“While an increasing number of bugs have been found in Apple’s Mac OS X operating system, security researchers say it isn’t a high security risk and it’s still more secure than Windows XP,” Sharon Gaudin reports for InformationWeek. “Is it more secure than Windows Vista? The jury is still out on that one.”
MacDailyNews Take: How long is this jury going to take, exactly? Mac OS X is over 6-years-old, with 22 million users. No Mac OS X user in the wild has been affected by malware. Related article from just yesterday: Security flaw puts puts Windows, including Vista, PCs at risk; malware already observed in the wild – March 30, 2007. Some people can ignore the obvious forever, it seems.
Gaudin continues, “‘Vulnerabilities just don’t equal attacks,’ said Craig Schmugar, a threat researcher at McAfee, in an interview. ‘Some people are saying the Mac is less secure than Windows because there have been more vulnerabilities in it than in Windows, but there are far fewer attacks reported on Mac OS X than Windows.'”
MacDailyNews Take: For one thing, there have not been “more vulnerabilities” for Mac OS X vs. Windows pre-Vista. For Vista, maybe so far, but it’s only been out for a few months vs. over six years! Give it a few more weeks. Also, does the severity of vulnerabilities count for anything? It should. Fact: Vista already has at least one vulnerability being exploited against actual users in the wild. Mac OS X has none. And, don’t try “Security via Obscurity,” as Mac OS X has 22 million users vs. Windows Vista’s “20 million” claimed by Microsoft. Vista is more “obscure” than Mac OS X, but it’s already been compromised, affecting actual sufferers in the wild. Mac OS X users continue to be unaffected. To say “there are far fewer attacks reported on Mac OS X than Windows” is the height of understatement.
Gaudin continues, “Last year, McAfee reported that the discovery of vulnerabilities in the Macintosh platform increased by 228% in the past three years, from 45 found in 2003 to 143 in 2005. In the same period, Windows had a 73% increase.”
MacDailyNews Take: Lies. Damn lies. And statistics. 73% of what? McAfee never said, but it’s a helluva lot more than increasing from 45 to 143 vulnerbilities and, again, a number the WIndows vulnerabilites actually affected Windows sufferers in the wild. Related article: Analyst: McAfee’s recent Apple Mac security report is ‘sloppy scaremongering’ – May 08, 2006. A vulnerability does not equal an attack.
Gaudin continues, “While Apple’s numbers may not be what they were, it doesn’t mean the Mac suddenly has become a risky operating system, according to Johannes Ullrich, chief research officer at the SANS Institute and CTO for the Internet Storm Center. ‘It’s still safer, but not as safe as Apple pretends it is,’ Ullrich said in an interview. ‘Some features, like the firewall, aren’t all that great. But, yes, it’s still pretty safe.'”
MacDailyNews Take: Mac OS X is “still pretty safe?” Yeah, you could say that. What is this, a “Who Can Make the Biggest Understatement” contest?
Gaudin continues, “Paul Henry, VP of Secure Computing and a recent Mac convert, said it’s all a matter of scale. The cyber bad guys target the richest market, and that’s not the Mac platform.”
MacDailyNews Take: Once again, 22 million Mac OS X users unaffected vs. “20 million” Vista users, some of whom are already affected by malware. Richest market? Those who surf the Web using a Mac tend to be better educated and make more money than their PC-using counterparts, according to a 2002 report from Nielsen/NetRatings: http://news.com.com/2100-1040-943519.html
Gaudin continues, “Marius van Oers, a virus research engineer at McAfee, posted a blog last week that showed there are more than 236,000 pieces of malware ‘in the wild.’ The vast majority are aimed at the Windows environment. Only about 700 are meant for the various Unix/Linux distributions, van Oers wrote. How many are for the Mac OS X platform? Seven or less, he said, calling the threat ‘pretty much non-existent at the moment.’ For older builds of the Mac OS, there are 69 known malicious items…”
MacDailyNews Take: Mac OS is dead. Has been for many years. Do they go back to Windows 3.1 to include “malicious items,” too? Of the “seven or less” Mac OS X malware instances, how many affected users in the wild? That we know of, none. Zero.
Gaudin continues, “‘It is clear that OS X malware is not taking off yet. With an estimated OS X market share of about 5% on the desktop systems, one would expect to see more malware for OS X,'” [van Oers wrote].”
MacDailyNews Take: Finally, someone’s making sense.
Full article here.
MacDailyNews Take: Our headline is fact, whether some people like that fact or not.
Security flaw puts puts Windows, including Vista, PCs at risk; malware already observed in the wild – March 30, 2007
National Security Agency gives Apple’s Mac OS X 10.4 Tiger glowing security endorsement – March 22, 2007
Lack of Apple Mac malware baffles expert – March 21, 2007
Microsoft’s Live OneCare ‘security’ failureware: dead last in test of 17 Windows security apps – March 07, 2007
Bill Gates has lost his mind: calls Apple liars, copiers; slams Mac OS X security vs. Windows – February 02, 2007
Security firm: 38-percent of malware already Windows Vista-compatible – January 22, 2007
FUD Alert: CNET tries to equate Windows’ insecurity to handful of Mac OS X proof-of-concepts – December 02, 2006
Microsoft’s Windows is inherently more vulnerable to severe malware than Apple’s Mac OS X – August 23, 2006
Chicago Tribune falls for the ‘Security Via Obscurity’ myth – August 14, 2006
Symantec details more security holes in Microsoft’s Windows Vista – July 26, 2006
Symantec researcher: At this time, there are no file-infecting viruses that can infect Mac OS X – July 13, 2006
Sophos: Apple Mac OS X’s security record unscathed; Windows Vista malware just a matter of time – July 07, 2006
Gartner analyst tries to propagate discounted Mac OS X ‘security via obscurity’ myth via BBC – July 06, 2006
Sophos Security: Dump Windows, Get a Mac – July 05, 2006
Security company Sophos: Apple Mac the best route for security for the masses – December 06, 2005
Apple Macs are inherently safer and more secure than Microsoft Windows – November 22, 2005
BusinessWeek columnist propagates discounted ‘Apple Mac security via obscurity myth’ – September 06, 2005
16-percent of computer users are unaffected by viruses, malware because they use Apple Macs – June 15, 2005
Another columnist trots out Mac OS X ‘Security through Obscurity’ myth – April 03, 2004
Columnist tries the ‘security through obscurity’ myth to defend Windows vs. Macs on virus front – October 01, 2003
Shattering the Mac OS X ‘security through obscurity’ myth – August 28, 2003
Virus and worm problems not just due to market share; Windows inherently insecure vs. Mac OS X – August 24, 2003