Print 31 comment(s) - last by Cheesew1z69.. on Jul 28 at 10:17 PM

Alcoholics Anonymous says the first step to recover is to admit you have a problem

Black Hat's sister conference DEF CON already scored an intriguing high-profile keynote speaker -- General Keith Alexander, head of the U.S. National Security Agency (NSA) and U.S. Cyber Command.  Now Black Hat has an equally surprising keynote of its own from the corporate sector -- a top executive from Apple, Inc. (AAPL).

Apple's talk will be given by Dallas De Atley, manager of Apple’s platform security team -- a team responsible for security both Apple's iOS (iPhone, iPad, iPod) and OS X operating systems.

For years, Apple enjoyed one of the positives of having a small market share and proprietary operating system -- general disinterest via cybercriminals.  But rather than take this safety for what it was  -- safety via obscurity -- Apple instead told customers that its machines were never hacked because their security was lightyears ahead of Microsoft Corp.'s (MSFT).

Security researchers called this a baldfaced lie.  In fact, some say Apple is 10 years behind Microsoft.  Indeed, while Apple security researchers have long reportedly lurked incognito at DEF CON and Black Hat, they did not venture to give a talk until 2008 -- ten years after Microsoft's first (1998) presentation at the conventions.

Black Hat
Apple's first Black Hat talk comes after marketing scuttled a 2008 keynote.
[Image Source: Cult of Mac]

And Apple's late arrival was quickly scuttled by Apple's marketing folks who feared a public relations disaster.  After all, they had been pitching for years that Macs were "magical" and immune to "PC viruses".

Lately, however, OS X has been besieged by malicious Trojans -- first with the fake anti-virus program MacDefender, then Flashback, a fake Flash player update that infected 600,000 Macs.  To make matters worse, a memo leaked from Apple public relations to store employees suggesting they lie to customers about the existence of MacDefender.

Trojan horse
Macs are increasingly the target of Trojans.  Malware writers love Apple's
sluggish pace of patching. [Image Source: Venitism]

The issue for Apple was that with 10 percent of the market and a demographic of relatively affluent users, Apple was starting to become a worthwhile target.  And it struggled with this new breed of OS X-centric malware.

Even Apple's marketing team was forced to reword their marketing amid a rash of infections, perhaps fearing user lawsuits.

Apple's reappearance at Black Hat is significant as it represents Apple marketing's silent acknowledgement that keeping customers in the dark about security threats is no longer a viable option.  With mass media frequently seizing on reports of new malware or security holes in iOS and OS X, Apple is back at Black Hat, much as Microsoft was in 1998 -- looking to turn over a new leaf.

Hopefully this year they won't get cold feet.

Sources: Black Hat, Bloomberg

Comments     Threshold

This article is over a month old, voting and posting comments is disabled

RE: It's not that bad
By bug77 on 7/25/2012 1:05:53 PM , Rating: 2
Well, computers are not an end-goal, they're just a means to an end. If you're a writer and only need to write your stuff or a photographer that only needs to launch Photoshop, should you also become a security expert and systems administrator? As an engineer, I would answer yes, but many people will disagree.
I wouldn't call anyone gullible just because they want to get their job done.
Of course, Apple's approach of "forget everything about security and it won't harm you - because we say so" isn't productive either. When you're using a tool you don't know much about, you should, at the very least, try to find out if it could cut your fingers if not used properly.

"Paying an extra $500 for a computer in this environment -- same piece of hardware -- paying $500 more to get a logo on it? I think that's a more challenging proposition for the average person than it used to be." -- Steve Ballmer

Copyright 2015 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki