Apple Admits Its Macs Have a Malware Problem
April 12, 2012 12:07 PM
comment(s) - last by
(Source: Mashuga Mom)
Flashback botnet is no fun for the infected
Apple has finally owned up to the fact that many of its users' machines have been
afflicted by crippling malware
. And it promises that it's working on a fix. But experts wonder if the company is simply acting in a reactionary fashion or is ready to finally get serious about protecting its users.
I. Trojans are Increasingly a Problem for Mac Users
In the 1990s, hackers enjoyed a virtual wild west of unpatched exploitable software. But as the new decade rolled around companies like Microsoft Corp. (
) stepped up their security. As a result it's become harder for malware to install on Windows computers without some sort of user action. Hackers have circumvented this by creating programs that trick the user into approving the installation via exploiting trust (hijacked sites, systems) or user ignorance (clicking spam email links). The approach has become tremendously successful and today Trojan-type malware are responsible for a large percentage of the Windows botnets.
Apple, Inc. (
) long avoided such woes, thanks to its small market share and specialized OS code, which precluded stock PC malware from running on a Mac. But the company's base security model is in theory no more secure, and -- perhaps driven by
rising market share
-- of late the company has grappled with
serious trojan issues
Macs are increasingly the target of Trojans. Malware writers love Apple's
sluggish pace of patching. [Image Source: Venitism]
The latest fire facing the Mac community is "Flashback", also knows as "Flashfake". This Trojan has evolved over multiple variants to its current form, which masquerades as an install Java applet on hijacked websites. Customers who approve it unwittingly run a piece of code that exploits a flaw in Oracle Corp.'s (
) Java platform in order to remove OS X's limited anti-malware capabilities and install back-door control programs.
The affected machines are turned into bots, which the attackers can use to spew spam or commit other foul acts. Kaspersky Labs' Igor Soumenkov
in an interview that at its peak, Flashback had infected 600,000 machines, including roughly 300,000 in the U.S. Approximately 98 percent of those machines were Macs.
II. Is Apple to Blame?
Apple has been under heavy fire from the security community. First, it was the company's lackadaisical approach to patching that gave Flashback the opportunity to take hold.
The majority of infections occurred after Oracle had already patched the Java vulnerability. The code would thus have failed under most Windows machines. However, Apple insists on
redistributing all third-party updates
via its own repackaging scheme. And under this system it often delivers updates at a sluggish rate, often months behind their release to the more open, more used Windows platform. As a result it's often
far behind on security patches
of third-party platforms -- something malicious hackers are increasingly realizes means open season on Macs.
Over 600,000 Mac users were infected, thanks to Apple's sluggish patching.
[Image Source: Macenstein]
Apple is quick to respond by
attacking third-party platforms
like Adobe Systems Inc.'s (
) Flash, which it
no longer installs on Macs
, in part for being too "insecure".
At the same time Apple practices a
policy of blatant hostility towards security professionals
who are trying to help it.
But a promising sign is that Apple, after delivering patches to close the Java flaws exploited by Flashback, has released a Knowledge Base post warning users that Macs are indeed afflicted by this piece of malware.
This is one of the first times the company has officially acknowledged malware issues. A
previous Trojan -- MacDefender
--was estimated to have infected as many as one in twenty Macs at its peak. While Apple
quietly battled it
with patches and tools, the company instructed technicians in a leaked memo
to lie to customers
and not inform them of infections.
III. OS X is at a Crossroads in Terms of Security
The new issues put the company's image in an awkward position, given that Apple has long promoted OS X as a platform that is largely
immune to the kinds of malware
that have long afflicted Windows machines. Of course some OS X users are savvy enough to realize the reality -- no platform, certainly no consumer platform, is ever fully secure. However, many less tech-savvy Mac users do truly believe that their machines are immune to malware. The disillusionment when they learn the truth may be a blow to Apple.
The company is preparing a tool that will detect and remove various known variants of Flashback. In the meantime its patching seems to be working -- infections have dropped to 270,000 machines, according to Symantec Corp. (
While it's clear that Flashback will be beaten back by the Cupertino company, the compelling question is whether Apple's unusual public admission to having malware is a prelude to adopting a more proactive approach: patching faster, or possibly even allowing third party patches. For now, customers can only judge the company's security stance by its track record -- a track record that speaks to a generally negligent sluggish pace of prevention interspersed with reactionary spurts of action.
Apple is at a crossroads as to whether to decide to become more responsible about security, or allow its customers to be abused. [Image Source: Letters to Jen]
Today hackers appear to be finding Macs the easiest platform to hack.
Apple computers were hacked the quickest
at recent "hack-to-own" style competitions.
With Microsoft adopting a more proactive approach and with hackers increasingly attracted to Apple's affluent customer base, if Apple sticks to its reactionary approach, customers may soon find their Macs going from being the most secure platform, to being the least secure. OS X is at a critical crossroads -- the next move is Apple's to make.
This article is over a month old, voting and posting comments is disabled
It must be a cold day in Hell
4/12/2012 1:33:50 PM
Malware and the rest of the bad crap is the downside of the freedom we have on-line.
Since Apple is one of the big companies trying to own all it's user I think the Mac's have been suffering with malware for a long time. One of the programs is iTunes.
RE: It must be a cold day in Hell
4/12/2012 6:24:50 PM
iTunes is not malware, it's just a horribly bloated and coded piece of software.
Under your definition, Windows UAC is malware. Too easy.
Computer security is inversely proportional to convenience. Most people, you included, would not use a computer requiring the excessively large amount of security checks and clearances needed to, say, access a top-secret nuclear missile bunker. You can have the most secure, locked-down OS in the world and it won't matter, because people won't use it as it's too complicated.
most computer users are stupid
- a tiny bit of social engineering and it's game over for both their personal and computer security. Appletards, Windowbots, they're the same thing, too many idiots on both sides of the fence and they're the reason why malware continues to thrive. Those of us that have our comments modded up are the smart ones, and we're the minority.
"There is a single light of science, and to brighten it anywhere is to brighten it everywhere." -- Isaac Asimov
Malware Authors Get Boost from Apple's Sluggish Updates, Infect 600K Macs
April 6, 2012, 8:40 AM
Developer Demonstrates Serious Security Breach in iOS, Apple Bans His Account
November 8, 2011, 9:06 AM
"Devil Robber" Trojan Infects Macs, Leeches Their GPUs for Bitcoin Profit
November 1, 2011, 10:59 AM
Analysts: Apple Now Has More Than 10 Percent of the U.S. PC Market
July 14, 2011, 1:52 PM
Apple Tries to Roll Out Trojan Protection, Only to See New Variety Pop Up
June 2, 2011, 9:00 AM
Netflix Announces 7-to-1 Stock Split, Eyes Explosive Overseas Growth
June 23, 2015, 8:18 PM
Sources: Hack on Fed. Database Lost 4.1M Social Security Numbers, Personal Info
June 11, 2015, 9:11 PM
The Big One: Chinese Hackers Steal Records of 4 Million U.S. Gov. Employees
June 4, 2015, 8:13 PM
Tutorial: Here's How to Force YouTube or Vimeo VIdeos to Embed as HTML5
June 3, 2015, 10:14 PM
Google Finally Fixes Maps Bug That Was Giving Racist, Profane Results
May 21, 2015, 1:43 PM
The Pirate Bay Loses Its Iconic Swedish Dot SE Domains
May 20, 2015, 6:31 PM
Most Popular Articles
SanDisk's 200GB microSDXC Card Turns Smartphones Into Enviable PMPs
June 26, 2015, 2:02 PM
Windows XP, Vista Users Can Get Free Windows 10 Upgrade Thanks to Loophole
June 23, 2015, 2:23 PM
U.S. Navy Spends $9M USD to Cling to Windows XP, Office 2003
June 24, 2015, 2:03 PM
SpaceX Falcon 9's Seventh Supply Mission to ISS Ends w/ Fiery Stage 1 Explosion
June 28, 2015, 1:10 PM
Under the Hood: Digging Into Sony's New CUH-1200 PS4, 1 TB Ultimate Player Ed.
June 23, 2015, 10:33 AM
Latest Blog Posts
Sceptre Airs 27", 120 Hz. 1080p Monitor/HDTV w/ 5 ms Response Time for $220
Dec 3, 2014, 10:32 PM
Costco Gives Employees Thanksgiving Off; Wal-Mart Leads "Black Thursday" Charge
Oct 29, 2014, 9:57 PM
"Bear Selfies" Fad Could Turn Deadly, Warn Nevada Wildlife Officials
Oct 28, 2014, 12:00 PM
The Surface Mini That Was Never Released Gets "Hands On" Treatment
Sep 26, 2014, 8:22 AM
ISIS Imposes Ban on Teaching Evolution in Iraq
Sep 17, 2014, 5:22 PM
More Blog Posts
Copyright 2015 DailyTech LLC. -
Terms, Conditions & Privacy Information