“For years, Apple avoided advertising the fact that Mac OS X hasn’t come under a single virus attack ‘in the wild,'” David Pogue blogs for The New York Times.
Pogue writes, “But now Apple has changed its tune. Its new TV ads mention the Mac’s viruslessness, and a new marketing e-mail puts it very bluntly indeed: ‘PCs got 114,000 viruses last year. Macs got zero. Get a Mac.'”
“Several readers have written to express their concern that this new marketing tactic is just an invitation to hackers, and that soon the Mac will be just as overrun with viruses and spyware as Windows is,” Pogue writes. “I kind of doubt it, and I’ll tell you why.”
Pogue writes, “Now, I’m sure you’ve heard the old saw, ‘The only reason the Mac has no viruses is that its market share is so small; hackers don’t even bother.’ But since I’m on a myth-busting roll lately, let me bust another one: That’s bunk.”
“If the Mac’s market share is five percent, then shouldn’t it have five percent of the viruses? It ought to have seen 5,700 viruses last year, not zero. Clearly, there’s something else at work here, and I’ll tell you what it is: Mac OS X is simply harder to hack,” Pogue writes.
Full article here.
MacDailyNews Take: It’s nice to see reality reinforced (by someone other than ourselves) every once in a while. Interestingly, Pogue himself fell for the myth back in 2003, but recanted soon after. Our standard “Security Via Obscurity” myth-busting response – featuring David Pogue himself – follows:
Security via Obscurity” is a myth. Mac OS X has zero (0) viruses. For over five years and counting. No Mac OS X users affected outside of a lab with old, non-updated Mac OS versions that they intentionally infected.
The idea that Windows’ morass of security woes exists because more people use Windows and that Macs have no security problems because less people use Macs, is simply not true. Mac OS X is not more secure than Windows because less people use OS X, making it less of a target. By design, Mac OS X is simply more secure than Windows. Period. For reference and reasons why Mac OS X is more secure than Windows, read The New York Times’ David Pogue’s mea culpa on the subject of the “Mac Security Via Obscurity” myth here.
Macs account for roughly 10% of the world’s personal computer users — (some say as much as 16%) — so the first half of the myth doesn’t even stand up to scrutiny. Macs aren’t “obscure” at all. Therefore, the Apple Mac platform’s ironclad security simply cannot logically be attributed to obscurity.
There are zero-percent (0%) of viruses for the Mac OS X platform that should, logically, have some 10-16% of the world’s viruses if platforms’ install bases dictate the numbers of viruses. The fact that Mac OS X has zero (0) viruses totally discounts “security via obscurity.” There should be at least some Mac OS X viruses. There are none. The reason for this fact is not attributable solely to “obscurity,” it’s attributable to superior security design.
Still not convinced? Try this one on for size: according to Apple CEO Steve Jobs at WWDC 2006, there are “19 million Mac OS X users” in the world and there are still zero (0) viruses. According to CNET, the Windows Vista Beta was released “to about 10,000 testers” at the time the first Windows Vista virus arrived. So much for the security via obscurity myth.
[UPDATE: 8/26, 10:29am EDT: Fixed beginning of take to read “once in a while.” Thanks, “Jerkstore.”]
Related articles:
Microsoft’s Windows is inherently more vulnerable to severe malware than Apple’s Mac OS X – August 23, 2006
Chicago Tribune falls for the ‘Security Via Obscurity’ myth – August 14, 2006
Symantec researcher: At this time, there are no file-infecting viruses that can infect Mac OS X – July 13, 2006
Gartner analyst tries to propagate discounted Mac OS X ‘security via obscurity’ myth via BBC – July 06, 2006
Apple: ‘Get a Mac. Say ‘Buh-Bye’ to viruses’ – June 01, 2006
Apple Macs are inherently safer and more secure than Microsoft Windows – November 22, 2005
BusinessWeek columnist propagates discounted ‘Apple Mac security via obscurity myth’ – September 06, 2005
16-percent of computer users are unaffected by viruses, malware because they use Apple Macs – June 15, 2005
USA Today calls iMac G5 ‘exquisite’ but implies Mac OS X more secure than Windows due to obscurity – September 30, 2004
Another columnist trots out Mac OS X ‘Security through Obscurity’ myth – April 03, 2004
Gates: Windows ‘by far the most secure’ system; tries to use ‘Mac OS X secure through obscurity’ myth – January 27, 2004
Q&A Columnist uses ‘security through obscurity’ myth to defend Windows vs. Mac on virus issue – October 04, 2003
Columnist tries the ‘security through obscurity’ myth to defend Windows vs. Macs on virus front – October 01, 2003
New York Times: Mac OS X ‘much more secure than Windows XP’ – September 18, 2003
Shattering the Mac OS X ‘security through obscurity’ myth – August 28, 2003
Is Mac OS X really inherently more secure than Windows? – August 26, 2003
Virus and worm problems not just due to market share; Windows inherently insecure vs. Mac OS X – August 24, 2003
Its good to have Pogue at the New York Times.
get a mac and enjoy computer life with no fears.
Apple is merely recognizing the fact that Macs are already a huge target for malware writers, so increasing the attention isn’t going to make much of a difference.
With people at Black Hat resorting to faking an exploit, Apple finally realized that the market share myth is just that: a myth.
Apple should just hire 100 of it’s most adamant fans to do their ads. They always seem to come around to our side eventually.
Although, our ads would probably piss off most non-Mac users anyway.
But wait, doesn’t the New York Times report nothing but lies? This must be part of some sort of liberal agenda. Don’t believe it.
“But wait, doesn’t the New York Times report nothing but lies? This must be part of some sort of liberal agenda. Don’t believe it.”
Some lies, some truth. As with most mass media outlets.
The technology section is usually pretty accurate, though.
Do some research before spewing next time.
G-Spank,
You didn’t take your meds today did you?
Pogue got it right today. However, his track record is not all that great. Better than most…..not like Walt’s rep.
G-Spank,
NY times is kinda crappy, but it’s still good exposure.
Their plan is to get all of the windows hax0rz to stab themselves in the face (which they profess wanting to do) because they’re so annoyed by Macs’ lack of viruses, so that all who remain are rational people who can make educated decisions in computer purchasing, not blind fanboys.
Pogue is a nice guy, too. My son and I bought his latest book, coupla’ years ago at the Boston Mac LoveFest. He autographed it for my son (12 yr. old, then), and the promptly left it on the Subway. (Thats after almost leaving it at Pizzerio Uno, just before that).
I emailed him, and his wife emailed back- and we got a new signed copy.
“To Jake ……., future CEO of Apple”.
Although I agree that Macs are inherently more difficult to “hack”, I still think Apple needs to be more vigilant than ever, and if they haven’t already got one, they should have a dedicated team that does nothing but look for and fix security problems.
Security issues raised by the community and sent to Apple via ADC bug tracking or whatever should be a priority for the Company. We all know the first time one of these viruses finally makes its way into the OS, it’s going to be splattered all over the media the likes of which we’ve never seen before.
I think our biggest potential problem is with “user-approved” malware, which of course is platform-independant.
G-Spank was JOKING, people!
Get over yourselves…Sheesh.
No, POQUE is better than WM
Hey, is there a new ad or is he talking about the one MDN linked to above?
I think it’s about time that Apple and others promote this simple fact more often (i.e. zero existing virus)
I’m continually amazed when I mention this fact to otherwise seemingly intelligent PC users (is that an oxymoron?
” width=”19″ height=”19″ alt=”grin” style=”border:0;” /> including IT professionals, engineers & software programmers I work with.
They typically can’t believe it, won’t believe it. Not a tough concept, really – zero.
However, I do see more of my non-tech industry friends & families these days buying their first Mac – and loving it. they wonder why they put up with their old PC for so long. Apple needs to continue to get the message to these people.
The fact that Macs have no viruses says a lot not only about their security, but about the people that use Macs in general. We are a cool little community that love our Macs! Who needs a virus?
Why does everyone automatically assume that people haven’t already been trying to hack OS X? I’d go so far as to state that OSX is probably hacker and virus target #1 nowadays, because it’s so hard to hack! Hackers write viruses for the recognition more than anything else, so you can be sure that the first person who can create a successful OSX virus and release it into the wild will become quite famous, and probably get a cushy job at Apple with a seven-figure salary.
After he does his prison time, of course…
Remember the guy last year who put his mini on the Web and dared anyone to hack it? He got a lot of takers, but NO ONE succeeded…
“Mac OS X is simply harder to hack”
Like the difference between an unlocked house and a bank vault.
Like the difference between a raw egg and a coconut.
Like….
Well, I could go on and on.
“…will become quite famous, and probably get a cushy job at Apple with a seven-figure salary.”
Wow, I’ll get right on it!
” width=”19″ height=”19″ alt=”cheese” style=”border:0;” />
Security thorugh obscurity is a myth because it supposes that PC virus writers do it to the larger market for some sort of financial gain. This not only is false but ignores the reality that people do it for notoriety, to stroke their own egos.
What better way to stroke ones ego than to smack down the millions of smug-ass Mac users by releasing a virus in the wild and putting them in their place.
Simply stated, The motivation to write viruses for Macs should be as great as the motivation for PC’s. Yet the Mac has gone largely unscathed. Why could this be?
I would like to clarify a point that Pogue makes in his column when he talks about the improvements that made OS X even more secure.
Pogue states:
* Dialog boxes now alert you whenever you even download a file that could contain or conceal executable code (that is, a program, as opposed to a document).
The dialogue box will pop-up before the download process even begins giving you a moment to decided whether or not to proceed with the download.
One only needs to look at the past Mac security-related headlines to see this point. When computer security companies resort to such scare tactics to demonstrate Mac vulnerabilities, you realize Mac OS X is not vulnerable in the same ways and to the same magnitude as Windows. Let’s see, we’ve had…
* We can hack the Mac wireless connection in less than 60 seconds. Oh, we’re going to use a third party wireless USB “card” and driver, but we can do the same thing to Apple’s built-in wireless; Apple just asked us not to. Oh, sorry, we lied. We can’t to the same thing to Apple’s built-in wireless. And we are not going to tell you the name of the wireless card company we can hack to protect users of that card (and to ensure no one can prove the whole hacking demostration was faked).
* Apple does not care about computer security because they do not employ a “security czar.” Since we cannot show Mac OS X to be vulnerable, let’s focus on Apple’s hiring practices.
* The malware disguised as jegs. It only did its bad deed if the user gave permission. I’m sure even I could write an Applescript app that deleted stuff from you hard drive, if only you would be so kind as to run my program and give it permission to run for the first time.
* The hack that required the hacker to have a local account on the Mac being hacked. I don’t remember the details, but it was bogus.
There were more Mac security FUD headlines (and I may have remembered some details incorrectly), but here’s my point. If this is the best that security company fear mongers and hackers around the world can do, considering all the media attention Mac security has received lately, then I have never felt more secure using my Mac. “Smug” and proud of it…
The only way you could buy the security through obscurity is if OS X had some viruses. Sure, if both windows and OS X were somehow classed as being the same in terms of security you would still expect windows to have more viruses since more people use it, you would expect multiple variation on the same thing but more none the less. If they both had a reasonably large number this massive difference would still be negligible since if running anti-virus software is running anti-virus software regardless of how many things it’s scanning against – from a certain point of view.
The fact is that OS X has no viruses, none, 0, zilch. It’s just mind boggling the chances of that happening if OS X isn’t that much more secure even with a far smaller user base. It just couldn’t happen unless OS X was more secure.
I’m a big fan of David Pogue. I like someone who doesn’t take things too seriously, sees the funny side, plays the piano well, and makes some hilarious product review vids.
Go Pogue.