Bugs Allowed Hackers To Make Malware Look Like Apple Software (vice.com)

← Back to Stories (view on slashdot.org)

Bugs Allowed Hackers To Make Malware Look Like Apple Software (vice.com)

Posted by msmash on Tuesday June 12, 2018 @02:09AM from the security-woes dept.

An anonymous reader shares a report: For years, hackers could hide malware alongside legitimate Apple code and sneak it past several popular third-party security products for Mac computers, according to new research. This is not a flaw in MacOS but an issue in how third-party security tools implemented Apple's APIs. A researcher from security firm Okta found that several security products for Mac -- including Little Snitch, xFence, and Facebook's OSquery -- could be tricked into believing malware was Apple code, and let it past their defenses. "I can take malicious code and make it look like it's signed by Apple," Josh Pitts, the security researcher at Okta who discovered these bugs, told Motherboard. In a blog post published Tuesday, Pitts explained that the issue lies with how the third-party security tools implemented Apple's code-signing APIs when dealing with Mac's executable files known as Universal or Fat files.

72 comments

Min score:

Reason:

Sort:

The balances with security products. by jellomizer · 2018-06-12 02:20 · Score: 4, Interesting

We all hate virus scanners, and other security products, because they slow our systems way down, they often will slow our systems more then the actual malware would. However the designers need to find some sweet spot on speed of their tools vs effectiveness of these tools. So flaws like this is understandable, because actually validating the signature will take more time to process vs. the current number of malware that uses this trick.
Now that it is known, I expect security companies will now have to fix their code to check for this, and slow our systems down further. Part of the popularity of these closed ecosystems of iOS vs MacOS is the ability to only allow good actors to work on your platform, while blocking any unknown actors (good or bad) from causing harm, reducing the need for external security software which will slow the system down.

--
If something is so important that you feel the need to post it on the internet... It probably isn't that important.
1. Re:The balances with security products. by drinkypoo · 2018-06-12 02:45 · Score: 3, Insightful
  
  What I "hate" (that's a strong word) is that there's no Free OS that is based first and foremost around the concept of security. I for one would be happy to give up most of my system's performance for a significant improvement in security, especially if the system were also more reliable. I can have a second system for high-performance tasks.
  Most people who are not gamers have much more computing power than they really need now (at least in desktops and laptops) and spend most of their time web browsing. Their systems are mostly idle and they could afford to give away substantial performance in exchange for security.
  
  --
  "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
2. Re:The balances with security products. by jellomizer · 2018-06-12 03:02 · Score: 2
  
  OpenBSD or am I walking into a Troll?
  However the big issue with OpenBSD is that it isn't designed well for general computing that we do on our PC's. Being everything that is potentially dangerous is closed and/or locked down. It means when ever we need to do something new, we need to consciously turn off a security feature. While great for hosting and servers where such rigor should be the norm. For your PC it can get annoying rather quickly.
  
  --
  If something is so important that you feel the need to post it on the internet... It probably isn't that important.
3. Re:The balances with security products. by drinkypoo · 2018-06-12 03:23 · Score: 2
  
  OpenBSD or am I walking into a Troll?
  However the big issue with OpenBSD is that it isn't designed well for general computing that we do on our PC's.
  OpenBSD wasn't designed for security first, it was developed from BSD. Security was an afterthought. Fixing holes in BSD is their focus, and while it's not a waste of time, it's not the same as designing an OS for security from day one.
  
  --
  "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
4. Re:The balances with security products. by Anonymous Coward · 2018-06-12 04:11 · Score: 0
  
  Do you not count Qubes? (https://www.qubes-os.org)
5. Re:The balances with security products. by Anonymous Coward · 2018-06-12 04:56 · Score: 0
  
  We all hate virus scanners, and other security products, because they slow our systems way down, they often will slow our systems more then the actual malware would. However the designers need to find some sweet spot on speed of their tools vs effectiveness of these tools. So flaws like this is understandable, because actually validating the signature will take more time to process vs. the current number of malware that uses this trick.
  I understand why they want speed over security, but that demonstrate how companies don't really worry much about security. If security is the number one priority, speed has nothing to do with it. In theory, get it right comes first, and then speed (optimize) comes later. It seems to be impossible in practice especially nowadays.
6. Re:The balances with security products. by eddeye · 2018-06-12 05:05 · Score: 1
  
  So flaws like this is understandable, because actually validating the signature will take more time to process vs. the current number of malware that uses this trick.
  
  That's bullshit. You only need to validate each signature once when the app is downloaded / executed for the first time. How many times a day are you doing that? Vanishingly small. It's not a significant source of slowdown.
  Even if it was, your risk / reward tradeoff is all wrong. You're saving a few seconds a day of processing time, while risking that the occasional malware gets through? That's a terrible risk calculus. I bet you drive with no seatbelts either. Hey, you've never had an accident yet!
  Face it - these products fucked up. There's no excuse for not checking signatures when that's what you claim to do.
  
  --
  Democracy is two wolves and a sheep voting on lunch.
7. Re:The balances with security products. by MightyYar · 2018-06-12 05:18 · Score: 1
  
  no Free OS that is based first and foremost around the concept of security.
  This sounds nice, but in practice it would wind up pretty much the same as the other flavors of OS. The most secure computer is one that it off - do anything useful with it, and you start to make security compromises. The compromises add up to a balance of security and usefulness that exist in every modern OS, and that same dynamic would be true in a "secure OS" even if it started from the other extreme. As the other commenters mentioned, OpenBSD and Qubes exist. Yeah, they modified other OSes (BSD and Xen, respectively), but in the end they resemble what you are asking for.
  
  --
  W..w..W - Willy Waterloo washes Warren Wiggins who is washing Waldo Woo.
8. Re:The balances with security products. by Anonymous Coward · 2018-06-12 06:37 · Score: 0
  
  ALL (Cr)apple software IS malware!
9. Re:The balances with security products. by drinkypoo · 2018-06-12 07:09 · Score: 1
  
  Do you not count Qubes?
  I'd prefer not to have to virtualize entire operating systems in order to run applications. How well does it work without GPU virtualization?
  
  --
  "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
10. Re:The balances with security products. by Anonymous Coward · 2018-06-12 09:44 · Score: 0
  
  You might want to look into qubes. At least, if you were serious about your desire...
11. Re:The balances with security products. by AHuxley · 2018-06-12 12:13 · Score: 1
  
  Pay $40 per year for that security product to work deep in the Apple OS to keep malware out.
  Malware becomes the approved, trusted and secure security products and creates crypto currency over a year.
  All the user can see is trusted and approved apps working in the background.
  
  --
  Domestic spying is now "Benign Information Gathering"
12. Re:The balances with security products. by Anonymous Coward · 2018-06-13 00:57 · Score: 0
  
  ALL Micro(Crap)soft(ware) IS malware!!
  So insightful but in this case true
13. Re:The balances with security products. by Anonymous Coward · 2018-06-13 02:45 · Score: 0
  
  It depends on if your motherboard and CPU support IOMMU at appropriate levels. Oh, and it likely requires you to have 2 graphics cards available, also, so laptops, Macs and AIO-systems are SOL.
14. Re:The balances with security products. by drinkypoo · 2018-06-13 04:05 · Score: 1
  
  It depends on if your motherboard and CPU support IOMMU at appropriate levels. Oh, and it likely requires you to have 2 graphics cards available, also, so laptops, Macs and AIO-systems are SOL.
  I've got two graphics cards, but they are only 950s so I use them in SLI because otherwise they are slowwwww. (One was an RMA replacement for a 750 Ti, then I bought the other one.)
  
  --
  "You're right," Fisheye says. "I should have set it on 'whip' or 'chop.'"
15. Re:The balances with security products. by Andtalath · 2018-06-13 04:10 · Score: 1
  
  Qubes?
16. Re: The balances with security products. by Anonymous Coward · 2018-06-15 06:10 · Score: 0
  
  Wrong.
  Sigchecks happen every time the executable is loaded. Why? Because there is nothing to prevent the executable from being altered between loads. If you only validate it once, you are asking for trouble. Especially if the device owner is hostile. Just ask Microsoft, Sony, and Nintendo.
That's funny... by The+Fat+Bastard · 2018-06-12 02:22 · Score: 1

I had to reinstall iTunes on my Windows 10 PC. I went to the Apple iTunes page and it sent me to... Microsoft App Store. That's right, kiddies. Apple iTunes is now a Windows App. Be afraid... very afraid.
1. Re:That's funny... by Anonymous Coward · 2018-06-12 02:28 · Score: 0
  
  I had to reinstall iTunes
  did you though?
2. Re: That's funny... by Anonymous Coward · 2018-06-12 02:30 · Score: 0
  
  Be afraid of what?
3. Re:That's funny... by Anonymous Coward · 2018-06-12 02:30 · Score: 1
  
  I had to reinstall iTunes on my Windows 10 PC. I went to the Apple iTunes page and it sent me to... Microsoft App Store. That's right, kiddies. Apple iTunes is now a Windows App. Be afraid... very afraid.
  What you should be afraid of is the likelihood that eventually you will only be able to install into Windows from their store.
  Then your choice will be Microsoft's walled Garden, Apple's walled garden, or rolling your own via Linux.
  I can see Microsoft going that route.
4. Re:That's funny... by v1 · 2018-06-12 02:35 · Score: 1
  
  iTunes has been available on Windows for quite some time now. All those windows users that bought an iPhone or iPad and need to put stuff on it.
  It's a lot easier on the windows users to go to the MS store where the download and installation process is familiar.
  Of course iTunes's time as the "gateway to the iPhone" is on borrowed time. Apple is moving away from that to direct cloud access. Users can already do almost everything iTunes can do directly with Apple from their iDevice. By 2020 iTunes probably won't be able to do much of anything directly with your iPhone, regardless of what platform you're on.
  
  --
  I work for the Department of Redundancy Department.
5. Re: That's funny... by Anonymous Coward · 2018-06-12 02:36 · Score: 0
  
  Christopher's next meaningless, content-free post?
6. Re:That's funny... by The+Fat+Bastard · 2018-06-12 02:41 · Score: 1
  
  iTunes has been available on Windows for quite some time now.
  Until recently as a downloadable installer from Apple.
  
  All those windows users that bought an iPhone or iPad and need to put stuff on it.
  I have never synced my iOS devices to a PC. I do watch iTunes movies on my PC screen.
  
  It's a lot easier on the windows users to go to the MS store where the download and installation process is familiar.
  As a Windows user since 3.11, this was my first time using Microsoft App Store.
  
  Of course iTunes's time as the "gateway to the iPhone" is on borrowed time. Apple is moving away from that to direct cloud access.
  That was two or three years ago.
7. Re: That's funny... by Anonymous Coward · 2018-06-12 02:49 · Score: 0
  
  Dave's not here man.
8. Re:That's funny... by Anonymous Coward · 2018-06-12 03:05 · Score: 0
  
  iTunes has been available on Windows for quite some time now. All those windows users that bought an iPhone or iPad and need to put stuff on it.
  It's a lot easier on the windows users to go to the MS store where the download and installation process is familiar.
  Of course iTunes's time as the "gateway to the iPhone" is on borrowed time. Apple is moving away from that to direct cloud access. Users can already do almost everything iTunes can do directly with Apple from their iDevice. By 2020 iTunes probably won't be able to do much of anything directly with your iPhone, regardless of what platform you're on.
  Ok grandpa, are you still waiting for Apple to release a two button mouse too? You're about ten years behind the times in iPhone land. iTunes is for playing music on a computer. Who even does that?
9. Re: That's funny... by Anonymous Coward · 2018-06-12 03:12 · Score: 0
  
  Yes I am.
10. Re:That's funny... by Anonymous Coward · 2018-06-12 03:17 · Score: 0
  
  "Ok grandpa"
  Chris, the fat bastard, gets senior discounts when he gets his flat head shaved at the zoo.
11. Re: That's funny... by Anonymous Coward · 2018-06-12 03:45 · Score: 0
  
  You got the stuff?
12. Re:That's funny... by Anonymous Coward · 2018-06-12 03:52 · Score: 0
  
  The pathetic little troll is back. Did you have fun masturbating all over Slashdot this morning?
13. Re: That's funny... by Anonymous Coward · 2018-06-12 03:56 · Score: 0
  
  And only Microsoft would do it, even considering they hace no power anymore. :D
  I almost feel pity. ...
  Almost.
14. Re: That's funny... by Anonymous Coward · 2018-06-12 04:00 · Score: 0
  
  Umm... The dog ate my stash man.
15. Re: That's funny... by Anonymous Coward · 2018-06-12 05:43 · Score: 0
  
  Calabunga dudeeeeeee!!!
16. Re: That's funny... by Anonymous Coward · 2018-06-12 05:50 · Score: 0
  
  Labrador? What's Labrador?
17. Re:That's funny... by Anonymous Coward · 2018-06-12 05:59 · Score: 0
  
  Not as much fun as you had spraying your watery diabetic stool all over!
  Can you even cum anymore? I mean besides the difficulty of locating your penis without a GPS? (Gut Penis Spotter)
  Does it get semihard?
  We all know you're a chronic liar, confabulator, procrastinator, bullshitter, and pest both online and in meat (and boy, are you ever a lot of meat) space!
18. Re:That's funny... by BronsCon · 2018-06-12 06:09 · Score: 1
  
  It's a lot easier on the windows users to go to the MS store where the download and installation process is familiar.
  Most Windows users have never touched the Windows Store, it's not really that familiar to most.
  
  --
  APK quotes people (including myself) without context and should not be trusted. Just thought you should know.
19. Re:That's funny... by Anonymous Coward · 2018-06-12 10:08 · Score: 0
  
  Somebody please mod this fucking crap down!
  creimer's child bride retired military buddy suggested to him to "hide in plain sight" so creimer picked up "The Fat Bastard" as his new sock puppet user name!
20. Re:That's funny... by Anonymous Coward · 2018-06-12 10:11 · Score: 0
  
  Cryptofeces Lepidoptera Creimerus infestation is a serious problem. Not only are they capable of reproducing asexually like amoebas, they can also lay eggs hermaphroditically in unexpected places. They can disguise eggs as something useful to fool the unaware, sometimes pretending to be a haiku author, blogger, vlogger, or IT closet cleaner.
  Very dangerous. They can seemingly reproduce out of the cosmic background radiation, even if you step on twelve of them, there's always one you miss.
  Don't be fooled by the C. Lepidoptera Creimerus's innocuous, rolly-polly [youtube.com] [youtube.com], and almost friendly appearance; despite its great size, stupid demeanor, and bedraggled toothless appearance, they have the hardiness of a tardigrade.
  Only a concerted, targeted downmodding campaign has been shown effective in controlling this dangerous pest.
  Experience shows that stopping such a campaign leads to C. Lepidoptera Creimerus returning within days.
  Don't let it happen again!
21. Re:That's funny... by Anonymous Coward · 2018-06-12 10:16 · Score: 0
  
  Dear Team Creimer,
  My name is Dave Fournier and I am director of the Alien Con 2018 affiliate programs.
  We still have room for affiliates and we have an even more interesting proposal for you that would bring a lot of attention towards yourself at the Alien Con. Nobody will miss you and imagine the impact on your long tail revenue streams!
  Here is the punch; we are looking for someone to impersonate Jabba the Hutt at the Alien Con and we can't think of a better candidate than yourself.
  As a signing bonus, you would get all the Alien Con employees used lottery tickets so this will be a win-win for everybody!
  Let us know if you are interested please.
  I hope to hear from you soon...
  --
  Dave
22. Re:That's funny... by Anonymous Coward · 2018-06-12 10:23 · Score: 0
  
  Since you enjoy chatting with creimer so much...
  Here is the story of creimy the mountain and his royalties!
  This story was inspired by cdreimer, the parent poster. The story was written by a visionary on cdreimer birth date.
  The story of creimy the mountain explained:
  https://en.wikipedia.org/wiki/...
  
  Creimy is a typical mountain who poses for postcards, living with his wife Ethel, a tree, between the cities of Rosamund and Gorman, California. The main features on his mountainous face are two large caves, resembling eyes, and a cliff for a jaw, which moves up and down when he talks, puffing up dust and boulders.
  click above link to read more, he even destroyed Edwards Air Force Base just by passing by...
  Listen to the audio version here:
  https://www.youtube.com/watch?...
  "Creimy The Mountain"
  includes quotes from Pomp and Circumstance March No. 1 in D major (Edward Elgar), Johnny's Theme (Paul Anka), Off We Go Into The Wild Blue Yonder (Crawford), O Mein Papa (Paul Burkhard), Over The Rainbow (Harburg/Arlen), Star-Spangled Banner (Smith/Key), Suite: Judy Blue Eyes (Stephen Stills)
  One, two, three
  CREIMY the Mountain
  CREIMY the Mountain
  A regular picturesque
  Postcardy mountain
  Residing between lovely
  Rosamond and Gorman
  With his stunning wife ETHELL, A tree! A tree!
  CREIMY was a mountain ETHELL was a tree Growing off of his shoulder
  CREIMY was a mountain
  (CREIMY was a mountain!)
  ETHELL was a tree Growing off of his shoulder
  (ETHELL was a tree growing off of his shoulder)
  (hey, hey hey!)
  Creimy had two big
  Caves for eyes,
  With a cliff for a jaw
  That would go up 'n down,
  And whenever it did,
  He'd puff out some dust,
  And hack up a boulder (HACK!) Hack up a boulder (HACK! HACK!)
  Hack up a boulder (HACK! HACK! HACK!) Up a boulder
  Now, one day, now I believe it was on a Tuesday, a man in a checkered double-knit suit drove up in a large El Dorado Cadillac, leased from BOB SPREEN
  ("Where the freeways meet in Downey!")
  And he laid a HUGE, BULGING ENVELOPE right at the corner of CREIMY THE MOUNTAIN, that was right where his 'foot' was supposed to be.
  Now, CREIMY THE MOUNTAIN, he couldn't believe it! All those postcards he'd posed for, for ALL OF THOSE YEARS, and finally, now, AT LAST, his Royalties!
  Royalties! Royalties Royalties! Royalty check is in, honey!
  Yes, CREIMY THE MOUNTAIN was RICH! Yes, and his eyeball-caves, they widened in amazement, and his jaw (which was a cliff), well it dropped thirty feet!
  A bunch of dust puffed out! Rocks and boulders hacked up, (hack! hack!) crushing 'The LINCOLN'!
  I gave him the money He acted real funny He hocked up a rock and It TOTALLED my car!
  Oh, do you Know any trucks Might be bound for THE VALLEY?
  I don't wanna stand here All night in this bar (Dear Lord)
  I don't wanna stand here All night in this bar (No shit!)
  I don't wanna stand here All night in this bar!
  By two o'clock, when the bars are already closed down, CREIMY had broken 'THE BIG NEWS' to ETHELL. And with dust and boulders everywhere, CREIMY, choked with excitement, announced
  "ETHELL, we're going on a VACATION!"
  Yes, and they WERE going on a vacation! (Oh, and ETHELL, ETHELL, ETHELL, like every little woman, she of course was very excited! She creaked a little bit, and some old birds flew off of her.) CREIMY told ETHELL they were going to Yes! They were going to NEW YORK!
  "ETHELL, we're going to New York!"
  But first they were gonna stop in LAS VEGAS
  It's off to LAS VEGAS to check out the lounges Pull a few handles,
  And drink a few beers, (Oh, ETHELL!)
  ETHELL, my darling, you know that I love you!
  I'm glad we could have a Vacation this year! (Oh, NEET-O!)
  Glad we could have a Vacation this year!
  The
23. Re:That's funny... by Anonymous Coward · 2018-06-12 10:29 · Score: 0
  
  Wow, what a day!
  At last somebody with the same grammatical level as creimer. Perfect candidate to chat with creimer.
  I hope you guys can become buddies Chris!
24. Re:That's funny... by Anonymous Coward · 2018-06-12 11:33 · Score: 0
  
  Team Creimer dreams:
  https://www.youtube.com/watch?...
  I have just closed my eyes again
  Climbed aboard the Team Creimer train
  Driver take away my worries of today
  And leave tomorrow behind
  Team Creimer, I believe you can get me through the night
  Team Creimer, I believe we can reach the morning light
  Fly me high through the starry skies
  Or maybe to an astral plane
  Cross the highways of fantasy
  Help me to forget today's pain
  Team Creimer, I believe you can get me through the night
  Team Creimer, I believe we can reach the morning light
  Though the dawn may be coming soon
  There still may be some time
  Fly me away to the bright side of the moon
  And meet me on the other side
  Team Creimer, I believe you can get me through the night
  Team Creimer, I believe we can reach the morning light
25. Re: That's funny... by Anonymous Coward · 2018-06-12 16:14 · Score: 0
  
  Shut up tardchris
Evil hacker here by Anonymous Coward · 2018-06-12 02:50 · Score: 0

You can also make malware look like microsoft software, but at this point it just seems kind of redundant.
TheFatBastard is CRE1MER by Anonymous Coward · 2018-06-12 02:52 · Score: 0

If you talk to creimer people might mod your post down
Just heads up nobody can stand the fucker and mod they down any discussion threads he's part of
1. Re:TheFatBastard is CRE1MER by Anonymous Coward · 2018-06-12 03:23 · Score: 0
  
  Whatever happened to datavirtue, Joe Dragon, APK and God being creimer?
2. Re:TheFatBastard is CRE1MER by Anonymous Coward · 2018-06-12 03:48 · Score: 0
  
  Datavirtue and Joe Dragon both seem to have the same mental defects as you, Chris, so the mistake was natural.
  There is no god, so that's moot.
  Your 15 sock pocket "cashews" accounts show that you have several personality defects, that obviously were not addressed during your therapy.
  https://www.smashwords.com/pro...
3. Re:TheFatBastard is CRE1MER by Anonymous Coward · 2018-06-12 04:41 · Score: 0
  
  Your 15 sock pocket "cashews" accounts show that you have several personality defects, that obviously were not addressed during your therapy.
  Funny how all those cashews accounts went quiet after FatCashewsLoveMe got banned for copyright infringment. But you already knew that, FCLM
4. Re:TheFatBastard is CRE1MER by Anonymous Coward · 2018-06-12 10:03 · Score: 0
  
  Just right after creimer left Slashdot for YouTube so many months ago.
5. Re:TheFatBastard is CRE1MER by Anonymous Coward · 2018-06-12 13:45 · Score: 0
  
  Yup. You "left" and came "right" back with even more bottom-feeding alts, Chris.
Cast Apple Out Sayeth The Lord! by Anonymous Coward · 2018-06-12 02:53 · Score: 0

Stay with the proven-safe Windows 10! Go forth and multiply, my children! Multiply at every opportunity, my children!
You mean . . . by Joey+Vegetables · 2018-06-12 02:55 · Score: 1

You mean there's a difference????

--

Nonaggression works!
*Yawn* Security products are bad at job by Anonymous Coward · 2018-06-12 02:59 · Score: 0

Security products are bug ridden and bad at the task the purport to do. This is nothing new. As for popular, these products are way over touted. Mac security is not based on the antivirus software you use but rather on fixing the bugs. I have never seen xFence but I have had to remove Little Snitch from a few Mac after it was advertised in the local Catholic church and proceeded to trash each Mac it was installed on. Facebook's product never worked right and I have long and forcefully instructed users to avoid Facebook. They more or less don't listen which is why they still use Facebook to see the ads instructing them to update Flash Player which is not Flash Player but some trojan or another instead. Meh it pays a few bills.
Bugs Allowed Hackers To Make Malware Look Like App by Anonymous Coward · 2018-06-12 03:05 · Score: 0

Ah. So that explains iTunes.
Yes! by Anonymous Coward · 2018-06-12 03:35 · Score: 0

Because "hackers"!!!111!elebenty!!1!
As an XCode user I thought by oldgraybeard · 2018-06-12 03:35 · Score: 1

that to get an app in to the Apple Store the source/install had to be submitted to Apple for review. So either I am mistaken or Apple is not doing a good job of review. TBH I don't know, I develop In-House apps for clients. And have not tried to use the App Store as a distribution point.

Just my 2 cents ;)
1. Re:As an XCode user I thought by Anonymous Coward · 2018-06-12 03:48 · Score: 0
  
  This has nothing to do with the app store. Take your 2 cents and buy yourself some reading comprehension lessons.
2. Re: As an XCode user I thought by Anonymous Coward · 2018-06-12 05:46 · Score: 0
  
  LOL
3. Re:As an XCode user I thought by BronsCon · 2018-06-12 06:12 · Score: 1
  
  Be gentle, he's an XCode user.
  
  --
  APK quotes people (including myself) without context and should not be trusted. Just thought you should know.
"Facebook's OSquery" by 93+Escort+Wagon · 2018-06-12 04:37 · Score: 1

It's possible this particular application is legit, but - why would anyone with any intelligence allow any app from Facebook to have that level of access to their system?
Or have I answered my own question?

--
#DeleteChrome
1. Re:"Facebook's OSquery" by Anonymous Coward · 2018-06-12 06:58 · Score: 0
  
  Because it's actually a pretty nifty idea/tool. I'd never heard of it until just now, even though it's been out in the wild for a few years now.
  You might be surprised to find that it's open sourced so you can audit it and build it yourself.
The hackers will regret this by houghi · 2018-06-12 04:58 · Score: 1

Now they have awoken the beast. The legal copyright team of Apple is self aware and ready for its pray.
I feel sorry for the hackers. Smitten like ants under a loop.

--
Don't fight for your country, if your country does not fight for you.
what the diff by Anonymous Coward · 2018-06-12 05:20 · Score: 0

third party malware vs apples first party malware.
Did the hackers install more CPU throttling code?
Comment removed by account_deleted · 2018-06-12 05:52 · Score: 1

Comment removed based on user account deletion
Malware Makes Bugs Look Like Apple Software. by Anonymous Coward · 2018-06-12 06:17 · Score: 0

Interesting!
Re:Ready for blast off by Anonymous Coward · 2018-06-12 07:37 · Score: 0

So soon?
Not a flaw in MacOS? by RhettLivingston · 2018-06-12 07:50 · Score: 1

The FDA has denied many drug approvals or sent them back to the drawing board on how it is delivered if tests showed that the users could not be counted on to reliably administer them. Difficult to use placement of controls in cars have caused major losses to auto companies on multiple occasions. Usability is an important design feature in many areas of design.
Usability of a security API is a feature that can have bugs. I'm guessing that these tools with bugs were not created by stupid people and they all made the same mistake in implementing their use of this security API.
Why would the security API be outright absolved of fault in this case? Is there not a pattern of error that is likely the result of some design pattern in the API since it is recurring?