX/OpinionSpy performs the following actions: >>>> >>>> * This application, which has no interface, runs as root (it >>>> requests an administrator's password on installation) with full >>>> rights to access and change any file on the infected user's computer. >>>> * If for any reason the application stops running, it is re- >>>> launched via launchd, the system-wide application and service >>>> launching facility. >>>> * It opens an HTTP backdoor using port 8254. >>>> * It scans all accessible volumes, analyzing files, and using a >>>> great deal of CPU time. It is not clear what data it copies and >>>> sends to its servers, but it scans files on both local and network >>>> volumes, potentially opening up large numbers of confidential files >>>> on a network to intrusion. >>>> * It analyzes packets entering and leaving the infected Mac over >>>> a local network, analyzing data coming from and being sent to other >>>> computers. One infected Mac can therefore collect a great deal of >>>> data from different computers on a local network, such as in a >>>> business or school. >>>> * It injects code, without user intervention, into Safari, >>>> Firefox and iChat, and copies personal data from these applications. >>>> Code injection is a form of behavior similar to that of a virus, and >>>> this malware "infects" applications when they are running to be able >>>> to carry out its operations. (It infects the applications' code in >>>> the Mac's memory, and does not infect the actual applications' files >>>> on the user's hard disk.) >>>> * It regularly sends data, in encrypted form, to a number of >>>> servers using ports 80 and 443. It sends data to these servers about >>>> files it has scanned locally, and also sends e-mail addresses, iChat >>>> message headers and URLs, as well as other data. This data may >>>> include personal data, such as user names, passwords, credit card >>>> numbers, web browser bookmarks, history and much more. >>>> * Given the type of data that it collects, the company behind >>>> this spyware can store detailed records of users, their habits, >>>> their contacts, their location and much more. >>>> * The application can be upgraded automatically, with new >>>> features added, with no user intervention, and without the user >>>> being aware of this. It occasionally asks users for information, via >>>> the display of dialogs, such as their name, or asks them to fill out >>>> surveys. >>>> * In some cases, computers with this spyware installed no longer >>>> work correctly after a certain period of time; it is necessary to >>>> force-reboot such Macs. >>>> * If a user deletes the original application or screen saver that >>>> installed this spyware, the spyware itself will remain installed and >>>> continue to operate. >>>> >>>> As can be seen above, this application that purports to collect >>>> information for marketing reasons does much more, going as far as >>>> scanning all the files on an infected Mac. Users have no way of >>>> knowing exactly what data is collected and sent to remote servers; >>>> such data may include user names, passwords, credit card numbers and >>>> more. The risk of this data being collected and used without users' >>>> permission makes this spyware particularly dangerous to users' >>>> privacy. >>>> >>>> The fact that this application collects data in this manner, and >>>> that it opens a backdoor, makes it a very serious security threat. >>>> In addition, the risk of it collecting sensitive data such as user >>>> names, passwords and credit card numbers, makes this a very high- >>>> risk spyware. While its distribution is limited, we warn Mac users >>>> to pay careful attention to which software they download and install. >>>> >>> >>> >>> _______________________________________________ >>> NPMUG mailing list >>> NPMUG at davesevick.com >>> http://davesevick.com/mailman/listinfo/npmug >> >> -------------- next part -------------- >> An HTML attachment was scrubbed... >> URL: http://davesevick.com/pipermail/npmug/attachments/20100603/4297113f/attachment-0001.htm >> >> ------------------------------ >> >> Message: 3 >> Date: Thu, 3 Jun 2010 10:04:57 -0400 >> From: Mark Dalrymple >> Subject: Re: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely >> Distributed Mac Applications >> To: npmug at davesevick.com >> Message-ID: >> >> Content-Type: text/plain; charset=ISO-8859-1 >> >>>> ...a spyware application that is installed by a number of freely >>>> distributed Mac applications and screen savers >> >> It's actually a bunch of screen savers made by one company, and one >> (one) obscure conversion utility: >> >> http://www.loopinsight.com/2010/06/01/intego-releases-list-of-mac-apps-that-download-spyware-to-your-computer/ >> >> Cheers, >> ++md >> >> >> >> ------------------------------ >> >> Message: 4 >> Date: Thu, 03 Jun 2010 10:06:21 -0400 >> From: harmonyroute at mac.com >> Subject: Re: [NPMUG] Fwd: fyi: [NEW] Spyware Installed by Freely >> Distributed Mac Applications >> To: Charles Firth >> Cc: npmug at davesevick.com >> Message-ID: <63937EDE-6DFF-42EC-833F-281C9C63389F at mac.com> >> Content-Type: text/plain; charset="us-ascii" >> >> I noticed that this was a big deal on macintouch.com when I was at the Tuesday night MacOutfitters meeting. Macintouch was quoting Intego. >> >> http://macintouch.com/newsrecent.shtml >> >> Dave suggested that Intego was not a good source for this and we should look for something from Sophos. Thanks for the link. >> >> Keep smilin':=}CuZinBruce >> web.mac.com/cuzinbrucie >> cuzinbrucie at mac.com >> >> >> On Jun 3, 2010, at 9:33 AM, Charles Firth wrote: >> >> This is actually a newer version of an older Windows trojan - and appears to be manufactured by the same company. >> http://www.sophos.com/blogs/duck/g/2010/06/02/mac-osx-monitorware/ >> >> And once again hammers home the importance of being careful with what you install. This malware, like almost all OSX malware, needs your permission and help to be installed. >> >> Only install software you trust - and think twice before anything asks you to enter your username/password. >> >> And I gotta second the shout-out to the SEI - I have a good friend who works there as well (and both my father and brother have worked there in the past) - smart place. >> >> >> On Jun 3, 2010, at 9:02 AM, nancy dolan-brady wrote: >> >>> Sent to me this am from good friend at the SEI ( cmu's software >>> engineering institute) >>> >>> >>>> >>>> Malware: OSX/OpinionSpy >>>> Risk: High >>>> >>>> ...a spyware application that is installed by a number of freely >>>> distributed Mac applications and screen savers found on a variety of >>>> websites. This spyware, OSX/OpinionSpy, performs a number of >>>> malicious actions, from scanning files to recording user activity, >>>> as well as sending information about this activity to remote servers >>>> and opening a backdoor on infected Macs. >>>> >>>> OSX/OpinionSpy is installed by a number of applications and screen >>>> savers that are distributed on sites such as MacUpdate, >>>> VersionTracker and Softpedia. The spyware itself is not contained in >>>> these applications, but is downloaded during the installation >>>> process. This shows the need for an up-to-date anti-malware program >>>> with a real-time scanner that can detect this malware when it is >>>> downloaded by the original application's installer. >>>> >>>> The information provided with some of these applications contains a >>>> misleading text that users must accept explaining that a "market >>>> research" program is installed with them, but not all of these >>>> specify this. Some of these programs are also distributed directly >>>> from developers' web sites with no such warning. >>>> >>>> OSX/OpinionSpy performs the following actions: >>>> >>>> * This application, which has no interface, runs as root (it >>>> requests an administrator's password on installation) with full >>>> rights to access and change any file on the infected user's computer. >>>> * If for any reason the application stops running, it is re- >>>> launched via launchd, the system-wide application and service >>>> launching facility. >>>> * It opens an HTTP backdoor using port 8254. >>>> * It scans all accessible volumes, analyzing files, and using a >>>> great deal of CPU time. It is not clear what data it copies and >>>> sends to its servers, but it scans files on both local and network >>>> volumes, potentially opening up large numbers of confidential files >>>> on a network to intrusion. >>>> * It analyzes packets entering and leaving the infected Mac over >>>> a local network, analyzing data coming from and being sent to other >>>> computers. One infected Mac can therefore collect a great deal of >>>> data from different computers on a local network, such as in a >>>> business or school. >>>> * It injects code, without user intervention, into Safari, >>>> Firefox and iChat, and copies personal data from these applications. >>>> Code injection is a form of behavior similar to that of a virus, and >>>> this malware "infects" applications when they are running to be able >>>> to carry out its operations. (It infects the applications' code in >>>> the Mac's memory, and does not infect the actual applications' files >>>> on the user's hard disk.) >>>> * It regularly sends data, in encrypted form, to a number of >>>> servers using ports 80 and 443. It sends data to these servers about >>>> files it has scanned locally, and also sends e-mail addresses, iChat >>>> message headers and URLs, as well as other data. This data may >>>> include personal data, such as user names, passwords, credit card >>>> numbers, web browser bookmarks, history and much more. >>>> * Given the type of data that it collects, the company behind >>>> this spyware can store detailed records of users, their habits, >>>> their contacts, their location and much more. >>>> * The application can be upgraded automatically, with new >>>> features added, with no user intervention, and without the user >>>> being aware of this. It occasionally asks users for information, via >>>> the display of dialogs, such as their name, or asks them to fill out >>>> surveys. >>>> * In some cases, computers with this spyware installed no longer >>>> work correctly after a certain period of time; it is necessary to >>>> force-reboot such Macs. >>>> * If a user deletes the original application or screen saver that >>>> installed this spyware, the spyware itself will remain installed and >>>> continue to operate. >>>> >>>> As can be seen above, this application that purports to collect >>>> information for marketing reasons does much more, going as far as >>>> scanning all the files on an infected Mac. Users have no way of >>>> knowing exactly what data is collected and sent to remote servers; >>>> such data may include user names, passwords, credit card numbers and >>>> more. The risk of this data being collected and used without users' >>>> permission makes this spyware particularly dangerous to users' >>>> privacy. >>>> >>>> The fact that this application collects data in this manner, and >>>> that it opens a backdoor, makes it a very serious security threat. >>>> In addition, the risk of it collecting sensitive data such as user >>>> names, passwords and credit card numbers, makes this a very high- >>>> risk spyware. While its distribution is limited, we warn Mac users >>>> to pay careful attention to which software they download and install. >>>> >>> >>> >>> _______________________________________________ >>> NPMUG mailing list >>> NPMUG at davesevick.com >>> http://davesevick.com/mailman/listinfo/npmug >> >> _______________________________________________ >> NPMUG mailing list >> NPMUG at davesevick.com >> http://davesevick.com/mailman/listinfo/npmug >> >> -------------- next part -------------- >> An HTML attachment was scrubbed... >> URL: http://davesevick.com/pipermail/npmug/attachments/20100603/297b294f/attachment.htm >> >> ------------------------------ >> >> _______________________________________________ >> NPMUG mailing list >> NPMUG at davesevick.com >> http://davesevick.com/mailman/listinfo/npmug >> >> >> End of NPMUG Digest, Vol 54, Issue 2 >> ************************************ >> > > > > _______________________________________________ > NPMUG mailing list > NPMUG at davesevick.com > http://davesevick.com/mailman/listinfo/npmug From judyschall at mac.com Thu Jun 3 22:20:20 2010 From: judyschall at mac.com (judyschall) Date: Fri, 04 Jun 2010 00:20:20 -0400 Subject: [NPMUG] Iooking for iLife software Message-ID: <1A088B71-FD6F-461B-9CED-F6B7EA3004E5@mac.com> Looking for the latest iLife that will run on 10.4.11. I accidentally gave mine away. Version 6 or 8 -- I believe. Much appreciated, Judy Schall 412-849-3831 (cell) 412-374-3090 (work) From radonaldson at mac.com Fri Jun 4 16:34:41 2010 From: radonaldson at mac.com (Robert A. Donaldson) Date: Fri, 04 Jun 2010 18:34:41 -0400 Subject: [NPMUG] Goodwill CRC update, June 4, 2010 Message-ID: Dear Mac friends: Many thanks to Charlie Hutchens, John Hamill,Tucker Trainor, and Dave Sevick for joining me at the Goodwill Computer Recycling Center today. Will someone PLEASE buy Janet Balas lunch? Janet sent the Monroeville Public Library's 17 retired eMacs and over a dozen extra Apple mice to our operation at Goodwill via the Dave Sevick Delivery Express today. Three of the eMacs have already been refurbished and their RAM increased. Three others are on the bench awaiting their turn next Friday. All are Leopard-capable 1.0 ghz models. Marty Swartz will be tackling 11 of them with potential bad capacitor issues. If he finds that's the problem, the rest should be trickling into Goodwill's ComputerWorks store during the summer. Speaking of the ComputerWorks store, it is now open in its temporary quarters in Goodwill's retail store at 2700 East Carson St., just a block from the former location on Pittsburgh's South Side. It's a bit smaller that the previous store, but they still carry everything they used to display, you just may have to ask for it if you don't see it. When you enter the store, turn right an head for the back of the store. Counting two dual-USB G3 iBooks from Marty Swartz' home workshop, we added 15 Macs to our refurbished inventory. We de-manufactured four other Macs and two AirPort Base Stations. One iMac was re-imaged for the store. Our all-time total of refurbished Macs is now 2,519. We took in seven keyboards and almost two dozen mice (thanks to Janet Balas) along with 21 Macs, in the weekly donations. We'll have another workday next Friday, June 11, 2010. We hope to see you there! Robert A. Donaldson radonaldson at mac.com (H) 412-922-3303 (M) 412-477-9188 From dave at davesevick.com Mon Jun 7 04:18:44 2010 From: dave at davesevick.com (Dave Sevick) Date: Mon, 7 Jun 2010 06:18:44 -0400 Subject: [NPMUG] MacWorld asks what will happen at today's Steve Jobs Apple Keynote at the WWDC Message-ID: <0DBF9423-C809-4D7F-9851-23989A380801@davesevick.com> http://www.crn.com/it-channel/225402012 WWDC Preview: Will Jobs Unveil Apple?s Next Big Thing? By Damon Poeter, CRN7:12 PM EDT Fri. Jun. 04, 2010 Will Steve Jobs shock the world with another game-changing Apple(NSDQ:AAPL) product at next week?s Worldwide Developer Conference in San Francisco? That question has the tech press buzzing -- the WWDC is the biggest fixed keynote on Jobs? calendar now that Apple has pulled out of the Macworld Expo. Jobs kicks off the WWDC Monday morning at San Francisco?s Moscone Center. Here?s a roundup of some of the rumors circulating about just what the Apple CEO is planning. Enter The iPhone 4G? Pretty much everybody thinks Cupertino, Calif.-based Apple is going to launch a new version of its hugely popular smartphone at the WWDC. ?The iPhone is widely expected to be the star of the show,? writes CNET, though there ought to be a lot of iPad love as well. A clue to Apple?s iPhone 4G intentions may reside on its online store, where Apple has discontinued sales of the iPhone 3G, Bloomberg reports. ?Apple has introduced a new version of the iPhone OS -- and a new iPhone -- every summer for the last three years,? Network World reminds us. Will The New iPhone Look Like Gizmodo?s? Apple was furious several weeks ago when the tech blog Gizmodo published images and video of what it said was a prototype iPhone 4G left by an Apple engineer in a Silicon Valley beer garden. The conventional wisdom, expressed by Gartner analyst Ken Dulaney, is that the Gizmodo-obtained prototype will ?probably be more or less identical? to any new iPhone Apple unveils at the WWDC. But some wonder if Apple may pull a fast one and release a new iPhone with a significantly larger touchscreen than the roughly 3.5-inch screen on the prototype, especially with bigger touchscreen devices like the HTC HD2 and Dell Streak hitting the market. Apple could mix it up and release new iPhones of varying display sizes, Dulaney opined. Will Jobs Have An iPad-Level Reveal Up His Sleeve? Jobs probably won?t unveil anything as earth-shattering as the iPad at the WWDC, believe most Apple watchers. After all, a few years passed between the launches of each of Apple?s three great consumer electronics products of recent vintage, the iPod, iPhone and iPad, the last of which came out just a couple months ago. That will mean less pizzazz and more nuts-and-bolts focus on app development, which after all is the whole point of the WWDC, according to Apple guru Andy Ihnatko, in an interview with Appolicious.com. ?Apple can't generate the same level of excitement about the third rev of the iPhone as they could with the very first iPad, or the very first iPhone,? he said. ?We've all seen iPhones. The mystery isn't there anymore. The initial puppy-dog phase of the relationship is long over and now we're just hoping that in 2010, the iPhone will stop leaving wet towels on the bathroom floor.? Will Apple Attack The Competition? At Google (NSDQ:GOOG)?s recent I/0 developer event, the search giant was very vocal about what it perceived were deficiencies in the iPhone operating system that it claimed were strengths in its own smartphone-friendly Android OS. And Microsoft (NSDQ:MSFT) CEO Steve Ballmer just this week took some public jabs at Apple?s iPad and operating systems. But Jobs is unlikely to return fire, Ihnatko told Appolicious.com. ?I don't think Apple does anything in response to what any other company's doing, honestly. ... I think Apple would rather define themselves by making what they think are the right products,? he said. One target of Jobs' ire that may get a tongue-lashing, if recent history is any indicator -- Adobe (NSDQ:ADBE). Will Jobs Address the Foxconn Worker Suicides A string of worker suicides at Taiwanese contract components manufacturer Foxconn?s main China plant has cast a pall over many computer makers, including Apple, which do significant business with Foxconn. Jobs? recent comments that the Foxconn facility's conditions were ?pretty nice? didn?t exactly endear him to labor rights groups calling on Foxconn to clean up its act with regards to working conditions. ?[T]he WWDC would be a good opportunity for Jobs to announce more aggressive steps by Apple -- and, to be fair, by the rest of the tech industry -- to address the ongoing criticism of workplace conditions in Asian factories,?suggests PC World. Perhaps, but we?d further advise that someone at Apple other than the CEO handle those duties. His genius aside, Jobs is not particularly good at publicly conveying concern for things beyond Apple?s products and the protection of its trade secrets. And when he tries, Jobs frequently seems to get testy and put his foot in his mouth, as per the ?pretty nice? comment. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100607/16df5c67/attachment.htm From jbauerlein at yahoo.com Mon Jun 7 07:18:54 2010 From: jbauerlein at yahoo.com (John Bauerlein) Date: Mon, 7 Jun 2010 06:18:54 -0700 (PDT) Subject: [NPMUG] Full-length interview with Steve Jobs Message-ID: <47629.52198.qm@web35507.mail.mud.yahoo.com> The full-length interview of Apple CEO Steve Jobs at the D8 conference with Walt Mossberg and Kara Swisher. http://www.marketwatch.com/video/asset/d8-steve-jobs-onstage-full-length-video-2010-06-07/70F7CC1D-FFBF-4BE0-BFF1-08C300E31E11 http://www.johnbauerlein.com -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100607/949ac99a/attachment.htm From charles at firthconsulting.com Tue Jun 8 04:11:05 2010 From: charles at firthconsulting.com (Charles Firth) Date: Tue, 8 Jun 2010 06:11:05 -0400 Subject: [NPMUG] Safari 5 is out! Message-ID: <8286B7DA-B926-44E7-BCF0-6FAFEB494B6C@firthconsulting.com> Safari 5 was released yesterday - with a host of improvements: (Available via Software Update) http://www.apple.com/safari/ (Oh, and I'm assuming you all already know about the new iPhone) -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100608/b575cc58/attachment.htm From charles at firthconsulting.com Tue Jun 8 06:12:53 2010 From: charles at firthconsulting.com (Charles Firth) Date: Tue, 8 Jun 2010 08:12:53 -0400 Subject: [NPMUG] For those of you considering iPhone in business Message-ID: <7CA1B841-78B9-4F3E-A6FE-E384E93E01EF@firthconsulting.com> Something to look into for easily configuring the iPhones over-the-air: http://www.equinux.com/us/products/tarmac/overview.html -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100608/52149862/attachment.htm From ronladams7 at gmail.com Tue Jun 8 16:43:01 2010 From: ronladams7 at gmail.com (Ron_A) Date: Tue, 8 Jun 2010 16:43:01 -0600 Subject: [NPMUG] Why iPhone 4 Will Crush AT&T's Network Message-ID: <25CFB7D6-A692-48DA-AEFD-4B8A2D873D17@gmail.com> http://www.businessinsider.com/iphone-4-will-crush-atts-network-2010-6?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed:+businessinsider+(Business+Insider) ? -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100608/b4d5c850/attachment-0001.htm From ronladams7 at gmail.com Wed Jun 9 16:03:27 2010 From: ronladams7 at gmail.com (Ron_A) Date: Wed, 9 Jun 2010 16:03:27 -0600 Subject: [NPMUG] Apple's Worst Security Breach: 114, 000 iPad Owners Exposed Message-ID: <122B6D7A-16CF-429D-8190-8EBA90431A1C@gmail.com> ouch?. http://gawker.com/5559346/ ? -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100609/431f508b/attachment.htm From ronladams7 at gmail.com Wed Jun 9 22:27:31 2010 From: ronladams7 at gmail.com (Ron_A) Date: Wed, 9 Jun 2010 22:27:31 -0600 Subject: [NPMUG] Apple's Worst Security Breach: 114, 000 iPad Owners Exposed In-Reply-To: References: Message-ID: I agree?. hence the "ouch". Headline more valuable w/ Apple name rather than another bash at AT&T. Old saying: when you stand at the top of the hill, you are an easy target. On Jun 9, 2010, at 5:03 PM, Jeffrey James Bryan Carpenter wrote: > I think the headline is more appropriately: > > ?AT&T compromises personal information of Apple iPad users of AT&T?s 3G network?. > > > droopy > > > On 6/9/10 6:03 PM, "Ron_A" wrote: > >> ouch?. >> >> http://gawker.com/5559346/ >> >> >> ? >> >> _______________________________________________ >> NPMUG mailing list >> NPMUG at davesevick.com >> http://davesevick.com/mailman/listinfo/npmug -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100609/142f29f6/attachment.htm From dave at davesevick.com Thu Jun 10 09:02:23 2010 From: dave at davesevick.com (Dave Sevick) Date: Thu, 10 Jun 2010 11:02:23 -0400 Subject: [NPMUG] Seminar that is helpful for business - Monday June 14 6-9 PM Message-ID: <4A0E017C-4E8E-46AB-98AC-11393D4449C6@davesevick.com> This is an open invitation to you the readers of this listserve to attend a free seminar at the Marriott Pittsburgh City Center on Monday June 14, 2010 6-9PM Other referrals from me to the "ActionCOACH Business Coaching" company have been helpful to many of you on this list, so I want to offer this invitation to all. Brad Sugars, the founder of ActionCOACH Business Coaching is the keynote speaker at this national tour event. I will be there, and hope to see many of you. Simply go to : http://businessisboomingtour.com Click Register and enter the code KSS001 - Full disclosure to the listserve - My brother Ken Sevick is a business coach for this company. This is not Ken's hosted event ... but a national event. I use the services of "ActionCOACH Business Coaching" for my own business. I am very happy ! I do not get not referral fee or any compensation for inviting you to this event or for your attendance. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100610/2e880156/attachment.htm From ronladams7 at gmail.com Thu Jun 10 09:08:47 2010 From: ronladams7 at gmail.com (Ron_A) Date: Thu, 10 Jun 2010 09:08:47 -0600 Subject: [NPMUG] Safari 5 New Features (MacMost Now 408) Message-ID: http://www.youtube.com/watch?v=w1VnzcNTX8Y&fmt=22 ? -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100610/c05a07a4/attachment.htm From radonaldson at mac.com Fri Jun 11 16:05:57 2010 From: radonaldson at mac.com (Robert A. Donaldson) Date: Fri, 11 Jun 2010 18:05:57 -0400 Subject: [NPMUG] Goodwill CRC update, June 11, 2010 Message-ID: <556FB8F6-D131-4F80-98B1-1C7CD41E90B0@mac.com> Dear Mac friends: Many thanks to Charlie Hutchens, John Hamill, and Judy Schall for joining me at the Goodwill Computer Recycling Center today. Did anyone buy Janet Balas lunch? We're waiting to hear. Really. She deserves it.... Our volunteer work crew suffered a bit today with various family emergencies and unexpected injuries causing a lower turnout. It was so bad, in fact, John Hamill was forced to eat his own french fries at lunch. Oh, the humanity... Today we added 12 Macs to our refurbished inventory. We de-manufactured just one. Our all-time total of refurbished Macs is now 2,531. We're down to just 12 tray-load CD iMacs in storage, and we may get them done next week, leaving us to begin packing in earnest for our move two blocks down Carson St. A gentle reminder the ComputerWorks store is now open in its temporary quarters in Goodwill's retail store at 2700 East Carson St., just a block from the former location on Pittsburgh's South Side. It's a bit smaller that the previous store, but they still carry everything they used to display, you just may have to ask for it if you don't see it. When you enter the store, turn right an head for the back of the store. We took in just two keyboards and one mouse along with seven Macs, in the weekly donation bin. We'll have another workday next Friday, June 18, 2010. We hope to see you there! Robert A. Donaldson radonaldson at mac.com (H) 412-922-3303 (M) 412-477-9188 From dadditude at gmail.com Sun Jun 13 15:55:48 2010 From: dadditude at gmail.com (Dadditude) Date: Sun, 13 Jun 2010 17:55:48 -0400 Subject: [NPMUG] Moving up to iPhone 4? Get cash for your old iOS device! Message-ID: Are you looking to upgrade to an iPhone 4 on June 24 like I am? CellForCash.com will pay you for your old iOS devices: $140 cash for 16GB iPhone 3GS $240 cash for 32GB iPhone 3GS $144 cash for 16GB iPhone 3G $114 cash for 8GB iPhone 3G $104 cash for 16GB iPhone $81 cash for 8GB iPhone $63 cash for 4GB iPhone $50 cash for 8GB iPod Touch $25 cash for 16GB iPod Touch http://www.cellforcash.com/index.asp?aff=IQ43GC&ref=51870 (Please use this referral link so they will know I sent you.) Cracked screens are not a problem (thankfully, as mine cracked again just the other day). As long as it will power on and make a phone call, they will accept it. In addition, they also buy other phones - see the site for details. On a side note, everyone should know that you can dial *639# on your phone to determine if you are eligible to upgrade your phone with AT&T. You will receive a free text message with information on your eligibility. Mine said, "As a valued customer, we can offer you an upgrade with a new 2-yr commitment and waive the $18 upgrade fee." Your mileage may vary. I hope this information is useful to some of you out there. I'm sure glad I found out about it, myself. I'm selling my iPhone 3G with a cracked screen for $144, so that will pay for almost half of the 32GB iPhone 4 I plan on picking up. -- "We do not quit playing because we grow old; we grow old because we quit playing." - Oliver Wendell Holmes -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100613/b097c223/attachment.htm From charles at firthconsulting.com Sun Jun 13 18:31:47 2010 From: charles at firthconsulting.com (Charles Firth) Date: Sun, 13 Jun 2010 20:31:47 -0400 Subject: [NPMUG] Fwd: Important Information About Your iPad 3G References: <1276466408.19713@econfirmation.att-mail.com> Message-ID: Hey, look at that... I'm one of the lucky ones - thanks AT&T! Begin forwarded message: > From: "AT&T Chief Privacy Officer" > Date: June 13, 2010 8:00:09 PM EDT > To: "AT&T iPad 3G Customer" > Subject: Important Information About Your iPad 3G > > > > > > > > > > > June 13, 2010 > > Dear Valued AT&T Customer, > > Recently there was an issue that affected some of our customers with AT&T 3G service for iPad resulting in the release of their customer email addresses. I am writing to let you know that no other information was exposed and the matter has been resolved. We apologize for the incident and any inconvenience it may have caused. Rest assured, you can continue to use your AT&T 3G service on your iPad with confidence. > > Here?s some additional detail: > > On June 7 we learned that unauthorized computer ?hackers? maliciously exploited a function designed to make your iPad log-in process faster by pre-populating an AT&T authentication page with the email address you used to register your iPad for 3G service. The self-described hackers wrote software code to randomly generate numbers that mimicked serial numbers of the AT&T SIM card for iPad ? called the integrated circuit card identification (ICC-ID) ? and repeatedly queried an AT&T web address. When a number generated by the hackers matched an actual ICC-ID, the authentication page log-in screen was returned to the hackers with the email address associated with the ICC-ID already populated on the log-in screen. > > The hackers deliberately went to great efforts with a random program to extract possible ICC-IDs and capture customer email addresses. They then put together a list of these emails and distributed it for their own publicity. > > As soon as we became aware of this situation, we took swift action to prevent any further unauthorized exposure of customer email addresses. Within hours, AT&T disabled the mechanism that automatically populated the email address. Now, the authentication page log-in screen requires the user to enter both their email address and their password. > > I want to assure you that the email address and ICC-ID were the only information that was accessible. Your password, account information, the contents of your email, and any other personal information were never at risk. The hackers never had access to AT&T communications or data networks, or your iPad. AT&T 3G service for other mobile devices was not affected. > > While the attack was limited to email address and ICC-ID data, we encourage you to be alert to scams that could attempt to use this information to obtain other data or send you unwanted email. You can learn more about phishing by visiting the AT&T website. > > AT&T takes your privacy seriously and does not tolerate unauthorized access to its customers? information or company websites. We will cooperate with law enforcement in any investigation of unauthorized system access and to prosecute violators to the fullest extent of the law. > > AT&T acted quickly to protect your information ? and we promise to keep working around the clock to keep your information safe. Thank you very much for your understanding, and for being an AT&T customer. > > Sincerely, > > Dorothy Attwood > Senior Vice President, Public Policy and Chief Privacy Officer for AT&T > > Please do not reply to this email. This address is automated, unattended and cannot help with questions or requests. > > > ? 2010 AT&T Intellectual Property. All rights reserved. AT&T and the AT&T logo are trademarks of AT&T Intellectual Property. > > > -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100613/6653d2c5/attachment-0001.htm From patrick at cranstoninc.com Mon Jun 14 05:55:35 2010 From: patrick at cranstoninc.com (Patrick Cranston) Date: Mon, 14 Jun 2010 07:55:35 -0400 Subject: [NPMUG] Moving up to iPhone 4? Get cash for your old iOS device! In-Reply-To: References: Message-ID: I would be careful about using this service. If you google this company you will find numerous complaints about this being a scam. Also, if you read their terms of service they state that if they find the phone to be "defective" they will not return the phone to you. Instead they will pay you nothing and recycle the phone. That seems to be a handy out for them. Their terms of service specifically state: In order to qualify for payment all handset(s) must be in working condition. They will power-up and make a test call. They will not be crushed, water damaged or have broken LCD's. Housings should be complete and unbroken. All handset(s) shall have a valid ESN. An alternative for selling your phone would be on Ebay. The selling prices actually seem higher and you get your money before you send out your phone. Patrick Cranston Cranston Consulting, Inc. 888-813-5558 www.CranstonIT.com patrick at cranstonit.com Twitter: @cranstonIT Unlimited Support for your Macs, Data Backup and Training Classes for one low price. http://www.cranstonit.com/home On Jun 13, 2010, at 5:55 PM, Dadditude wrote: > Are you looking to upgrade to an iPhone 4 on June 24 like I am? CellForCash.com will pay you for your old iOS devices: > > $140 cash for 16GB iPhone 3GS > $240 cash for 32GB iPhone 3GS > $144 cash for 16GB iPhone 3G > $114 cash for 8GB iPhone 3G > $104 cash for 16GB iPhone > $81 cash for 8GB iPhone > $63 cash for 4GB iPhone > $50 cash for 8GB iPod Touch > $25 cash for 16GB iPod Touch > > http://www.cellforcash.com/index.asp?aff=IQ43GC&ref=51870 (Please use this referral link so they will know I sent you.) > > Cracked screens are not a problem (thankfully, as mine cracked again just the other day). As long as it will power on and make a phone call, they will accept it. In addition, they also buy other phones - see the site for details. > > On a side note, everyone should know that you can dial *639# on your phone to determine if you are eligible to upgrade your phone with AT&T. You will receive a free text message with information on your eligibility. Mine said, "As a valued customer, we can offer you an upgrade with a new 2-yr commitment and waive the $18 upgrade fee." Your mileage may vary. > > I hope this information is useful to some of you out there. I'm sure glad I found out about it, myself. I'm selling my iPhone 3G with a cracked screen for $144, so that will pay for almost half of the 32GB iPhone 4 I plan on picking up. > > -- > "We do not quit playing because we grow old; we grow old because we quit playing." - Oliver Wendell Holmes > > _______________________________________________ > NPMUG mailing list > NPMUG at davesevick.com > http://davesevick.com/mailman/listinfo/npmug -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100614/60d4343a/attachment.htm From genemyrapa at gmail.com Mon Jun 14 19:54:54 2010 From: genemyrapa at gmail.com (Gene & Myra Fozard) Date: Mon, 14 Jun 2010 21:54:54 -0400 Subject: [NPMUG] Engadget - Verizon MiFi surgically implanted in iPad to create world's first bionic tablet Message-ID: An interesting hack. Say "So long" to warranties on both the MiFi & iPad. http://www.engadget.com/2010/06/14/verizon-mifi-surgically-implanted-in-ipad-to-create-worlds-firs/ SHALOM -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100614/4821c149/attachment.htm From dave at davesevick.com Thu Jun 17 08:12:54 2010 From: dave at davesevick.com (Dave Sevick) Date: Thu, 17 Jun 2010 10:12:54 -0400 Subject: [NPMUG] User Group Discount Cards - are valid at Apple Shadyside and South Hills Village, as well as MacOufitters Cranberry and Oxford Center Message-ID: Just a reminder to all that the discount card you carry with you to the Apple Stores and/or MacOutfitters: - need to be up-to-date and not expired ( check the date ) - may be denied at any time by the staff at the stores for any reason ( rarely happens ) - does not cover iPhone, iPad and any services ( as per company rules ) - can now be renewed more efficiently online via credit card ( http://davesevick.com/user-groups.html ) So please check your expiration dates .... and thanks again for your donations to support our Apple user groups ... still running strong since 1996 ! Example: -------------- next part -------------- A non-text attachment was scrubbed... Name: Expires_example.pdf Type: application/pdf Size: 38214 bytes Desc: not available Url : http://davesevick.com/pipermail/npmug/attachments/20100617/4b4cb200/attachment-0001.pdf -------------- next part -------------- From ronladams7 at gmail.com Thu Jun 17 23:09:22 2010 From: ronladams7 at gmail.com (Ron_A) Date: Thu, 17 Jun 2010 23:09:22 -0600 Subject: [NPMUG] Adobe knocks Apple for serving up outdated Flash Player - Computerworld Message-ID: hmm?.. http://www.computerworld.com/s/article/9178140/Adobe_knocks_Apple_for_serving_up_outdated_Flash_Player -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100617/91529667/attachment.htm From patrick at cranstoninc.com Fri Jun 18 06:09:46 2010 From: patrick at cranstoninc.com (Patrick Cranston) Date: Fri, 18 Jun 2010 08:09:46 -0400 Subject: [NPMUG] MobileMe Updates Message-ID: <11F71445-9EDF-4A43-881B-F875B3D65BF9@cranstoninc.com> Apple released several updates to their MobileMe service. They completely redesigned the web interface. It's a very nice update. MobileMe users should check it out. www.me.com Patrick Cranston Cranston Consulting, Inc. 888-813-5558 www.CranstonIT.com patrick at cranstonit.com Twitter: @cranstonIT Unlimited Support for your Macs, Data Backup and Training Classes for one low price. http://www.cranstonit.com/home -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100618/9737c744/attachment.htm From dave at davesevick.com Fri Jun 18 06:35:05 2010 From: dave at davesevick.com (Dave Sevick) Date: Fri, 18 Jun 2010 08:35:05 -0400 Subject: [NPMUG] Apple Updates MobileMe Message-ID: <6E9342E3-A015-44F1-81F3-99FD8C691F3C@davesevick.com> View this message in a browser. 6/18/2010 Apple Updates MobileMe MobileMe, the easy way to keep your iPhone, iPad, iPod touch, Mac, and PC in sync, now includes: An all-new Mail application at me.com A brand-new Find My iPhone app for iPhone, iPad, and iPod touch A great new way to navigate between applications at me.com. Please direct your customers to the MobileMe News page for more information. On June 22, visit the MobileMe Resource Page on ASW for everything you need to sell it?including a product presentation, channel asset kit, sales tools, and more. -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100618/4b93230f/attachment.htm From harmonyroute at mac.com Fri Jun 18 08:40:31 2010 From: harmonyroute at mac.com (harmonyroute at mac.com) Date: Fri, 18 Jun 2010 07:40:31 -0700 (PDT) Subject: [NPMUG] MobileMe Updates In-Reply-To: <11F71445-9EDF-4A43-881B-F875B3D65BF9@cranstoninc.com> Message-ID: <7fd3654e-d414-ec91-e7d2-f7f9fd0dafa3@me.com> Yes, MobleMe wasn't working this morning when I woke up. ?An hour later it was all kinda prettier and updated. Best thing: Filters can now be applied to mail messages like I have been able to do with Yahoo for quite a while. CuZinBruce NA Tech Ed Retired/PTM Restoration web.mac.com/cuzinbrucie restoration at pa-trolley.org "Where are we going, and why are we in this handbasket? On 18 Jun, 2010,at 08:09 AM, Patrick Cranston wrote: Apple released several updates to their MobileMe service. ?They completely redesigned the web interface. ?It's a very nice update. ?MobileMe users should check it out. www.me.com Patrick Cranston Cranston Consulting, Inc. 888-813-5558 www.CranstonIT.com patrick at cranstonit.com Twitter: @cranstonIT Unlimited Support for your Macs, Data Backup and Training Classes for one low price. ?http://www.cranstonit.com/home _______________________________________________ NPMUG mailing list NPMUG at davesevickcom http://davesevick.com/mailman/listinfo/npmug -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100618/e9ded3d7/attachment.htm From charles at firthconsulting.com Fri Jun 18 20:53:56 2010 From: charles at firthconsulting.com (Charles Firth) Date: Fri, 18 Jun 2010 22:53:56 -0400 Subject: [NPMUG] Lighthearted look at the Droid ads. Message-ID: So.. we've all seen the ads for the new Droid phones - the swirling sphere of apps and cool features, which ends with a cool robot voice saying 'Droid' Ever wonder how they made that voice? Open Terminal and type: say -v Cellos droid Ta-DA! -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100618/539e062c/attachment.htm From radonaldson at mac.com Sat Jun 19 15:35:58 2010 From: radonaldson at mac.com (Robert A. Donaldson) Date: Sat, 19 Jun 2010 17:35:58 -0400 Subject: [NPMUG] Goodwill CRC update, June 18, 2010 Message-ID: <606FDF1E-44A9-4FBE-BDA2-45C42155624D@mac.com> Dear Mac friends: Many thanks to Charlie Hutchens, Rich Fitzgibbon, John Hamill, and Dave Sevick for joining me at the Goodwill Computer Recycling Center yesterday. Today, we had a vocal revelation that could define our efforts for all time, just as Ringo Starr created when he screamed "I've got blisters on my fingers!" at the conclusion of the Beatles recording Helter Skelter for the White Album. As we plied our normal routine, one of the CRC clients busy de-manufactuing a series of heretofore evil Windows PCs, unknowingly had many of the screws she had removed roll off the table and drop undetected into the loose tops of her high-top sneakers. When she stood up, she screamed "I've got screws in my shoes!" Indeed. A cry for all of us. And it rhymes, too. Today we added 14 Macs to our refurbished inventory, and de-manufactured another 13. Our all-time total of refurbished Macs is now 2,545. A gentle reminder the ComputerWorks store is now open in its temporary quarters in Goodwill's retail store at 2700 East Carson St., just a block from the former location on Pittsburgh's South Side. It's a bit smaller that the previous store, but they still carry everything they used to display, you just may have to ask for it if you don't see it. When you enter the store, turn right an head for the back of the store. We took in five keyboards and three mice along with 17 Macs in the weekly donation bin. And that's why we need USB keyboards and mice... We'll have another workday next Friday, June 25, 2010. We hope to see you there! Robert A. Donaldson radonaldson at mac.com (H) 412-922-3303 (M) 412-477-9188 From ronladams7 at gmail.com Sat Jun 19 21:43:00 2010 From: ronladams7 at gmail.com (Ron_A) Date: Sat, 19 Jun 2010 21:43:00 -0600 Subject: [NPMUG] Inside Apple's new Xcode 4 development tool Message-ID: http://www.appleinsider.com/print/10/06/19/inside_apples_new_xcode_4_development_tool.html ? -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100619/fb70f227/attachment.htm From markd at borkware.com Sat Jun 19 22:11:47 2010 From: markd at borkware.com (Mark Dalrymple) Date: Sun, 20 Jun 2010 00:11:47 -0400 Subject: [NPMUG] Inside Apple's new Xcode 4 development tool In-Reply-To: References: Message-ID: I've used it. It's nice. Lots of new toys to play with. ++md On 6/19/10, Ron_A wrote: > > http://www.appleinsider.com/print/10/06/19/inside_apples_new_xcode_4_development_tool.html > > > ? From charles at firthconsulting.com Sun Jun 20 11:28:52 2010 From: charles at firthconsulting.com (Charles Firth) Date: Sun, 20 Jun 2010 13:28:52 -0400 Subject: [NPMUG] Next SHV MUG meeting Saturday, June 26th Message-ID: <0E99012E-4033-46BF-A68A-276896907FC7@firthconsulting.com> Please join me next Saturday for the South Hills Village MUG meeting - at 10am at the Apple Store. We're going to be discussing the new iPhone and iOS4 (obviously!) with a brief look at other news and events in the Apple world. I'm expecting the store to be pretty busy, so if needed we may retreat out to the couch area outside the store. I'm hoping to have my own iPhone4 this Thursday, so I'll be ready with my review and first impressions. As always, we'll follow up the meeting with brunch at the Eat & Park around 11am. I promise it'll be fun and entertaining! See you all there. Charles -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100620/ad9437eb/attachment.htm From charles at firthconsulting.com Sun Jun 20 16:43:22 2010 From: charles at firthconsulting.com (Charles Firth) Date: Sun, 20 Jun 2010 18:43:22 -0400 Subject: [NPMUG] OSX 10.6.4 includes secret security update Message-ID: <861FBAC1-0344-40D8-886D-31700C2BBD93@firthconsulting.com> Apparently 10.6.4 also updates OSX's malware protection to detect and block a particular trojan that disguises itself as iPhoto. This was not included in the official release notes, but discovered by Sophos. http://www.sophos.com/blogs/gc/g/2010/06/18/apple-secretly-updates -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100620/3c85075a/attachment.htm From sarahbrim2 at mac.com Mon Jun 21 14:01:49 2010 From: sarahbrim2 at mac.com (Sarah Brim) Date: Mon, 21 Jun 2010 16:01:49 -0400 Subject: [NPMUG] Steve Jobs Interview Message-ID: <97054595-FC78-4E53-B2D7-450A33254F1B@mac.com> Hi Steve Jobs Admirers, I got info from InfoManagerTM User Group Network News, Views, Reviews "Steve at All Things Digital conference You are probably aware that the week before WWDC Steve Jobs among other was at All Things Digital. He was interviewed for an hour and a half. That interview is now available as a podcast on iTunes. He was interviewed by Walt Mossberg and Kara Swisher. He discussed the origin of the iPad. (Also, how it influenced the iPhone announcement.) Other topics are Adobe, AT&T, Google, iAds and gameing on the iPhone. See it and download it from iTunes by going to this link: " http://itunes.apple.com/us/podcast/steve-jobs-at-d8-conference/id377953458 -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100621/4673af85/attachment.htm From charles at firthconsulting.com Mon Jun 21 14:18:58 2010 From: charles at firthconsulting.com (Charles Firth) Date: Mon, 21 Jun 2010 16:18:58 -0400 Subject: [NPMUG] A decade of difference Message-ID: <8450B783-2679-4642-B54A-02328DA05509@firthconsulting.com> 2000 iMac Operating System - Mac OS 9.0.4 Processor - 500 MHz PowerPC G3 CPU, 128MB Memory Graphics - ATI Rage 128 Pro, 8MB of memory (8 million triangles) Screen - 786K pixels Data Transfer Speeds - 1.3-12.5 MB/s (DVD-ROM-1/100 Ethernet) Storage - 30GB Hard Drive Dimensions - 15.0 x 15.0 x 17.1 inches Weight - 34.7 pounds 2010 iPhone 4 Operating System - iOS 4.0 Processor - 1 Ghz ARM A4 CPU, 512MB Memory Graphics - PowerVR SGX 535, uses system memory (28 million triangles) Screen - 614K pixels Data Transfer Speeds - .04-20MB/s (3G-WiFi) Storage - 32GB Flash Drive Dimensions - 4.5 x 2.31 x .31 inches Weight - 4.8 ounces What will the device be like in 2020? Sent from my iPad -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100621/a70c9fdf/attachment.htm From ronladams7 at gmail.com Mon Jun 21 20:53:51 2010 From: ronladams7 at gmail.com (Ron_A) Date: Mon, 21 Jun 2010 20:53:51 -0600 Subject: [NPMUG] AnandTech.com - AT&T 3G MicroCell: A Comprehensive Exploration Message-ID: <60F001A1-B6C0-40C1-87E9-AFADA1742FD2@gmail.com> http://www.anandtech.com/print/3626 ? -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100621/1c80113c/attachment.htm From ronladams7 at gmail.com Tue Jun 22 14:58:58 2010 From: ronladams7 at gmail.com (Ron_A) Date: Tue, 22 Jun 2010 14:58:58 -0600 Subject: [NPMUG] iPad Is On Track To Be The Fastest Selling Mobile Device Ever Message-ID: <098CF7FA-27EC-448F-B1B3-8288E2BA1A4E@gmail.com> http://www.businessinsider.com/chart-of-the-day-ipad-sales-2010-6?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed:+businessinsider+(Business+Insider) ? -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100622/c97e7e60/attachment.htm From ronladams7 at gmail.com Wed Jun 23 15:31:01 2010 From: ronladams7 at gmail.com (Ron_A) Date: Wed, 23 Jun 2010 15:31:01 -0600 Subject: [NPMUG] How much Apple makes at the App Store... Message-ID: <9B19C493-EB4C-437D-8F59-EFCE4747090A@gmail.com> http://twitter.com/BoiseMacs/statuses/16878399694 ? From jbauerlein at yahoo.com Thu Jun 24 09:02:14 2010 From: jbauerlein at yahoo.com (John Bauerlein) Date: Thu, 24 Jun 2010 08:02:14 -0700 (PDT) Subject: [NPMUG] Is Apple a Victim of Sour Grapes? Message-ID: <577605.54326.qm@web35505.mail.mud.yahoo.com> Here is an gathering of views concerning Apple's current position in the technology "world." ???http://www.nytimes.com/2010/06/24/technology/24apple.html?th&emc=th http://www.johnbauerlein.com -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100624/675249b6/attachment.htm From charles at firthconsulting.com Fri Jun 25 15:07:45 2010 From: charles at firthconsulting.com (Charles Firth) Date: Fri, 25 Jun 2010 17:07:45 -0400 Subject: [NPMUG] UPDATE: Tomorrow's SHV meeting Message-ID: For anyone planning on attending the MUG meeting tomorrow: I spoke with the Apple store crew yesterday (while waiting in line for my new iPhone) and we discussed the meeting tomorrow. Based on the crazy lines yesterday (and apparently the follow up crowds today) there's concern that the store will be outrageously crowded tomorrow as people check out the new phone. I'd think it was a matter of the store over-reacting, but since I was there, I can confidently say the crowds and lines were MUCH bigger then they were for the first iPhone launch in 2007. I personally waited 8 hours for my phone (yuck). So instead of meeting in the Apple store, I'd like to try something new: Just going to E&P at 10:00 and doing the meeting around the table while we eat. Ill bring my iPad to show some links/pics (passing it around the table) and we can talk about the new phone and general Apple news. So tomorrow's meeting will be much more informal and relaxed, and we'll avoid the crowds at the store. So plan on getting to the E&P around 10 - once we're all gathered outside (or in the lobby if it's not crowded) I'll grab a table for however many show up. They have some nice big tables in the corners, so it shouldn't be a problem. From radonaldson at mac.com Fri Jun 25 16:38:04 2010 From: radonaldson at mac.com (Robert A. Donaldson) Date: Fri, 25 Jun 2010 18:38:04 -0400 Subject: [NPMUG] Goodwill CRC update, June 25, 2010 Message-ID: <113C50CA-0532-4BD0-BF03-E4472A30F344@mac.com> Dear Mac friends: Many thanks to Charlie Hutchens, Rich Fitzgibbon, John Hamill, Dave Sevick and new volunteer Aristide Niyungeko for joining me at the Goodwill Computer Recycling Center today. Aristide is a student at LaRoche College. Today was a whirl of activity as we continued to clean out Macs awaiting more attention than normal. Those tray-load CD iMacs have finally been dealt with, leaving a dozen or so PowerMac G4 Towers looking for love. Today we added nine Macs to our refurbished inventory, re-imaged 11 from older ComputerWorks store stock, and de-manufactured 15 Macs and one Apple Studio Display. Our all-time total of refurbished Macs is now 2,554. A gentle reminder the ComputerWorks store is now open in its temporary quarters in Goodwill's retail store at 2700 East Carson St., just a block from the former location on Pittsburgh's South Side. It's a bit smaller that the previous store, but they still carry everything they used to display, you just may have to ask for it if you don't see it. When you enter the store, turn right an head for the back of the store. Among the things you won't see on the shelves yet is the 16 G4 eMacs and 16 PowerMac G4 Towers in stock and waiting to hit the shelf. If you need one, please ask at the store. We took in just three keyboards (two with missing keys) and three mice along with 5 Macs in the weekly donation bin. Two of the mice came from Rich Fitzgibbon's home stock. We're still VERY short of keyboards, and even shorter of mice.... We'll have another workday next Friday, July 2, 2010. We hope to see you there! Robert A. Donaldson radonaldson at mac.com (H) 412-922-3303 (M) 412-477-9188 From dave at davesevick.com Sat Jun 26 13:42:49 2010 From: dave at davesevick.com (Dave Sevick) Date: Sat, 26 Jun 2010 15:42:49 -0400 Subject: [NPMUG] "Think Different" ... and now "Hold Different" - the antenna issue on the iPhone 4 Message-ID: <9FF2C689-AA30-4DBB-8754-AF690B9F3C6C@davesevick.com> http://arstechnica.com/apple/news/2010/06/jobs-on-iphone-4-antenna-avoid-holding-it-in-this-way.ars Jobs on iPhone 4 antenna: "avoid holding it in this way" By Chris Foresman | Last updated a day ago Earlier we reported on the widely experienced phenomenon of the iPhone 4 dropping 3G signal when gripped in the left hand. The problem is caused when the skin bridges the left and bottom antennas that also happen to be the device's stainless steel outer bezel. We asked Apple if it was aware of the issue, and on a lark copied CEO Steve Jobs since the flaw contradicted his statements about the "brilliant" antenna design during WWDC. Jobs responded to our question this evening, in his usual terse manner. "All phones have sensitive areas," Jobs wrote. "Just avoid holding it in this way." http://arstechnica.com/apple/news/2010/06/jobs-on-iphone-4-antenna-avoid-holding-it-in-this-way.ars -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100626/b34e16fb/attachment.htm From ronladams7 at gmail.com Sat Jun 26 13:49:43 2010 From: ronladams7 at gmail.com (Ron_A) Date: Sat, 26 Jun 2010 13:49:43 -0600 Subject: [NPMUG] "Think Different" ... and now "Hold Different" - the antenna issue on the iPhone 4 In-Reply-To: <9FF2C689-AA30-4DBB-8754-AF690B9F3C6C@davesevick.com> References: <9FF2C689-AA30-4DBB-8754-AF690B9F3C6C@davesevick.com> Message-ID: http://www.antennasys.com/antennasys-blog/2010/6/24/apple-iphone-4-antennas.html On Jun 26, 2010, at 1:42 PM, Dave Sevick wrote: > http://arstechnica.com/apple/news/2010/06/jobs-on-iphone-4-antenna-avoid-holding-it-in-this-way.ars > > Jobs on iPhone 4 antenna: "avoid holding it in this way" > By Chris Foresman | Last updated a day ago > Earlier we reported on the widely experienced phenomenon of the iPhone 4 dropping 3G signal when gripped in the left hand. The problem is caused when the skin bridges the left and bottom antennas that also happen to be the device's stainless steel outer bezel. We asked Apple if it was aware of the issue, and on a lark copied CEO Steve Jobs since the flaw contradicted his statements about the "brilliant" antenna design during WWDC. > > Jobs responded to our question this evening, in his usual terse manner. "All phones have sensitive areas," Jobs wrote. "Just avoid holding it in this way." > > > http://arstechnica.com/apple/news/2010/06/jobs-on-iphone-4-antenna-avoid-holding-it-in-this-way.ars > > _______________________________________________ > NPMUG mailing list > NPMUG at davesevick.com > http://davesevick.com/mailman/listinfo/npmug ? -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100626/2a254149/attachment.htm From marty.swartz at gmail.com Sat Jun 26 15:30:37 2010 From: marty.swartz at gmail.com (Marty Swartz) Date: Sat, 26 Jun 2010 17:30:37 -0400 Subject: [NPMUG] "Think Different" ... and now "Hold Different" - the antenna issue on the iPhone 4 In-Reply-To: References: <9FF2C689-AA30-4DBB-8754-AF690B9F3C6C@davesevick.com> Message-ID: So we find out that the iPhone 4 uses segments of the metal edge as antennas. And the glass on the back can in fact be scratched. (Front is made with GorillaGlass, and gnarly tough.) No surprises there, if you are so crude and inconsiderate as to actually lay the thing down flat on occasion. Perhaps the only intended positions are (a) held lightly at your ear, (b) resting solo in your flannel-lined pocket, or (c) upright in a charging dock. But, soft! *What light* on yonder store shelf breaks? It is Cupertino, and the Apple iPhone 4 Bumper is the sun. In seven different colors, no less!! Keeps your mitts off the antenna, raises the glass off yer gritty desk, allows a modicum of personal expression, and probably reduces Impact Damage should the phone suffer a gravity attack. (....And, not least, gets Apple a few dollars that could have gone to third-party case companies.) So yes, dry-palm-challenged iPhone Friends, you _CAN_ use your iPhone 4, and protect it too! - Marty (with apologies to Will S.) -- Opportunity is missed by most people because it is dressed in overalls and looks like work. -Thomas A. Edison -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100626/cd46ebc6/attachment.htm From artifax1 at verizon.net Sun Jun 27 07:50:59 2010 From: artifax1 at verizon.net (robert borkoski) Date: Sun, 27 Jun 2010 09:50:59 -0400 Subject: [NPMUG] "Think Different" ... and now "Hold Different" - the antenna issue on the iPhone 4 In-Reply-To: <9FF2C689-AA30-4DBB-8754-AF690B9F3C6C@davesevick.com> References: <9FF2C689-AA30-4DBB-8754-AF690B9F3C6C@davesevick.com> Message-ID: <7FEFAB8C-3ED9-4AB5-9B28-388577DA2BDC@verizon.net> Typical Apple response. Back in the day when I purchased the 1st production run of the Titanium iBOOK it had a battery connection issue. When ever the laptop was moved the battery connection was broken rebooting the system and loosing data. Apple's response was to "just place it on a table and don't move it". Great an immovable laptop. Apple would not replace it, I had the retailer take it back and I will never purchase another. A similar issue with a 40 GB iPOD, needless to say I no longer evangelize Apple. robert borkoski artifax1 at verizon.net On Jun 26, 2010, at 3:42 PM, Dave Sevick wrote: > http://arstechnica.com/apple/news/2010/06/jobs-on-iphone-4-antenna-avoid-holding-it-in-this-way.ars > > Jobs on iPhone 4 antenna: "avoid holding it in this way" > By Chris Foresman | Last updated a day ago > Earlier we reported on the widely experienced phenomenon of the > iPhone 4 dropping 3G signal when gripped in the left hand. The > problem is caused when the skin bridges the left and bottom antennas > that also happen to be the device's stainless steel outer bezel. We > asked Apple if it was aware of the issue, and on a lark copied CEO > Steve Jobs since the flaw contradicted his statements about the > "brilliant" antenna design during WWDC. > > Jobs responded to our question this evening, in his usual terse > manner. "All phones have sensitive areas," Jobs wrote. "Just avoid > holding it in this way." > > > http://arstechnica.com/apple/news/2010/06/jobs-on-iphone-4-antenna-avoid-holding-it-in-this-way.ars > > _______________________________________________ > NPMUG mailing list > NPMUG at davesevick.com > http://davesevick.com/mailman/listinfo/npmug -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100627/4196f951/attachment-0001.htm From macplus512 at verizon.net Sun Jun 27 11:02:31 2010 From: macplus512 at verizon.net (macplus512 at verizon.net) Date: Sun, 27 Jun 2010 13:02:31 -0400 Subject: [NPMUG] "Think Different" ... and now "Hold Different" - the antenna issue on the iPhone 4 In-Reply-To: <7FEFAB8C-3ED9-4AB5-9B28-388577DA2BDC@verizon.net> References: <9FF2C689-AA30-4DBB-8754-AF690B9F3C6C@davesevick.com> <7FEFAB8C-3ED9-4AB5-9B28-388577DA2BDC@verizon.net> Message-ID: <4D34AEDD-8263-47BC-9024-381FFB7C3366@verizon.net> I can go back even further with this. A long time ago, we had the option of setting our monitors to 16 color mode or black and white. When 256 became the lowest common denominator, several older programs stopped working correctly. Apple's response was that it was a "feature" according to the press of the mid-90s. However, it certainly looked like either laziness, cost- cutting, or lack of knowledge on Apple's part. I actually said yesterday that the iPhone 4 will go down alongside the Apple III and PowerBook 5300 in Apple history?great ideas that didn't work right. On Jun 27, 2010, at 9:50 AM, robert borkoski wrote: > Typical Apple response. > > Back in the day when I purchased the 1st production run of the > Titanium iBOOK it had a battery connection issue. > When ever the laptop was moved the battery connection was broken > rebooting the system and loosing data. Apple's response was to "just > place it on a table and don't move it". > Great an immovable laptop. Apple would not replace it, I had the > retailer take it back and I will never purchase another. > A similar issue with a 40 GB iPOD, needless to say I no longer > evangelize Apple. > > robert borkoski > artifax1 at verizon.net > > > > > On Jun 26, 2010, at 3:42 PM, Dave Sevick wrote: > >> http://arstechnica.com/apple/news/2010/06/jobs-on-iphone-4-antenna-avoid-holding-it-in-this-way.ars >> >> Jobs on iPhone 4 antenna: "avoid holding it in this way" >> By Chris Foresman | Last updated a day ago >> Earlier we reported on the widely experienced phenomenon of the >> iPhone 4 dropping 3G signal when gripped in the left hand. The >> problem is caused when the skin bridges the left and bottom >> antennas that also happen to be the device's stainless steel outer >> bezel. We asked Apple if it was aware of the issue, and on a lark >> copied CEO Steve Jobs since the flaw contradicted his statements >> about the "brilliant" antenna design during WWDC. >> >> Jobs responded to our question this evening, in his usual terse >> manner. "All phones have sensitive areas," Jobs wrote. "Just avoid >> holding it in this way." >> >> >> http://arstechnica.com/apple/news/2010/06/jobs-on-iphone-4-antenna-avoid-holding-it-in-this-way.ars >> >> _______________________________________________ >> NPMUG mailing list >> NPMUG at davesevick.com >> http://davesevick.com/mailman/listinfo/npmug > > _______________________________________________ > NPMUG mailing list > NPMUG at davesevick.com > http://davesevick.com/mailman/listinfo/npmug -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100627/009ed898/attachment.htm From wtjames at mac.com Sun Jun 27 19:41:22 2010 From: wtjames at mac.com (Bill James) Date: Sun, 27 Jun 2010 21:41:22 -0400 Subject: [NPMUG] "Think Different" ... and now "Hold Different" - the antenna issue on the iPhone 4 In-Reply-To: <4D34AEDD-8263-47BC-9024-381FFB7C3366@verizon.net> References: <9FF2C689-AA30-4DBB-8754-AF690B9F3C6C@davesevick.com> <7FEFAB8C-3ED9-4AB5-9B28-388577DA2BDC@verizon.net> <4D34AEDD-8263-47BC-9024-381FFB7C3366@verizon.net> Message-ID: So what you are saying is hNg on to your old iPhone!! William T. James Sent from my iPhone On Jun 27, 2010, at 1:02 PM, macplus512 at verizon.net wrote: > I can go back even further with this. > > A long time ago, we had the option of setting our monitors to 16 color mode or black and white. When 256 became the lowest common denominator, several older programs stopped working correctly. Apple's response was that it was a "feature" according to the press of the mid-90s. However, it certainly looked like either laziness, cost-cutting, or lack of knowledge on Apple's part. > > I actually said yesterday that the iPhone 4 will go down alongside the Apple III and PowerBook 5300 in Apple history?great ideas that didn't work right. > > > On Jun 27, 2010, at 9:50 AM, robert borkoski wrote: > >> Typical Apple response. >> >> Back in the day when I purchased the 1st production run of the Titanium iBOOK it had a battery connection issue. >> When ever the laptop was moved the battery connection was broken rebooting the system and loosing data. Apple's response was to "just place it on a table and don't move it". >> Great an immovable laptop. Apple would not replace it, I had the retailer take it back and I will never purchase another. >> A similar issue with a 40 GB iPOD, needless to say I no longer evangelize Apple. >> >> robert borkoski >> artifax1 at verizon.net >> >> >> >> >> On Jun 26, 2010, at 3:42 PM, Dave Sevick wrote: >> >>> http://arstechnica.com/apple/news/2010/06/jobs-on-iphone-4-antenna-avoid-holding-it-in-this-way.ars >>> >>> Jobs on iPhone 4 antenna: "avoid holding it in this way" >>> By Chris Foresman | Last updated a day ago >>> Earlier we reported on the widely experienced phenomenon of the iPhone 4 dropping 3G signal when gripped in the left hand. The problem is caused when the skin bridges the left and bottom antennas that also happen to be the device's stainless steel outer bezel. We asked Apple if it was aware of the issue, and on a lark copied CEO Steve Jobs since the flaw contradicted his statements about the "brilliant" antenna design during WWDC. >>> >>> Jobs responded to our question this evening, in his usual terse manner. "All phones have sensitive areas," Jobs wrote. "Just avoid holding it in this way." >>> >>> >>> http://arstechnica.com/apple/news/2010/06/jobs-on-iphone-4-antenna-avoid-holding-it-in-this-way.ars >>> >>> _______________________________________________ >>> NPMUG mailing list >>> NPMUG at davesevick.com >>> http://davesevick.com/mailman/listinfo/npmug >> >> _______________________________________________ >> NPMUG mailing list >> NPMUG at davesevick.com >> http://davesevick.com/mailman/listinfo/npmug > > _______________________________________________ > NPMUG mailing list > NPMUG at davesevick.com > http://davesevick.com/mailman/listinfo/npmug -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100627/913bc911/attachment.htm From gtas at mac.com Sun Jun 27 19:52:11 2010 From: gtas at mac.com (Glenn Sebastian) Date: Sun, 27 Jun 2010 21:52:11 -0400 Subject: [NPMUG] "Think Different" ... and now "Hold Different" - the antenna issue on the iPhone 4 In-Reply-To: References: <9FF2C689-AA30-4DBB-8754-AF690B9F3C6C@davesevick.com> <7FEFAB8C-3ED9-4AB5-9B28-388577DA2BDC@verizon.net> <4D34AEDD-8263-47BC-9024-381FFB7C3366@verizon.net> Message-ID: My Macbook Pro doesn't even have a floppy drive!!!! @&#$*@## Apple!!!! Glenn Sebastian e) gtas at mac.com On Jun 27, 2010, at 9:41 PM, Bill James wrote: > So what you are saying is hNg on to your old iPhone!! > > William T. James > > Sent from my iPhone > > On Jun 27, 2010, at 1:02 PM, macplus512 at verizon.net wrote: > >> I can go back even further with this. >> >> A long time ago, we had the option of setting our monitors to 16 color mode or black and white. When 256 became the lowest common denominator, several older programs stopped working correctly. Apple's response was that it was a "feature" according to the press of the mid-90s. However, it certainly looked like either laziness, cost-cutting, or lack of knowledge on Apple's part. >> >> I actually said yesterday that the iPhone 4 will go down alongside the Apple III and PowerBook 5300 in Apple history?great ideas that didn't work right. >> >> >> On Jun 27, 2010, at 9:50 AM, robert borkoski wrote: >> >>> Typical Apple response. >>> >>> Back in the day when I purchased the 1st production run of the Titanium iBOOK it had a battery connection issue. >>> When ever the laptop was moved the battery connection was broken rebooting the system and loosing data. Apple's response was to "just place it on a table and don't move it". >>> Great an immovable laptop. Apple would not replace it, I had the retailer take it back and I will never purchase another. >>> A similar issue with a 40 GB iPOD, needless to say I no longer evangelize Apple. >>> >>> robert borkoski >>> artifax1 at verizon.net >>> >>> >>> >>> >>> On Jun 26, 2010, at 3:42 PM, Dave Sevick wrote: >>> >>>> http://arstechnica.com/apple/news/2010/06/jobs-on-iphone-4-antenna-avoid-holding-it-in-this-way.ars >>>> >>>> Jobs on iPhone 4 antenna: "avoid holding it in this way" >>>> By Chris Foresman | Last updated a day ago >>>> Earlier we reported on the widely experienced phenomenon of the iPhone 4 dropping 3G signal when gripped in the left hand. The problem is caused when the skin bridges the left and bottom antennas that also happen to be the device's stainless steel outer bezel. We asked Apple if it was aware of the issue, and on a lark copied CEO Steve Jobs since the flaw contradicted his statements about the "brilliant" antenna design during WWDC. >>>> >>>> Jobs responded to our question this evening, in his usual terse manner. "All phones have sensitive areas," Jobs wrote. "Just avoid holding it in this way." >>>> >>>> >>>> http://arstechnica.com/apple/news/2010/06/jobs-on-iphone-4-antenna-avoid-holding-it-in-this-way.ars >>>> >>>> _______________________________________________ >>>> NPMUG mailing list >>>> NPMUG at davesevick.com >>>> http://davesevick.com/mailman/listinfo/npmug >>> >>> _______________________________________________ >>> NPMUG mailing list >>> NPMUG at davesevick.com >>> http://davesevick.com/mailman/listinfo/npmug >> >> _______________________________________________ >> NPMUG mailing list >> NPMUG at davesevick.com >> http://davesevick.com/mailman/listinfo/npmug > _______________________________________________ > NPMUG mailing list > NPMUG at davesevick.com > http://davesevick.com/mailman/listinfo/npmug -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100627/e11a6419/attachment-0001.htm From btozier at northallegheny.org Sun Jun 27 20:06:30 2010 From: btozier at northallegheny.org (Tozier, Bob) Date: Sun, 27 Jun 2010 22:06:30 -0400 Subject: [NPMUG] "Think Different" ... and now "Hold Different" - the antenna issue on the iPhone 4 In-Reply-To: Message-ID: No floppy drive is a good Thing! Robert Tozier Music Department Chairman for the North Allegheny School District Pennsylvania Keystone Technology Integrator http://www.tozier.net http://www.yosoyartista.net On 6/27/10 9:52 PM, "Glenn Sebastian" wrote: > My Macbook Pro doesn't even have a floppy drive!!!! > @&#$*@## Apple!!!! > > Glenn Sebastian > > e) gtas at mac.com > > > > On Jun 27, 2010, at 9:41 PM, Bill James wrote: > >> So what you are saying is hNg on to your old iPhone!! >> >> William T. James >> >> Sent from my iPhone >> >> On Jun 27, 2010, at 1:02 PM, macplus512 at verizon.net wrote: >> >>> I can go back even further with this. >>> >>> A long time ago, we had the option of setting our monitors to 16 color mode >>> or black and white. When 256 became the lowest common denominator, several >>> older programs stopped working correctly. Apple's response was that it was a >>> "feature" according to the press of the mid-90s. However, it certainly >>> looked like either laziness, cost-cutting, or lack of knowledge on Apple's >>> part. >>> >>> I actually said yesterday that the iPhone 4 will go down alongside the Apple >>> III and PowerBook 5300 in Apple history?great ideas that didn't work right. >>> >>> >>> On Jun 27, 2010, at 9:50 AM, robert borkoski wrote: >>> >>>> Typical Apple response. >>>> >>>> Back in the day when I purchased the 1st production run of the Titanium >>>> iBOOK it had a battery connection issue. >>>> When ever the laptop was moved the battery connection was broken rebooting >>>> the system and loosing data. Apple's response was to "just place it on a >>>> table and don't move it". >>>> Great an immovable laptop. Apple would not replace it, I had the retailer >>>> take it back and I will never purchase another. >>>> A similar issue with a 40 GB iPOD, needless to say I no longer evangelize >>>> Apple. >>>> >>>> >>>> robert borkoski >>>> artifax1 at verizon.net >>>> >>>> >>>> >>>> >>>> >>>> On Jun 26, 2010, at 3:42 PM, Dave Sevick wrote: >>>> >>>>> >>>>> >>>> holding-it-in-this-way.ars> >>>>> http://arstechnica.com/apple/news/2010/06/jobs-on-iphone-4-antenna-avoid-h >>>>> olding-it-in-this-way.ars >>>>> >>>>> Jobs on iPhone 4 antenna: "avoid holding it in this way" >>>>> By Chris Foresman | Last >>>>> updated a day ago >>>>> Earlier we reported on the widely experienced phenomenon of the iPhone 4 >>>>> dropping 3G signal when gripped in the left hand >>>>> >>>> tential-reception-issues.ars?comments=1&start=40#comments-bar> . The >>>>> problem is caused when the skin bridges the left and bottom antennas that >>>>> also happen to be the device's stainless steel outer bezel. We asked Apple >>>>> if it was aware of the issue, and on a lark copied CEO Steve Jobs since >>>>> the flaw contradicted his statements >>>>> >>>> g.ars> about the "brilliant" antenna design during WWDC. >>>>> >>>>> Jobs responded to our question this evening, in his usual terse manner. >>>>> "All phones have sensitive areas," Jobs wrote. "Just avoid holding it in >>>>> this way." >>>>> >>>>> >>>>> >>>>> >>>> holding-it-in-this-way.ars> >>>>> http://arstechnica.com/apple/news/2010/06/jobs-on-iphone-4-antenna-avoid-h >>>>> olding-it-in-this-way.ars >>>>> >>>>> _______________________________________________ >>>>> NPMUG mailing list >>>>> NPMUG at davesevick.com >>>>> >>>>> http://davesevick.com/mailman/listinfo/npmug >>>> >>>> _______________________________________________ >>>> NPMUG mailing list >>>> NPMUG at davesevick.com >>>> http://davesevick.com/mailman/listinfo/npmug >>> >>> _______________________________________________ >>> NPMUG mailing list >>> NPMUG at davesevick.com >>> http://davesevick.com/mailman/listinfo/npmug >> _______________________________________________ >> NPMUG mailing list >> NPMUG at davesevick.com >> http://davesevick.com/mailman/listinfo/npmug > > > > _______________________________________________ > NPMUG mailing list > NPMUG at davesevick.com > http://davesevick.com/mailman/listinfo/npmug -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100627/b1ec914c/attachment.htm From dave at davesevick.com Sun Jun 27 21:18:01 2010 From: dave at davesevick.com (Dave Sevick) Date: Sun, 27 Jun 2010 23:18:01 -0400 Subject: [NPMUG] "Think Different" ... and now "Hold Different" - the antenna issue on the iPhone 4 In-Reply-To: References: Message-ID: <6B484D34-4933-4EFD-BD93-119AE970F070@davesevick.com> The antennasys.com article posted by Ron Adams, now leading a MUG in Idaho, made reference to a video: http://www.youtube.com/watch?v=zvH-i7rKPJc ... that demonstrated in a repeatable way and helpful way .... that the design of the iPhone 4 can lead to an easily blocked antenna. With a normal grasp. Apple does look into industrial design "issues" and does listen to the public ... and tends to fix things. Apple is a company so VERY GOOD at customer satisfaction, that it cannot afford to pull an "Audi" moment. You may recall that Audi, an excellent car maker, made that type of response to customer complaints about their cars many years back and had a heck of a PR battle gaining public trust again. That is my fear. For what it's worth ... I am holding off on the new iPhone 4 for two reasons: 99% because it is not on Verzion ( yet ) 1% waiting for the antenna to be fixed. Dave On Jun 27, 2010, at 10:06 PM, Tozier, Bob wrote: > No floppy drive is a good Thing! > > > Robert Tozier > Music Department Chairman for the North Allegheny School District > Pennsylvania Keystone Technology Integrator > > http://www.tozier.net > http://www.yosoyartista.net > > > > > On 6/27/10 9:52 PM, "Glenn Sebastian" wrote: > >> My Macbook Pro doesn't even have a floppy drive!!!! >> @&#$*@## Apple!!!! >> >> Glenn Sebastian >> >> e) gtas at mac.com >> >> >> >> On Jun 27, 2010, at 9:41 PM, Bill James wrote: >> >>> So what you are saying is hNg on to your old iPhone!! >>> >>> William T. James >>> >>> Sent from my iPhone >>> >>> On Jun 27, 2010, at 1:02 PM, macplus512 at verizon.net wrote: >>> >>>> I can go back even further with this. >>>> >>>> A long time ago, we had the option of setting our monitors to 16 color mode or black and white. When 256 became the lowest common denominator, several older programs stopped working correctly. Apple's response was that it was a "feature" according to the press of the mid-90s. However, it certainly looked like either laziness, cost-cutting, or lack of knowledge on Apple's part. >>>> >>>> I actually said yesterday that the iPhone 4 will go down alongside the Apple III and PowerBook 5300 in Apple history?great ideas that didn't work right. >>>> >>>> >>>> On Jun 27, 2010, at 9:50 AM, robert borkoski wrote: >>>> >>>>> Typical Apple response. >>>>> >>>>> Back in the day when I purchased the 1st production run of the Titanium iBOOK it had a battery connection issue. >>>>> When ever the laptop was moved the battery connection was broken rebooting the system and loosing data. Apple's response was to "just place it on a table and don't move it". >>>>> Great an immovable laptop. Apple would not replace it, I had the retailer take it back and I will never purchase another. >>>>> A similar issue with a 40 GB iPOD, needless to say I no longer evangelize Apple. >>>>> >>>>> >>>>> robert borkoski >>>>> artifax1 at verizon.net >>>>> >>>>> >>>>> >>>>> >>>>> >>>>> On Jun 26, 2010, at 3:42 PM, Dave Sevick wrote: >>>>> >>>>>> http://arstechnica.com/apple/news/2010/06/jobs-on-iphone-4-antenna-avoid-holding-it-in-this-way.ars >>>>>> >>>>>> Jobs on iPhone 4 antenna: "avoid holding it in this way" >>>>>> By Chris Foresman | Last updated a day ago >>>>>> Earlier we reported on the widely experienced phenomenon of the iPhone 4 dropping 3G signal when gripped in the left hand . The problem is caused when the skin bridges the left and bottom antennas that also happen to be the device's stainless steel outer bezel. We asked Apple if it was aware of the issue, and on a lark copied CEO Steve Jobs since the flaw contradicted his statements about the "brilliant" antenna design during WWDC. >>>>>> >>>>>> Jobs responded to our question this evening, in his usual terse manner. "All phones have sensitive areas," Jobs wrote. "Just avoid holding it in this way." >>>>>> >>>>>> >>>>>> http://arstechnica.com/apple/news/2010/06/jobs-on-iphone-4-antenna-avoid-holding-it-in-this-way.ars >>>>>> >>>>>> _______________________________________________ >>>>>> NPMUG mailing list >>>>>> NPMUG at davesevick.com >>>>>> http://davesevick.com/mailman/listinfo/npmug >>>>> >>>>> _______________________________________________ >>>>> NPMUG mailing list >>>>> NPMUG at davesevick.com >>>>> http://davesevick.com/mailman/listinfo/npmug >>>> >>>> _______________________________________________ >>>> NPMUG mailing list >>>> NPMUG at davesevick.com >>>> http://davesevick.com/mailman/listinfo/npmug >>> _______________________________________________ >>> NPMUG mailing list >>> NPMUG at davesevick.com >>> http://davesevick.com/mailman/listinfo/npmug >> >> >> _______________________________________________ >> NPMUG mailing list >> NPMUG at davesevick.com >> http://davesevick.com/mailman/listinfo/npmug > This transmittal and/or attachments may be legally privileged or confidential. If you are not the intended recipient, you are hereby notified that you have received this transmittal in error; and you are requested to notify the sender immediately by reply or by telephone and immediately delete this message and any attachments. Any review, dissemination, retention or copying of this transmittal is strictly prohibited. Please consider the environment before printing this transmittal and any attachments. Thank you. > _______________________________________________ > NPMUG mailing list > NPMUG at davesevick.com > http://davesevick.com/mailman/listinfo/npmug -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100627/fefe408d/attachment-0001.htm From ejlist at adelphia.net Mon Jun 28 06:38:09 2010 From: ejlist at adelphia.net (Ellen List) Date: Mon, 28 Jun 2010 08:38:09 -0400 Subject: [NPMUG] looking for task-specific APP for I-pad Message-ID: Hello Friends, ...Specifically, those of you who have the spreadsheet called NUMBERS on your I-Pad. I am looking for a very task-specific APP for my new I-Pad. I'm a Cross Country coach. I want something that I can link with an I-Pad stop watch. At the start of the race I want to start the stop watch on my I-Pad. As my runners pass the 1-mile mark, touch their name in the spreadsheet and have the i-pad log their 1-mile-time ...... (same for the rest of my runners). At the 2-mile, again touch my runners name and the i-pad logs the time for the 2nd mile. At the finish line, again touch their name and have the I-pad log their finish time. I then want the spread sheet to calculate the splits for each runner for the 1st, 2nd, and 3rd mile...and re-sort the order of runners according to 1st runner over the line, 2nd runner over the line etc..... I'm looking under the "productivity" category at an APP called "Numbers." Info says that I can create "compelling" spreadsheets with easy-to-use function with "an intelligent keyboard." It also states that NUMBERS has everything to organize data, perform calculations and manage lists." I don't have "NUMBERS" on my MAC. WILL NUMBERS WORK FOR MY SPECIFIC NEEDS as a XC coach? If not NUMBERS.....then what? Is there an APP out there that will work for me? thanks, Ellen List From charles at firthconsulting.com Mon Jun 28 11:43:44 2010 From: charles at firthconsulting.com (Charles Firth) Date: Mon, 28 Jun 2010 13:43:44 -0400 Subject: [NPMUG] Apple sells 1.7 million iPhone 4s through Saturday, June 26 -- Engadget Message-ID: <14C6F76B-0A42-44CF-B173-F382449B9745@firthconsulting.com> Wow... It looks like most people aren't overly bothered by the antenna issue. I personally have had no problems with my iPhone4, and am quite happy. http://www.engadget.com/2010/06/28/apple-sells-1-7-million-iphone-4s-through-satruday-june-26/ -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100628/60858948/attachment.htm From ronladams7 at gmail.com Wed Jun 30 13:09:44 2010 From: ronladams7 at gmail.com (Ron_A) Date: Wed, 30 Jun 2010 13:09:44 -0600 Subject: [NPMUG] CHART OF THE DAY: iPhone Owners Download Twice As Many Paid Apps As Android Owners Message-ID: http://www.businessinsider.com/chart-of-the-day-apps-iphone-ipod-android-2010-6 ? -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100630/1a26aea9/attachment.htm From charles at firthconsulting.com Wed Jun 30 20:03:18 2010 From: charles at firthconsulting.com (Charles Firth) Date: Wed, 30 Jun 2010 22:03:18 -0400 Subject: [NPMUG] Microsoft Kills Kin Message-ID: <7A44F207-1D38-4A11-B512-566CC5698E34@firthconsulting.com> Not a surprise. http://gizmodo.com/5576764/microsoft-kills-kin -------------- next part -------------- An HTML attachment was scrubbed... URL: http://davesevick.com/pipermail/npmug/attachments/20100630/fc8fb4f4/attachment.htm