Slashdot Mirror

← Back to Stories (view on slashdot.org)

Intego's "Year In Mac Security" Report

Posted by kdawson on from the almost-popular-enough dept.

david.emery notes the release of Intego's "Year In Mac Security" report (PDF), adding: "Mac OS X and iPhones that haven't been jailbroken fare pretty well (although vulnerabilities exist, there's not been a lot of exploitation). Apple does come in for criticism for 'time to fix' known vulnerabilities. Jailbroken iPhones are a mess. The biggest risk to Macs are Trojan horses, often from pirated software."

6 of 132 comments (clear)

  1. So, avoid pirated Mac software... by Chris+Tucker · · Score: 4, Informative

    ...and let Software Update do it's thing with Security Updates.

    Don't go online as Root, and really try not to open email attachments that claim to be "Nude Photos of (insert female athlete name here)"

    Really, how hard is that?

    --
    Guaranteed! This comment 100% Anthrax free!
    1. Re:So, avoid pirated Mac software... by silentace · · Score: 5, Insightful

      So you basically said what PC users do everyday (the ones that don't ever get viruses)...

  2. my summary of the white/sales paper - fluff mostly by prawn_narwp · · Score: 4, Insightful

    This is basically 7 total pages:

    * first couple pages on installing bitorrent'd software
    * Page 4 and 5 about people who installed openssh on their jailbroken iphones and didn't change their passwords
    * last page has citations back to their own blog

    The meat of it is about PDF, Java -- surely those have a more widespread effect right? But they spend a lot less words on those topics. Note that all the visuals have to do with the stupid ssh-admin-password and bittorent'd malware.

    Skip to the concluding paragraph -- they just have to emphasize the iphone again.

    I was going to say "I declare this posting unfit for Slashdot" but the good I see is that we can pick it apart to sort out the fluff.

    My rating system on severity overall on the entire population of apple products:

    1) pdf/java (5 stars)
    2) I-enabled-ssh-w/o-a-password (1 star - you're fault for being a retard)
    3) Charles Miller iphone vuln (5 stars when it wasn't patched)

  3. Re:we don't need economic buzz by icebike · · Score: 4, Funny

    We need an economist to explain us how the us, by privatizing gains and socializong losses turned into a fascist state.

    And an English teacher to straighten out that sentence.

    --
    Sig Battery depleted. Reverting to safe mode.
  4. Re:With great freedom comes great resposibility by grouchomarxist · · Score: 4, Funny

    in a safe manor

    My security guards keep my manor safe.

  5. Re:With great freedom comes great resposibility by mdwh2 · · Score: 4, Insightful

    When people point out something the Iphone can't do, we hear "Oh it can, but you just have to jailbreak it". When we get stories about security holes, we hear "Oh that doesn't count, you just have to not jailbreak it".

    So er, which is it?

    The problem is that the Iphone is the only phone where "jailbreaking" is necessary to get basic functionality working (e.g., tethering, running applications that Apple don't like).

    Consider, do you ever hear people talking about "jailbreaking" in the context of any other phone?

    My 5800 works fine, not had a virus (indeed on any of my phones), never needed to hack it.