Symantec researcher: At this time, there are no file-infecting viruses that can infect Mac OS X

“I would like to discuss some important issues regarding Mac OS X and security. Let’s start with the hot-button issue of Mac OS X viruses. Simply put, at the time of writing this article, there are no file-infecting viruses that can infect Mac OS X. I see some of you raising a hand or two, wanting to ask me some ‘but, what about…’ types of questions. Indeed, in February of this year, when OSX.Leap.A was discovered the news headlines declared that it was the “First ever first ever virus for Mac OS X!” Long before the digital ink dried on those simplistic and sensational headlines our Security Response team had determined that OSX.Leap.A was a worm, and not a file-infecting virus. Our Security Response Web site explains the differences between viruses and worms. Basically, viruses are designed to infect files within a single computer, while worms are designed to spread from one computer to another,” Todd Woodward, Security Response Researcher, Symantec Corp., writes.

“Before you think that this is starting to look like an advocacy piece for Mac OS X, please remember that Mac OS X has been tested by worms, Trojan horses, rootkits, and other various security vulnerabilities. Most recently, in the wake of Apple releasing Mac OS X and Mac OS X Server 10.4.7 updates, Symantec released a high severity advisory through our DeepSight Threat Management System for all versions of Mac OS X 10.4.x prior to 10.4.7. Shortly thereafter, proof of concept code was released publicly which triggered a Category 1 threat advisory for OSX.Exploit.Launchd,” Woodward writes.

Woodward writes, “From the 30,000 foot viewpoint of the current security landscape, these Mac OS X security threats are almost completely lost in the shadows cast by the rocky security mountains of other platforms. However, no operating system is without imperfections, and no computer connected to the Internet will ever be 100% immune from attack. As Apple Computer points out: ‘A Mac running with factory settings will protect you from viruses much better than a PC, but it’s never a bad idea to run extra virus and security software.'”

Woodward, “As I tell my internal and external customers alike, just because there are no file-infecting viruses that can affect Mac OS X now, that doesn’t mean there won’t be a really nasty one released in the next five minutes. The likelihood of that happening is comparatively low and could be debated ad nauseam, but as Benjamin Franklin said: ‘A little neglect may breed great mischief: for want of a nail the shoe was lost; for want of a shoe the horse was lost; and for want of a horse the rider was lost.'”

Full article here.

[Todd Woodward is based in Springfield, Oregon, and plays a leading role at Symantec in facilitating the secure growth of the Macintosh platform in the SMB and Enterprise markets. He has 15 years experience in the telecommunications industry and was a pioneer in the field of Consumer Health Informatics. Prior to joining Symantec, Todd worked in Apple Computer’s professional support operations, and has been extensively heralding the innovative uses of Mac OS X in Internet data centers and Enterprises since Mac OS X Server 1.x was released in 1999.]

MacDailyNews Take: Excellent article. Following in Sophos’ “you catch more flies with honey than with vinegar” footsteps, eh, Symantec? If so, smart PR move; keep it up. Regardless of the reason(s), more of this level-headed and factually-based information from Symantec would definitely be welcomed.

Now if Symantec could just somehow get certain so-called “tech journalists” to also convey the facts, too, by giving carefully-constructed and considered quotes to the media, we’d really be cooking with gas. It’s probably just a dream, though, as writers with an agenda can always twist a quote to suit their needs. Still, we can hope.

Related articles:
Sophos: Apple Mac OS X’s security record unscathed; Windows Vista malware just a matter of time – July 07, 2006
Sophos Security: Dump Windows, Get a Mac – July 05, 2006
Security company Sophos: Apple Mac the best route for security for the masses – December 06, 2005

Symantec warns of new proof-of-concept ‘trojan horse’ for Mac OS X 10.4.6 – June 30, 2006
Apple: ‘Get a Mac. Say ‘Buh-Bye’ to viruses’ – June 01, 2006
Apple releases Mac OS X 10.4.7 Update – June 27, 2006
Apple Macs and viruses: Fact vs. FUD – May 26, 2006
Symantec Antivirus software flaw allows hackers to seize control of PCs without user interaction – May 25, 2006
‘Mac security’ garbage reports continue to proliferate – May 10, 2006
ZDNet: Reduce OS X security threats – ignore security software – May 05, 2006
McAfee announces virus protection for Intel-based Apple Macs – May 05, 2006
BusinessWeek: New Apple Mac ads stir up Mac security overreaction – May 04, 2006
Unix expert: Mac OS X much more secure than Windows; recent Mac OS X security stories are media hype – May 03, 2006
Macs and viruses: the true story – May 02, 2006
Anti-Mac FUD machine shifts into overdrive – May 01, 2006
FUD Alert: Viruses don’t catch up to the Mac – May 01, 2006
BusinessWeek: Apple should hire security czar to combat uninformed media FUD – March 09, 2006
Spate of recent Mac security stories signal that Microsoft, others getting nervous – March 06, 2006
Mafiasoft: Microsoft to charge $50 per year for security service to protect Windows – February 07, 2006
Why pay Symantec for flawed ‘security’ app designed to protect Apple Macs from nonexistent threats? – December 27, 2005
‘Highly critical’ flaw in discovered in Symantec AntiVirus for Mac OS X – December 21, 2005
Computer columnist: anti-virus software purely optional for Apple Macs, not so for Windows – November 01, 2005
Why Symantec’s ‘scare tactics’ don’t worry Mac users – September 28, 2005
Motley Fool writer: ‘I’d be surprised if Symantec ever sells a single product to a Mac user again’ – March 24, 2005
Symantec cries wolf with misplaced Mac OS X ‘security’ warning – March 23, 2005
Symantec’s Mac OS X claims dismissed as nonsense, FUD – March 22, 2005
Hackers already targeting viruses for Microsoft’s Windows Vista – August 04, 2005
16-percent of computer users are unaffected by viruses, malware because they use Apple Macs – June 15, 2005

22 Comments

  1. The anti-virus software currently has cure only for known viruses. So, as the MAC does not have any known viruses, why should I buy AV software? Just to be a good citizen and not to pass around the infected files to PC friends?

  2. As Rumsfeld said: There are four kinds of information (viruses):

    1. Known Knowns (current AV software provide cure for only this category).

    2. Known Unknowns (I know that there are no viruses for Macs.)

    3. Unknown knowns (I know that there will be a virus for Vista, but don’t know when it will happen. But, I know it will exist, it is only a matter of time.)

    4. Unknown Unknowns (Who knows what we will see tomorrow, the world might come to an end. There will be a virus for Mac tomorrow.)

  3. Say, who was that dumbass on this site a week or so ago who tried to defend the “OS X has viruses too” with some kind of silly dictionary definition?

    Oh yeah: “Webster”!

    Webster, oh Webster . . . where are you now, oh Webster? Hiding under your student dictionary somewhere? Man, but you must be terribly full with all that crow you’ve had to eat!

    Or are you STILL smarter than Symantec in this area?

  4. A good article. Still – doesn’t their AV software make one’s Mac LESS secure. Anyone know if that small, little problem has been fixed? Symantec has a long way to go to repair their creditability.

    Peace.

  5. It was the turd that claims a trojan is the same thing as a virus. He can believe that all he wants. All I know is I have never run anti-virus software on my Mac a single time ever and I’ve never had one incident of any kind of malware yet….

  6. MDN Magic Word: “through”, as in, “We are ‘through’ with Windows, forever!”

    We are also through spreading FUD about OS X and virii, worms, lizards, snakes, etc., and other unwelcome vermin.

  7. Webster, oh Webster. . . . Or are you STILL smarter than Symantec in this area?

    The problem is that every Macite is smarter than Symantec every time the company blows it out about Macs needing its anti-virus crapola that not only is superfluous but keeps alive the memory of its hose-your-system Disk Doctor horror that was so bad even Symantec couldn’t fix it. So “Webster” can still argue that Symantec’s definition is wrong because everything Symantec does and says is wrong; why argue otherwise in this instance? All that aside, “Webster” is wrong.

    Regarding that so-called blog: I wouldn’t trust Symantec to give the correct time of day, for the reasons stated above. I’m suspicious of that blog entry; the writer is a creature of Symantec; I doubt he could write anything without the company vetting it. Perhaps Symantec is trying to plug its credibility gap that is ever-widening, now among an increasing number of Windows users, too.

    Something’s brewing. Maybe Symantec is feeling a reversal of fortune or maybe it’s the first of a PR push leading to a new product for Mac after abandoning it (except for its useless anti-virus software), and it wants to peddle the notion, “See, Mac users? We know the truth, after all. So trust us.”

    Whatever the reason, it’s ulterior.

  8. Nice piece of PR. The reason for this is to get on the side of the mac users. Then when they do need an anti-virus program, they will remember “Symantec was good to us when no one else was.”

    Personally, I will never buy another Symantec product because they abandoned us long ago. Even McAfee abandoned us. When firewalls come with software upgrades for anti-virus for the network with packages ONLY for PC end users. Why? When McAfee had a perfectly good piece of software for the Mac?

    Intego is the only company that has been on Apple’s side since they started. If you want good anti-virus software (now or when that time comes) get Intego software. They have stand-alone anti-virus programs, and security suites, for geekier users. (I do not work for Intego, just experience with the products)

    http://www.intego.com/products
    http://www.intego.com/isb/ (security barrier suite options)

    The most expensive suite is $150. The only reason I post this is because I have used their product on an XServe, and the UI is clean and easy to use and do software updates.

Reader Feedback

This site uses Akismet to reduce spam. Learn how your comment data is processed.