Slashdot Mirror

← Back to Stories (view on slashdot.org)

Apple Snubs Security Firm That Spotted Mac Botnet

Posted by Soulskill on from the doesn't-play-well-with-others dept.

Sparrowvsrevolution writes "Now that it's being increasingly targeted by botnet herders, Apple has a thing or two to learn about cooperating with friendly security researchers. Boris Sharov, the CEO of Dr. Web, the Russian security company that first reported more than half a million Macs were infected with Flashback malware last week, says when his company alerted Apple to the botnet, it never responded to him. Worse yet, on Monday Apple asked a Russian registrar to take down a domain it said was being used to host a command and control server for Flashback, but in fact was a 'sinkhole' that Dr. Web had set up to observe and analyze the botnet. Sharov describes the lack of communication and cooperation as a symptom of a company that has never before had to work closely with the security industry. 'For Microsoft, we have all the security response team's addresses,' he says. 'We don't know the antivirus group inside Apple.'"

54 of 409 comments (clear)

  1. Mac's don't get malware by crazyjj · · Score: 5, Funny

    Why would they communicate with a supposed security researcher who doesn't even know that?

    --
    What political party do you join when you don't like Bible-thumpers *or* hippies?
    1. Re:Mac's don't get malware by jesseck · · Score: 5, Informative

      Can you please provide any links to folks that have claimed that Macs dont' get malware?

      Here you go:

      Mac Commercial (produced by Apple) and Apple's own webpage

      And yes, "viruses" are not the only kind of malware out there- most people on /. know that. But no one else in my family does, and neither do the vast majority of people those two examples target for marketing. Apple's claim that Mac's don't get "viruses", in my mom's mind, equate to "Apple's don't have malware".

    2. Re:Mac's don't get malware by Anonymous Coward · · Score: 4, Informative
      http://www.apple.com/why-mac/better-os/#viruses

      Safeguard your data. By doing nothing. With virtually no effort on your part, OS X defends against viruses and other malicious applications, or malware. For example, it thwarts hackers through a technique called “sandboxing” — restricting what actions programs can perform on your Mac, what files they can access, and what other programs they can launch. With FileVault 2, your data is safe and secure — even if it falls into the wrong hands. FileVault 2 encrypts the entire drive on your Mac, protecting your data with XTS-AESW 128 encryption. Initial encryption is fast and unobtrusive. It can also encrypt any removable drive, helping you secure Time Machine backups or other external drives with ease. Other automatic security features include Library Randomization, which prevents malicious commands from finding their targets, and Execute Disable, which protects the memory in your Mac from attacks. Download with peace of mind. Innocent-looking files downloaded over the Internet may contain dangerous malware in disguise. That’s why files you download using Safari, Mail, and iChat are screened to determine if they contain applications. If they do, OS X alerts you, then warns you the first time you open one.

    3. Re:Mac's don't get malware by CharmElCheikh · · Score: 5, Insightful

      Well in all "honesty" apple's own webpage says "it doesn't get PC viruses". Technically, it doesn't; it gets Mac malware. But I know, it isn't honest, hence my first quotes, and to most people that does mean that "it doesn't get anything bad, unlike that stupid windows thingy".

      --
      My /. user ID is probably higher than yours
    4. Re:Mac's don't get malware by SJHillman · · Score: 5, Insightful

      From Mac's website: "A Mac isn’t susceptible to the thousands of viruses plaguing Windows-based computers. That’s thanks to built-in defenses in OS X Lion that keep you safe, without any work on your part."

      1) No shit a Mac isn't susceptible to PC viruses. PC's aren't susceptible to Mac-only malware either
      2) In this case, my car isn't susceptible to Windows-based viruses thanks to built-in defenses of it's windshield. Viruses weren't written for my windshield, so that counts as a built-in defense, right?

    5. Re:Mac's don't get malware by s.petry · · Score: 4, Insightful

      The AV software for Apple is the same as it was for Unix and Linux. It was not that PC viruses could infect *nix. Microsoft, Norton, and McCaffee, were using propaganda marketing telling people that *nix file servers could not clean up viruses like a NT file server could and were dangerous since they could house viruses causing Windows to become infected. Since most VPs are dumb enough not to understand the unimportance of that marketing ploy, a lot of AV products sprung up for *nix and iOS.

      Many of the vendors still produce AV software for OSes that don't really need it for that reason. I'll bet you can still find iOS AV software for a fee, the PT Barnum theory works as well today as it did when he was alive.

      --

      -The wise argue that there are few absolutes, the fool argues that there are no probabilities.

    6. Re:Mac's don't get malware by bhcompy · · Score: 4, Informative

      Macs are PCs. Don't tell me they're mainframes.

    7. Re:Mac's don't get malware by fustakrakich · · Score: 5, Funny

      Yes, but debugging your windshield is still necessary every once in a while

      --
      “He’s not deformed, he’s just drunk!”
    8. Re:Mac's don't get malware by forkfail · · Score: 4, Insightful

      Unless you happen to be one of the 600,000 who clicked on a bogus/rigged link on a spoofed site and got this Flashback Trojan installed.

      --
      Check your premises.
    9. Re:Mac's don't get malware by pulski · · Score: 4, Informative

      You're right how dare they, "get infected with BackDoor.Flashback.39 after a user is redirected to a bogus site from a compromised resource or via a traffic distribution system. JavaScript code is used to load a Java-applet containing an exploit."?

      "According to some sources, links to more than four million compromised web-pages could be found on a Google SERP at the end of March. In addition, some posts on Apple user forums described cases of infection by BackDoor.Flashback.39 when visiting dlink.com."

      Source: http://news.drweb.com/?i=2341&c=5&lng=en&p=0

      Gotta be careful downloading all of that "kracked shit" from manufacturer's own websites.

    10. Re:Mac's don't get malware by forkfail · · Score: 5, Informative

      Also:


      As PCMag's Security Watch noted yesterday, Mac users did not have to download or even interact with the malware to become infected. Websites exploited a Java flaw that let Flashback.K download itself onto Macs without warning. It then asked users to supply an administrative password, but even without that password, the malware was already installed.

      From here:

      http://www.pcmag.com/article2/0,2817,2402641,00.asp

      So - yes, it required a trojan-esque password entry to fully activate, but it installed and was active even without it. Which means that it was probably ready and waiting for the next legitimate use of a password entry.

      Your walled garden has been breached, and instead of putting your head in the sand, perhaps you'd better wake up to the fact that yes, security really is, at the end of the day, the user/owner's responsibility.

      --
      Check your premises.
    11. Re:Mac's don't get malware by Cro+Magnon · · Score: 5, Funny

      I guess you don't use Windows Calculator?

      --
      Slow down, cowboy! It has been 4 hours since you last posted. You must wait another few hours.
    12. Re:Mac's don't get malware by Bobfrankly1 · · Score: 5, Interesting

      Macs are PCs. Don't tell me they're mainframes.

      Ever seen the ads that begin with: "I'm a Mac" "I'm a PC"

      Apple seems to think that Macs are not PCs

      Yes, but the Reality Distortion Field has been decreasing in strength as of late. Apple's own moderation of Java updates allowed this one to flourish, the Apple devout can't pass the buck onto another vendor this time. It's foolish to presume that a large installed base of users unconcerned with security would go ignored forever.

    13. Re:Mac's don't get malware by fuzzyfuzzyfungus · · Score: 5, Informative

      Pre OSX MacOS, while it may have gotten raves for friendliness, and was somewhat less bug riddled, was architecturally more or less a toy OS compared to almost anything contemporary. The ecosystem wasn't as large, and the distribution vectors markedly less efficient; but the Mac malware was out there.

    14. Re:Mac's don't get malware by durrr · · Score: 4, Insightful

      The reason they don't know about Apples antivirus group is that it's the same one as their legal department. Operating on the basis that if people can't see or hear or know about viruses and botnets, then they don't exist.

    15. Re:Mac's don't get malware by spongman · · Score: 5, Funny

      mac's aren't PCs. they're crystallized mana from heaven.

    16. Re:Mac's don't get malware by Anonymous Coward · · Score: 5, Insightful

      Well in all "honesty" apple's own webpage says "it doesn't get PC viruses". Technically, it doesn't.

      Technically, it does. PC stands for Personal Computer, not Windows machine. Macs, just like Linux and Windows boxes are PCs. Since Apple are trying to use pedantry to obfuscate, holding them to definition of a PC is only fair, which puts them squarely back in the realm of lying.

    17. Re:Mac's don't get malware by VGPowerlord · · Score: 4, Interesting

      I guess you don't use Windows Calculator?

      No, because I prefer that the (square root of 4) minus 2 to equal 0, not -8.1648465955514287168521180122928e-39

      --
      GLaDOS for President 2016! "Well here we are again. It's always such a pleasure." -- GLaDOS, 2011
    18. Re:Mac's don't get malware by Ihmhi · · Score: 5, Funny

      Honestly, the best way to debug a windshield is a full wipe.

      --
      Random Thoughts From A Diseased Mind (Not For Dummies)
    19. Re:Mac's don't get malware by Fjandr · · Score: 5, Informative

      Just for kicks:

      "The App Store revolutionized mobile apps. We hope to do the same for PC apps with the Mac App Store by making finding and buying PC apps easy and fun. We can’t wait to get started on January 6."
      --Steve Jobs

  2. Safeguard your data. By doing nothing. by rfioren · · Score: 5, Funny

    http://www.apple.com/why-mac/better-os/#viruses

    1. Re:Safeguard your data. By doing nothing. by Anonymous Coward · · Score: 4, Funny

      "It doesn’t get PC viruses."

      In other news, my electric car doesn't suffer from problems caused by low quality gasoline.

  3. there is no Apple AV group by alen · · Score: 4, Funny

    Mac's don't get viruses. it used to be magic pixie dust protected all the Mac's but my MacBook Pro and others bought since the death of St. Steve are protected by His Spirit

    1. Re:there is no Apple AV group by ColdWetDog · · Score: 5, Funny

      Ah, but you're right. This isn't a virus. It's a trojan. And we all know that Trojan's protect dicks.

      (sorry Apple fans, that one hung out there just a wee too much).

      --
      Faster! Faster! Faster would be better!
    2. Re:there is no Apple AV group by revelation60 · · Score: 5, Funny

      It's a feature.

    3. Re:there is no Apple AV group by tacarat · · Score: 5, Informative

      The current version downloads and installs itself. No human interaction required besides viewing an infected webpage. Don't confuse the "viruses are impossible to get on a Mac" crowd more by trying to make them learn the subcategories of malicious software. The fact it was originally a trojan that required the admin password to install versus the drive by installer requiring none is something more for the academics quibble about, not the end users.


      Granted, this is /., so it's academics and fanboys anyhow >.>

      --
      "Common sense will be the death of us all"
    4. Re:there is no Apple AV group by tacarat · · Score: 5, Informative

      http://en.wikipedia.org/wiki/Malware#Trojan_horses

      Apparently I still go by the traditional definition. What do you think I'm missing?

      --
      "Common sense will be the death of us all"
    5. Re:there is no Apple AV group by narcc · · Score: 4, Funny

      that one hung out there just a wee too much

      That's what she said!

      --
      Required reading for internet skeptics
    6. Re:there is no Apple AV group by amicusNYCL · · Score: 5, Insightful

      If this is a trojan, then exactly what piece of legitimate software is it piggybacking on in order to get installed? It sounds to me like it's exploiting a Java vulnerability using an applet that does not disguise itself as something useful, it is specifically to install the payload. That sounds like a traditional virus. Previous versions that were actual trojans were embedded in warez downloads.

      --
      "Our two-party system is like a bowl of shit looking at itself in a mirror." - Lewis Black
    7. Re:there is no Apple AV group by Yaztromo · · Score: 4, Informative

      It sounds to me like it's exploiting a Java vulnerability using an applet that does not disguise itself as something useful, it is specifically to install the payload. That sounds like a traditional virus.

      A virus is self-propagating. AFAIK, while this does propagate over networks, it isn't self-propagating (i.e.: infected nodes don't go around infecting other nodes). Hence, not a virus.

      That's not to diminish its threat; simply that correct taxonomy aids in discourse towards finding a solution, and preventing similar malware in the future.

      Yaz

    8. Re:there is no Apple AV group by Anonymous Coward · · Score: 5, Informative

      Woo pedantic! Here are the given definitions, as I understand them:

      Virus = self-propagating, but does not run on its own. Requires some legitimate program which it exploits and modifies saved data to maintain itself. For example: a virus would enter a system as an infected word document, which would add macros into your copy of word infecting all of the word documents you edit after becoming infected. In general, the virus itself is not very useful, but frequently they're used as a piggy-back which downloads a...

      Trojan-horse = program which gives a malicious user control over a system remotely. This is frequently done via IRC, but newer programs have become far more sophisticated using P2P protocols of their own design or hiding it as fake HTTP requests making traffic analysis more difficult. The trojan horse itself is NOT self-propagating, but it will put a ton of hooks around the system to re-download/re-deploy itself if it gets shut off. In general its only goal is to just keep running and allowing the malicious user to abuse the machine. Now frequently the malicious user will use the trojan horse to send out fake emails or other things which leads to propagation, but the program itself doesn't necessarily do it.

      Worm = program which attempts to spread itself. It gets on a host machine and does something (normally immediately, sometimes with an incubation period, frequently involving email, sometimes 0-day exploits to networked computers) to try and get to more machines. After it has attempted to spread itself around, it will frequently follow-up by downloading a trojan horse, or sometimes it will contain the trojan horse functionality itself.

      Straight up worms have kind of fallen out of style these days though. They're a bit too obvious and their repeated, predictable behaviour leads to them being spotted and blocked after not very much time out in the wild. And without some sort of trojan horse functionality there's not much point. Trojan horse functionality allows a central command to update the code and makes the worm a more useful product, eventually getting it on more computers and keeping security researchers guessing longer.

      Anyway, hope this actually gets modded up by someone and people use these and or tell me I'm an idiot.

  4. Of course not. by JustAnotherIdiot · · Score: 4, Insightful

    We don't know the antivirus group inside Apple.

    Apple is to arrogant to admit they have any flaws, so odds are there isn't one.
    Just like with the iPhone 4 antenna, they'd rather take bad PR and have their users suffer than admit there's an issue.

    --
    What do I know, I'm just an idiot, right?
    1. Re:Of course not. by Mojo66 · · Score: 4, Insightful

      As much as I love Apple products, I hate their arrogance towards anything related to security. Could break their neck.

    2. Re:Of course not. by idontgno · · Score: 4, Funny

      Good point. I bet Apple's response to this trojan is "You're holding it wrong."

      --
      Welcome to the Panopticon. Used to be a prison, now it's your home.
    3. Re:Of course not. by CAIMLAS · · Score: 4, Interesting

      Judging by the actual support and bugfixes most Apple software seems to get (ie, none - they're worse than Microsoft in this regard, by a long shot),

      Apple's MO is as follows:

      * ignore the claims
      * deny the claims
      * blame the users when popular appeal brings large media attention (it rarely gets this far)
      * offer a weak consolation, still blaming the user.

      --
      ~/ssh slashdot.org ssh: connect to host slashdot.org port 22: too many beers
  5. Blaming the messenger by cpu6502 · · Score: 4, Informative

    "I found a security hole in your OS....."

    "It's your fault scumbag. Keep quiet!" - Apple. Other companies have tried the same tactic, trying to silence/punish security people from publishing known holes. Like Microsoft. Sony. Nintendo. The Bluray Cartel.

    --
    My AC stalker: " I personally agree with your posts most of the time, but that won't keep me from modding you troll"
    1. Re:Blaming the messenger by ray_nicov · · Score: 5, Informative

      Dr. Web is one of the leading security companies (at least in Russia) and they've been around since 1992. They are by no means 'nagware' or 'junk scanner' - they tools are legitimate, powerful and useful

    2. Re:Blaming the messenger by SmurfButcher+Bob · · Score: 4, Insightful

      Eh? Not to make a "no true Scotsman" plea, but the security world is not that big. If Apple hasn't heard of them before, it means that Apple has no presence in this field. Not surprising when you consider that can't seem to keep their top-secret iphone prototypes in their pants.

      Next, you'll excuse Utah for not knowing that Oracle is a giant security suck-hole. And in other news, RSA didn't realize that PDFs can carry exploits. Uh...

      --

      help me i've cloned myself and can't remember which one I am

  6. 'We don't know the antivirus group inside Apple.'" by Anonymous Coward · · Score: 5, Informative

    Because there aren't any, I worked for them and customers that called in were routinely told there is nothing to worry about when it comes to malware.
    On their corporate side you would be amazed at who states exactly the same thing when they should know better.

    Just a taste:
    http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=OS+X&filter_exploit_text=&filter_author=&filter_platform=0&filter_type=0&filter_lang_id=0&filter_port=&filter_osvdb=&filter_cve=

  7. No overwhelmingly surprising by gubers33 · · Score: 4, Informative

    Apple has had the benefit of so many years of being such a small market share that it did not make sense for people to create Trojans that targeted them. However, Microsoft has had to respond to threats over the years and had the time to develop processes to assess threats and work with security researchers. Apple has ended up behind the curve in this spectrum because of how long they had a small market share. If Apple is able to suck up their pride and work with the researchers they could end up being able to deal with such threats appropriately, but right now their pride is getting the best of them.

    --
    Just because you are wrong and I called you out on it doesn't mean I am a Troll.
    1. Re:No overwhelmingly surprising by sohmc · · Score: 4, Insightful

      But in Apple's defense, the permissions structure of Macs are inherently different than on a Windows machine.

      Most mac users run at normal user level, a la Linux/Unix. When the computer needs to do something at the priveleged level, it asks for a password.

      Most Windows users usually run as administrator by default. Anytime some virus/trojan wants to do something, it just prompts the user with a "Hey, Windows Explorer wants to do something. Continue?"

      There is something different about having to type in a password than just clicking ok. Then again, Windows has so many random dialogue boxes that most users don't read them anymore.

      --
      We don't live in Shouldland.
    2. Re:No overwhelmingly surprising by w_dragon · · Score: 5, Insightful

      You don't need to be admin to be a botnet member, a user process will work just fine.

  8. Re:"We don't know the antivirus group inside Apple by neonv · · Score: 4, Informative

    'We don't know the antivirus group inside Apple.' means they haven't been to able to talk to them and get to know them. I saw the website, and I feel safe saying I don't know the Apple AV group. I'm sure Sharov found the website. As they said in the article, they just get no response from Apple.

  9. Re:"We don't know the antivirus group inside Apple by Chris+Mattern · · Score: 4, Insightful

    They did that. They sent email there. They got ignored. What they have for Microsoft, what they *don't* have for Apple, is direct phone numbers/email addresses for the right personnel.

  10. Re:"We don't know the antivirus group inside Apple by DerekLyons · · Score: 4, Insightful

    Seriously? It's that difficult to understand the difference between a generic address that goes $DIETY knows where (and mail rent to it is probably vetted by an intern) and the actual address of the responsible individual(s)/team(s)?

  11. Re:And? by Baloroth · · Score: 4, Insightful

    Yes, they don't have much communication and cooperation with the 'security industry' since it is mostly full of leeches and parasites who make money spreading fear. Now, this doesn't excuse them from failing to acknowledge issues, since that's just as bad, but the less this 'industry' leeches itself to OS X the better.

    Yeah, just let the trojan spread unacknowledged. Ignore it and it will eventually go away, right?

    "Leeches" or not, someone needs to work on stopping malware. MS didn't step up the plate in the past, and I have little reason to think Apple will now (after all, their website still claims "Macs don't get viruses".)

    --
    "None can love freedom heartily, but good men; the rest love not freedom, but license." --John Milton
  12. Re:"We don't know the antivirus group inside Apple by amicusNYCL · · Score: 4, Insightful

    OS X has what, TWO viruses now?

    Wow, they sure are creeping up to the millions on Windows platforms.

    Enjoy it while you can, arguments like that have their days numbered.

    --
    "Our two-party system is like a bowl of shit looking at itself in a mirror." - Lewis Black
  13. Re:"We don't know the antivirus group inside Apple by moronoxyd · · Score: 4, Insightful

    Do you know the difference between communication channels for customers and those for partners and specialists?

    I work in an IT support position, and sure, if I need to contact a special group (say the Exchange administrators) I could use the phone numbers used by the customers... and would waste valuable time by making the call center agent on the other end understand that I need to speak with the admins directly.
    To avoid this, we have phone numbers and email addresses of those other divisions. You know: A direct line.

    The security companies have direct lines to the security teams from Microsoft, and certainly Oracle, Red Had etc.
    This is to everybody's advantage, as it reduces friction and increases response times.
    Only Apple doesn't understand that they are part of an ecosystem where everybody relies to some extend on everybody else...

  14. Re:And? by sir-gold · · Score: 5, Insightful

    A leech that swims by and says "hey, did you know you are bleeding?" isn't much of a leech. Other than a bit more fame, what does dr web gain from this, it's not like they are extorting apple.

    I'm curious were you picked up the idea that security researchers and fake-av sellers were somehow related?

    Do you also assume that anyone yelling "fire" in a crowded building is just trying to make everyone scared? if so, I hope you are in a building fire some day so you can ignore the warning, safe in your fire-proof pants

  15. Re:"We don't know the antivirus group inside Apple by sir-gold · · Score: 4, Insightful

    You only need one bubonic plague...

    It doesn't matter how many mac viruses there are as long as apple continues to plug it's ears when it comes to mac viruses.

  16. Corroboration? by CyberLife · · Score: 4, Interesting

    As with any other claimed discovery, I'd like to see independent corroboration. I'm not saying it doesn't exist, just that I personally haven't seen it. Everything I've read credits Dr.Web as the source. Has nobody else confirmed their findings?

  17. In my experience... by blueg3 · · Score: 5, Interesting

    Not surprisingly, the summary is not as accurate as the article.

    Sharov may describe this as "a symptom of a company that has never before had to work closely with the security industry", but the article correctly points out that it's more a symptom of having "little experience working with the community of security researchers who aim to dissect and shut down botnets." The botnet security community is different from the general security community. As far as I know, Apple has a decent working relationship with the latter. It's no real surprise they have limited experience working with the anti-botnet community, since until now they haven't really had botnet problems.

    The article also notes that Dr. Web is relatively unknown and that in the opinion of Kaspersky (which is at least more well-known), Apple is taking the usual appropriate steps.

    As far as them not getting a contact back, that disagrees with my experience in reporting a security vulnerability to Apple. You send a message to their easily-found, catch-all "security" address. In relatively short order, a security engineer gets in touch with you, and you communicate with that person from that point on. It seemed to work just fine, unless, I suppose, you're egotistical enough to think that you should be able to pick up the phone and talk to someone at Apple immediately -- which is a common-enough problem in security.

  18. Re:"We don't know the antivirus group inside Apple by blueg3 · · Score: 5, Interesting

    I e-mailed that address and got a response from a security engineer. Perhaps Dr. Web is holding it wrong.

  19. Re:"We don't know the antivirus group inside Apple by gstrickler · · Score: 5, Interesting

    As someone who has found and reported a (now) patched security vulnerability to that email address, I can say that I agree with Boris Sharov's complaint. You do get an automated response with a case #, that includes the text

    We do not automatically provide status updates on issues as we work on them, but please feel free to request one if needed by replying to this message.

    However, I received no replies to when I did request status updates (and supplied additional information about the affected systems with explicit instructions about what needed to be done to fix existing systems). Even when I contacted other sources (Secunia, who confirmed the problem, and US-CERT), I received nothing from Apple. Nor was the problem addressed in two releases of QuickTime in the year following my report.

    How I finally got a reply from Apple was sending an email to sjobs@apple.com on Sept 4, 2010 with a copy of the now year old security report, and my statement that I was taking it to the full-disclosure list if I didn't hear back from Apple by Sept 15th. Fewer than 6 hours later (on a Saturday), I had a status update from Apple. Here's the meat of that reply:

    Just wanted to let you know that a fix for this issue has been identified, and we are targeting an upcoming release of QuickTime to address it.

    We provide status updates upon request.

    Subsequent emails always got a reply, but before I sent my email to sjobs, it was like talking to a wall. Also, despite assurances that they understood the extent of the problem and my explicit instructions about needed remediation for affected systems, when they finally released the fix 3 months later, it only corrected the problem and did not provide remediation for the permissions on already affected systems, nor did it even mention that there were permissions to be fixed.

    When it became clear that no remediation fix, nor an acknowledgement of the problem was coming from Apple, and ample time had passed for users to have installed the updated version of QT, I submitted my own fix to the Full Disclosure mailing list.

    In total, it was 15 months for Apple to release a fix, a fix that in all likelihood involved altering or removing two lines of code that were granting excessive privileges to specific directories. Even then, they did not correct the permissions on machines that were already affected.

    So, in my opinion, Apple has a long way to go in developing and maintaining communications with those who report security vulnerabilities. And in acting upon those reports in a timely and responsible way.

    --
    make imaginary.friends COUNT=100 VISIBLE=false