Symantec's Self-Serving Ravings Spread Fear, Uncertainty, Doubt about OS X Security
Dan Knight - 2005.03.22 - Tip Jar
Be afraid, Mac users. Be very afraid. Mac malware is just around the corner.
Just read the headlines: More Macs means more malware - Symantec, Symantec: Mac OS X a hacker target, Hackers loose worms on Apple.
Are the folks at Symantec performing a public service or merely spreading fear, uncertainty, and doubt?
Well, let's see what they're saying:
"The Macintosh operating system has not always been a safe haven from malicious code." True enough. There were somewhere around 70 viruses for the classic Mac OS - but there isn't a single known virus for any version of Mac OS X.
"Symantec said over the past year, security researchers had discovered at least 37 serious vulnerabilities in the Mac OS X system." And Apple has released how many security updates? And just how many of these vulnerabilities have been exploited?
"Apple Computer has become a target for new attacks...." Well, Apple certainly isn't a target for old attacks, just like the Homeland Security isn't concerned with preventing old attacks. This may sound ominous, but once you think about it, it's self-evident that new attacks are the only kind of attacks anyone need worry about.
"The appearance of a rootkit109 called Opener in October 2004 serves to illustrate the growth in vulnerability research on the OS X platform...." Opener illustrates the danger? No, it's more that Opener illustrates how robust OS X is.
Opener can't be installed by reading email or visiting a website or downloading a Trojan. Opener can only be installed by using root access, which means that the Mac user has to agree to install it - OS X won't do that without asking for your password.
Sure, if you deliberately install a piece of malware, you're asking for trouble, but I've only heard of one case where someone did that - and they had to be at the computer to do it. Unless we expect hackers to walk into your office or family room, your Mac is safe from Opener.
"The various OS X vulnerabilities allow attackers to carry out information disclosure, authentication bypass, code execution, privilege escalation and DoS attacks. The vulnerabilities don't allow anyone to do anything to your computer, they only provide the potential for attackers to do so. They still have to write the software and get it on your Mac.
Until they find a method of delivery, these vulnerabilities (most of them already patched) don't provide access - only potential access - any more than having your front door unlocked means someone is going to make unauthorized entry.
"Symantec believes that as the popularity of Apple's new platform continues to grow, so too will the number of attacks directed at it."
Here's another self-evident claim. Think about it. There have been no successful attacks on the OS X platform, so it's impossible for there to be less attacks on it. If there is any change in the status quo, it can only come from more attacks directed against OS X.
"As Apple increases its market share, it will be a legitimate target." The Mac has always been a legitimate target, and during the entire classic Mac OS era, only about 70 viruses were ever created for it. Mac OS X has been a legitimate target for several years now, yet with an installed base of over 10 million users, nobody has hit the target.
"You don't see Macintosh viruses in mass outbreaks but you do see them in the labs as proof of concepts. There aren't any outbreaks because there are simply are not enough [OS X Macs] out there. For a virus to be successful it needs a combination of an exploit and a large target audience."
For a virus to be successful, it has to exist in the wild. If these malware programmers can't even find a way to infect networked Macs in a lab, they are not going to be able to create something that will propagate over the Internet.
It has nothing to do with the number of Macs. It's the operating system, stupid.
Think About It
There are several possible reasons the Mac has been safe from malware thus far. The most common argument from those who benefit from viruses (that would be Symantec and other antivirus software companies) is that the only reason the Mac appears invulnerable is that OS X is too small a target.
To use an analogy, viruses propagate like shotgun shot, and the Mac OS is too small a barn for the world's malware shooters to hit.
Are we to believe that these crackers are a bunch of idiots? They don't have to use a shotgun approach. They could easily use a rifle to precisely target Mac users by identifying their browsers, for instance.
The problem isn't that crackers can't hit the broad side of the Macintosh bar - it's that the barn is made of stone. To use another analogy, it's like a cop wearing body armor. Or maybe it's more like shooting someone with any type of gun while they're safely enclosed in a military tank and you're on the outside.
Nobody is claiming that OS X is invulnerable, only that nobody has found a way in and exploited it. Not yet. If OS X has an Achilles' heel, I think malware authors are clever enough to identify it and take advantage of it.
Just imagine the fame of being the first to crack OS X! If anything, breaking into OS X has to be the golden chalice of cracking.
The simple fact that nobody has yet compromised OS X means that it's pretty secure. Sure, there will be more efforts made to hack in, but until once succeeds, we don't need Symantec and Trend Micro spreading fear, uncertainty, and doubt so Mac users will invest in antivirus software that has nothing to do.
The ravings of Symantec are nothing more than self-serving
propaganda aimed at spreading fear, uncertainty, and doubt to
create a market for a product that no Mac user needs at present.
Dan Knight has been using Macs since 1986, sold Macs for several years, supported them for many more years, and has been publishing Low End Mac since April 1997. If you find Dan's articles helpful, please consider making a donation to his tip jar.
Recent Mac Musings
- No High Definition iTunes Video for You, 11.19. The October 2008 MacBooks are preventing users from viewing some high-def iTunes content from being viewed on their external displays. Poor form!
- Anticipating Macworld: Nehalem, Snow Leopard, and Updated Desktops, 11.18. Intel's Core i7 CPU has to make it way into the next Mac Pro, nVidia GeForce graphics will drive the iMac and Mac mini, and 'Snow Tiger' will unleash the animal within.
- One Used Mac Can Make a Difference, 11.12. Instead of scrapping out old Macs for raw materials, what if the Mac community worked to restore them and give them away to those with no computers?
- A Brief History of Portable Computing: From Dynabook to Netbooks, 11.06. 40 years ago Alan Kay dreamt of a two pound handheld computer. Portables have made a lot of changes since 1981, but haven't yet matched the Dynabook.
- More in the Mac Musings index.
Links for the Day
- Mac of the Day: 14" iBook G3/600 MHz, Jan. 2002 - The first 14" iBook ran at a comfortable 600 MHz.
- Group of the Day: Mac OS 9 List covers Mac OS 9 as both a freestanding OS and as Classic mode in OS X.
- December 1 in LEM history: 99: Monitor dot pitch - 00: Macs for new users - Everybody wants to use iMacs - Career options - 03: Pfinder: Panther-like Finder for legacy Macs - 04: Why I use an eMac, iBook, and Power Mac - ThinkFree Office - MacLink Plus 15 - 05: PowerBook 190 still a great laptop - Eudora, the Mac's most powerful email client - 06: Core 2 'Books cooler and faster
Recent Content on Low End Mac
- The Very Best Macs: Sometimes Apple Just Nails It, Andrew J Fishkin, Best Tools for the Job, 12.01. Apple has produced lots of good Macs, a few dogs, and some 'best of breed' models that stand apart from the pack.
- Apple Could Buy Dell, and Linux Is No Threat to Mac OS X, Charles W. Moore, Miscellaneous Ramblings, 12.01. Apple has the cash to buy Dell outright, and the idea has some merit. Also, why Linux still isn't ready to displace the Mac OS.
- Will Snow Leopard Support Some PowerPC Macs?, Simon Royal, Mac Spectrum, 11.26. It just doesn't make sense that Apple would ship a new OS that won't support Macs sold less than three years ago.
- From Ubuntu to OS X, Picking the Right Mac, an Aluminum Mouse Pad, and More, Mac News Review, 11.26. Also changes in Apple culture, OWC rebates on Hitachi drives, Clone X clones OS X, and LaCie SilverKeeper updated for OS X 10.5.5.
- Apple Retail Will Break Records This Christmas, Tim Nash, Taking Back the Market, 11.26. "Despite all the economic problems, Apple Retail can look forward to another successful quarter with sales maybe breaking through $2 billion...."
- iPhone 2.2 Software Update Released and Jailbroken, Advent Calendars for Your iPhone, and More, iNews Review, 11.26. Also making Street View work on the iPod touch, BlackBerry Storm questions answered, Microsoft's forthcoming phone, eco-friendly cases, and more.
- MacBook Slowdown without Battery, DisplayLink and DRM, 256 GB SSD, MagSafe Solutions, and More, The 'Book Review, 11.26. Also Mac netbook prospects, laptop cooling table with 2 fans, solar notebook bag, hard shell cases for unibody 'Books, bargain 'Books from $500 to $2,299, and more.
- Old Macs in the New Economy, John Hatchett, Recycled Computing, 11.25. "We are the kings of making our computers last, last, and last some more."
- Virtualization Shootout: VirtualBox 2 vs. VMWare Fusion 2, Kev Kitchens, Kitchens Sync, 11.25. VirtualBox is aimed at a different audience than Fusion and Parallels. While it works well, the typical desktop user will probably prefer Fusion.
- Software to Keep Your MacBook Cool, Phil Herlihy, The Usefulness Equation, 11.25. Heat is the enemy of long hardware life. Two programs to keep your MacBook running cooler.
- Another Way to Run WeatherBug, Aspire One Runs OS X, 17" MacBook Pro Hi-res Display, and More, Charles W. Moore, Miscellaneous Ramblings, 11.25. Also finding that 'just right' notebook computer, car, or truck.
- More links in our archive.
Recent Deals
- Best iPod nano Deals, 12.01. Refurb 3G/4 GB, $79; new, $105; refurb 8 GB, $99; new, $115; 3G/8 GB, $134; 16 GB, $174. Prices include ground shipping.
- Best 12" PowerBook G4 Deals, 12.01. Used 1.5 GHz SuperDrive, $481/C$599 plus shipping.
- Best Mac Pro Deals, 12.01. Used 3.0 GHz 4-core, $2,102; new 2.66 GHz 4-core, $1,949 after rebate; 2.8 4-core, $2,099 a/r; 8-core, $2,515 a/r; 3.0 $3,320 a/r; 3.2, $4,099 a/r.
- Best MacBook Deals, 11.26. Used 1.83 GHz, $595; 2.0 SD, $660; refurb 2.1 GHz, $949; 2.4, $999; black, $1,099; new 2.1, $869 after rebate; 2.4, $1,150 a/r; black, $1,194 a/r; more.
- Best iPod touch Deals, 11.26. Used 1G/8 GB, $160; refurb, $179; new, $198; used 16, $200; refurb, $219; refurb 32, $319; new, $340; 2G/8 GB, $219; 16, $289; 32, $379.
- Best Power Mac G5 Deals, 11.26. Used 1.6 GHz single, $450; 1.8, $499; dual, $600, 2.0, $800; 2.3, $816; dual-core, $1,000; 2.5 dual, $1,000; 2.7, $1,050; 2.5 Quad, $1,400.
- Best MacBook Deals, 11.26. Used 1.83 GHz, $595; 2.0 SD, $660; refurb 2.1 GHz, $949; 2.4, $999; black, $1,099; new 2.1, $869 after rebate; 2.4, $1,150 a/r; black, $1,194 a/r; more.
- Best Mac mini Deals, 11.25. Used 1.42 GHz G4 Combo, $429; 1.66 GHz Core Duo, $449; 1.83, SuperDrive $629; new 1.83 Core 2 Combo, $570 shipped; 2.0 SD, $760 shipped.
- Best 15" PowerBook G4 Deals, 11.25. Used 1.67 GHz SuperDrive, $539; hi-res, $800. Shipping additional.
- Best Time Capsule and AirPort Deals, 11.25. Refurb 500 GB Time Capsule, $249; new, $281; refurb 1 TB, $419; new, $462; AirPort Extreme Base Station, $159; Express, $60.
- More deals in our archive.
About LEM | Support | Usage | Privacy | Contacts
Have a question?
Ask an expert!
Navigation
Used Mac Dealers
Apple History
Best Used Macs
Video Cards
Email Lists
InfoMac's Low
End Mac Forum
Favorite Sites
MacSurfer
MacMinute
MacInTouch
MyAppleMenu
InfoMac
Macs Only!
The Mac Observer
Accelerate Your Mac
RetroMacCast
PB Central
MacWindows
The Vintage Mac
Museum
DealMac
DealsOnTheWeb
Mac2Sell
ramseeker
Mac Driver Museum
JAG's House
System
6 Heaven
System 7 Today
the pickle's Low-End
Mac FAQ
Abandonware
Petition
Mac vs. PC Info
Affiliates
The Apple
Store
Mac
Connection
MacMall
TechRestore
MacResQ
ExperCom
Crucial
Memory
batteries.com
Advertise
