Apple to Break Its Vow of Silence on Security Issues at Black Hat
July 25, 2012 7:37 AM
comment(s) - last by
Alcoholics Anonymous says the first step to recover is to admit you have a problem
's sister conference
already scored an
intriguing high-profile keynote speaker
General Keith Alexander
, head of the
U.S. National Security Agency
U.S. Cyber Command
. Now Black Hat has an equally surprising keynote of its own from the corporate sector -- a top executive from Apple, Inc. (
will be given by Dallas De Atley, manager of Apple’s platform security team -- a team responsible for security both Apple's iOS (iPhone, iPad, iPod) and OS X operating systems.
For years, Apple enjoyed one of the positives of having a small market share and proprietary operating system -- general disinterest via cybercriminals. But rather than take this safety for what it was -- safety via obscurity -- Apple instead told customers that its machines were never hacked because their security was lightyears ahead of Microsoft Corp.'s (
Security researchers called this
a baldfaced lie
. In fact, some say Apple is
10 years behind Microsoft
. Indeed, while Apple security researchers have long reportedly lurked incognito at DEF CON and Black Hat, they did not venture to give a talk until 2008 -- ten years after Microsoft's first (1998) presentation at the conventions.
Apple's first Black Hat talk comes after marketing scuttled a 2008 keynote.
[Image Source: Cult of Mac]
And Apple's late arrival was quickly scuttled by Apple's marketing folks who feared a public relations disaster. After all, they had been pitching for years that Macs were
"magical" and immune to "PC viruses"
Lately, however, OS X has been besieged by malicious Trojans -- first with the fake anti-virus program MacDefender, then Flashback, a fake Flash player update that
infected 600,000 Macs
. To make matters worse, a memo leaked from Apple public relations to store employees suggesting they
lie to customers
about the existence of MacDefender.
Macs are increasingly the target of Trojans. Malware writers love Apple's
sluggish pace of patching. [Image Source: Venitism]
The issue for Apple was that with
10 percent of the market
and a demographic of relatively affluent users, Apple was starting to become
a worthwhile target
. And it
struggled with this new breed of OS X-centric malware
Even Apple's marketing team was
forced to reword
their marketing amid a rash of infections, perhaps fearing user lawsuits.
Apple's reappearance at Black Hat is significant as it represents Apple marketing's silent acknowledgement that keeping customers in the dark about security threats is no longer a viable option. With mass media frequently seizing on reports of new malware or security holes in iOS and OS X, Apple is back at Black Hat, much as Microsoft was in 1998 -- looking to turn over a new leaf.
Hopefully this year they won't get cold feet.
This article is over a month old, voting and posting comments is disabled
RE: Welcome to the show...
7/25/2012 12:54:39 PM
If I was going to call Unix anything, I would call it a set of interoperability rules, but that's just semantics. My point wasn't that Apple is the same OS as, say RHEL or BSD, or that Windows is completely based on MS's work. It's that OSX is closely related to a number of similar OS's and improvements in those systems can often be directly integrated into other Unix OS's, and yes I do understand that Windows has some components that came from other projects, too. Generally speaking, though, MS avoids that when they can.
MS isn't going it alone.
I was speaking from an OS development perspective. Improvements in Linux or BSD or a number of other systems can make their way to OSX more easily than they could to Windows. I wasn't meaning that MS never goes to security conferences(???).
MS never had a choice. etc.
I think you're misunderstanding me. To clarify: I was praising the improvements and current state of MS's OS level security, while also noting that Apple - despite starting with an OS designed for secure, multi-user access - has kind of done a poor job on the security side of things.
“And I don't know why [Apple is] acting like it’s superior. I don't even get it. What are they trying to say?” -- Bill Gates on the Mac ads
NSA Chief to Pitch "Common Core Values" to Hackers at DEFCON 20
July 24, 2012, 3:25 PM
Apple Scales Back Security Ad Claims After Rash of Mac Malware
June 25, 2012, 4:33 PM
Apple Takes 3 Months But Finally Stops Printing Passwords in Plaintext
May 9, 2012, 5:20 PM
Kaspersky Labs: Apple's Security 10 Years Behind Microsoft
April 26, 2012, 7:39 AM
Malware Authors Get Boost from Apple's Sluggish Updates, Infect 600K Macs
April 6, 2012, 8:40 AM
Quick Note: Whoops, Microsoft Pushed Unwanted Windows 10 to Some Users
October 15, 2015, 9:04 PM
Quick Note: Windows 10 Insider Preview Build 10565 Fixes Boot Camp 6.0 Issues
October 13, 2015, 11:39 AM
Microsoft's HD-500 ("Display Dock"), the Magic Sauce Behind Continuum
October 6, 2015, 5:30 PM
Quick Note: Windows 10 Hits 110 Million Devices, VMs
October 6, 2015, 4:30 PM
Windows 10 on Raspberry Pi, IoT Devices Sees Developer Debut
August 12, 2015, 2:41 PM
Sony Issues Bizzare "Do Not Update" Edict to VAIO PC Owners
August 11, 2015, 9:42 PM
Most Popular Articles
Free Windows 10 offer ends July 29th, 2016: 10 Reasons to Upgrade Immediately
July 22, 2016, 9:19 PM
Smart Security Cameras: 5 Good Choices For Any Budget
July 25, 2016, 7:13 PM
2017 Porsche Panamera: I’ll Take Three of These.
July 24, 2016, 6:44 PM
Top 5 Smart Watches
July 21, 2016, 11:48 PM
5 Excellent Cable Modems: Buy Your Own and Avoid Rental Fees
July 28, 2016, 8:44 PM
Latest Blog Posts
Sceptre Airs 27", 120 Hz. 1080p Monitor/HDTV w/ 5 ms Response Time for $220
Dec 3, 2014, 10:32 PM
Costco Gives Employees Thanksgiving Off; Wal-Mart Leads "Black Thursday" Charge
Oct 29, 2014, 9:57 PM
"Bear Selfies" Fad Could Turn Deadly, Warn Nevada Wildlife Officials
Oct 28, 2014, 12:00 PM
The Surface Mini That Was Never Released Gets "Hands On" Treatment
Sep 26, 2014, 8:22 AM
ISIS Imposes Ban on Teaching Evolution in Iraq
Sep 17, 2014, 5:22 PM
More Blog Posts
Copyright 2016 DailyTech LLC. -
Terms, Conditions & Privacy Information