The Mac Observer

Skip navigational links

Choose text size: Select small text. Select medium text. Select large text.

You're viewing an article in TMO's historic archive vault. Here, we've preserved the comments and how the site looked along with the article. Use this link to view the article on our current site:
Symantec: Mac Virus, Hacker Attacks on the Rise

TMO Reports - Symantec: Mac Virus, Hacker Attacks on the Rise

by , 10:45 AM EST, March 23rd, 2005

With the introduction and popularity of Mac OS X, Apple Computer has become an increasingly bigger target for viruses and hacker attacks, according to a report from anti-virus software vendor Symantec Corp.

"Contrary to popular belief, the Macintosh operating system has not always been a safe haven from malicious code," said the 96-page report, entitled the Symantec Internet Security Threat Report, obtained by The Mac Observer. "It is now clear that the Mac OS is increasingly becoming a target for the malicious activity that is more commonly associated with Microsoft and various Unix-based operating systems. Symantec believes that as the popularity of Apple's new platform continues to grow, so too will the number of attacks directed at it."

"I think it's fair to say that Mac users today shouldn't believe they're impervious to attacks," David Cole, Symantec product management security response director, told TMO.

More Macs sold = more security concerns

While Mr. Cole admitted there is no actual data to prove a connection, he said say "it's reasonable to assume that with in increase in market share and popularity comes an increased interest by the hacker attacker community to go after the Mac. No platform is absolutely free of vulnerabilities and no users at the end of the day are impervious because they use a particular product."

The report said an increase in market share for the Mac will be impacted by sales of the much lower priced Mac mini -- a US$500 computer sold without a display, keyboard or mouse -- which may be purchased by less "security-savvy" users. "As a result, the number of vulnerabilities can be expected to increase, as will malicious activity that targets them," the report stated.

The report was clear to say that while the number of vulnerabilities in Mac OS X is expected to increase, they will likely be outnumbered by vulnerabilities in other operating systems, such as Microsoft Windows, for some time to come.

Symantec said it had documented and Apple had confirmed 37 "high-severity vulnerabilities" in Mac OS X since July of last year.

"The appearance of a rootkit called Opener in October 2004, serves to illustrate the growth in vulnerability research on the OS X platform," the report stated. "Additionally, multiple remote and local vulnerabilities have been disclosed that affect both the server and desktop versions of OS X. Vulnerabilities in the Apple windowing system and development kit and in the Apple default Apache configurations are two of the nine vulnerabilities (not all of which were high severity) for which Apple released patches."

A rootkit is a hacker security tool that captures passwords and message traffic to and from a computer. The kit is a collection of tools that allows a hacker to create a backdoor into a system, collect information on other systems on the network and mask the fact that the system is compromised.

Browser attacks very high

Mr. Cole said the biggest "holes" for hackers to attack are vulnerabilities in browsers, where 70% of reported vulnerabilities were considered easy to exploit.

"We saw a large increase over the past six months in security attacks as the market share for Mozilla-based browser climbed," he said. "Their have been 21 documented security concerns with Mozilla in the past six months, which is more than (Microsoft) Internet Explorer."

"This is a massive increase over the single Mozilla vulnerability documented in the previous period and the seven noted in the same reporting period one year ago," the report said.

Between July 1 and December 31, 2004, Symantec documented 13 vulnerabilities affecting Microsoft IE, nine considered high severity. Six vulnerabilities were reported in Opera and none in Apple's Safari browser.

The report called the zero number of confirmed Safari vulnerabilities "somewhat surprising given the increasing popularity of Mac OS X," but suggested that as the browser grows in usage, so will the attacks.

Mr. Cole: Common sense fends off attacks

Mr. Cole said the classic and basic rules still apply to fend off virus and hacker attacks.

"Keep your operating system up to date, your browser to date and your virus definitions up to date," he said. "If you do that, your chances of having problems are minimal."

Observer Comments

Show: Subjects Only | Full Comments
Goto page Previous  1, 2
Close Name:davidneale Posts: 987 Joined: 26 Aug 2001
Sat Mar 26, 2005 5:10 pm Subject: Re: For those

Quote
Anonymous wrote:
There was a time when people thought Windows was safe too.


When was that? I worked professionally with Windows (and before that, "pure" MS-DOS) and it was never thought to be safe. Heck, MS-DOS, and so Windows, too, was so full of holes it was ridiculous (still is, come to that) and nobody considered it safe.

MacOS was not completely immune, but you really had to try to catch something (or use HyperCard on which there was quite a pleasant "Happy Birthday" virus) if you really wanted an infection. MacOS X is considerably better than that. Heck, you practically have to actually install a virus to get one.

There can be only one reason for any anti-virus app manufacturer to warn about MacOS X viruses and that's to sell more of its product. Sensible usage and MacOS X is all that is necessary to remain secure.


 Reply | Quote
Close Name:Guest
Sat Mar 26, 2005 10:59 pm Subject: A Must Read For the Author of "Idiots."

Quote
Guest wrote:
You guys are idiots. Go bed down with your mac's some more. . . . See, this is why mac people suck. Bunch of wannabe hipsters.



Reply:
There is a name for the syndrome you display. In psychiatry, it is called "Mac Envy." The American Psychiatric Association's currently recommend therapy include purchasing a mac mini, along with an iPod and tose your windows machines out the window. Some may find smashing their windows machines with a baseball bat, along with a picture of Bill Gates posted on the monitor cathartic.

Although the current recommend treatment is not guaranteed to fully heal your deepest scars inflicted on the more vulnerable areas of your psychy, it has been general effetive for most patients. Psychiatrists are currently working day and night to find more effective measure, as I assure you, you are not alone, my friend.

Other than recommending that you consulting your nearest psychiatrist at the soonest possible date to end the pain, there two sources I recommend that your check up on regularly so that you may remain eduated about the latest developements regarding your condition.

http://www.psych.org/

http://www.pubmedcentral.nih.gov/

Good luck my friend, there is hope for you yet.

Roger

Disclaimer: I am not a psychiatrist, nor do I ever wish to become one. I have posted this message simply out of altruistic concern for the welfare the author of the posting titled "Idiots."


 Reply | Quote
Close Name:Mac_User Posts: 9 Joined: 27 Mar 2005
Sun Mar 27, 2005 12:29 am Subject: Mac and viruses

I think P.C.s are great I think they are the best And i think they are cool So hackers and phishers and crackers and any body who hates Macs, leave us be, it's the higher ups: Skull and Bones et al who you should concentrate on and they use P.C.s. We only corner 1% of the market. We are not the elitist!

BTW, on the Leo La Porte Show on KFI 640 (www.kfi640.com from 11 a.m. to 2 p.m. PST or -8 GMT), the guy from Tech T.V.s CFH etc., said that P.C.s are good computers, but if you don't want viruses or spyware, Macs are the best.


 Reply | Quote
Close Name:Guest
Sun Mar 27, 2005 11:13 am Subject: Symantec

I can't say I'm a big Symantec fan in the first place: we recently bought Norton Systemworks 2005 because we needed Ghost. After registering it, their support policy is to charge approx $29.95 for per-incident issues. If the answer to my problem (having trouble booting with the recovery disk) isn't on their web page, pay up!

But this article was a joke. Yeah, it's along the same lines as the Bu$h idiots paying for airplay to push their crap... IMO, the main reason Macs have no virii is the inherent security of OS X out of the box-if you need an administrator password or root access to make your virus work, why bother? There's unlimited numbers of unprotected windows machines begging to get hit.


 Reply | Quote
Close Name:Regicide Posts: 1 Joined: 28 Mar 2005
Mon Mar 28, 2005 10:21 pm Subject: Jesus, don't take it so personally

It occurs to me that perhaps I'm not an angry enough person to own a Mac...

http://www.faqs.org/faqs/computer-virus/macintosh-faq

It really doesn't seem like the Mac malware that has come out is entirely different in practice than the Windows type, regardless of how different it may be in design. I wouldn't be so dismissive of the points Symantec makes simply because you're so devoted to the underdog in your version of the console wars, they're fairly good at what they do, and what they do ensures that they're aware of how widespread those problems are becoming.

The Mac market share is expected to go up to 5%, honestly, step inside the mind for a minute of a pubescent obnoxious hacker type and ask yourself which part of the pie chart you would go after if your cold, dead heart pumped pure gasoline...

I'm a Windows user, out of my love of 90% of the software market and gaming and right-clicking, not because I'm not filled with all sorts of enmity towards microsoft. But being a Windows user, I'm also more conscious of stability and security issues that Mac users may take for granted. I have Firefox, a full antivirus suite and half a dozen anti-spyware/adware programs, if something gets by me at this point, it's because *I* messed up.

-Scott


 Reply | Quote
Close Name:Guest
Mon Mar 28, 2005 11:55 pm Subject:

"I wouldn't be so dismissive of the points Symantec makes simply because you're so devoted to the underdog in your version of the console wars, they're fairly good at what they do, and what they do ensures that they're aware of how widespread those problems are becoming. "

I'm not dismissive of the points Symantec makes because of some kind of devotion to Macs, I'm dismissive of the points Symantec makes because they're complete and total bunk. I'm pretty sure that's why everyone else here is so dismissive of them, too.

They even admit that their claim is based on thin air, with absolutely no evidence for what they're warning of. So before you say Symantec is aware of how widespread problems are becoming, you might want to make sure that they're talking about problems that exist.


 Reply | Quote
Close Name:Guest
Mon Apr 04, 2005 11:07 pm Subject: Zero Exploits?

Where'd you get that idea? Did you just decide that there were no exploits for OS X security vulnerabilities because you felt like it should be so?

It's ridiculous to think that there would be 37 security vulnerabilities released and no one decided to write exploits for them.

In fact there are numerous exploits... most of them are local privilege escalation exploits (since most of the vulnerabilities only locally exploitable), but there are also remote overflow exploits out there, and have been for over a year.


 Reply | Quote
Close Name:Guest
Mon Apr 25, 2005 10:23 am Subject: You guys are idiots.

I am one of the new idiots who have just bought a Mac Mini. - I Love It!
I Love even more not having to:-
Buy Anti-Virus (although I suspect the author of the above comment doesnt pay for anything!)
Run Anti-spyware,
Wait for Windows updates to load and re-boot every month,
Wait for virus updates every 3/4 days,
So all you Windows bigots - keep updating!


 Reply | Quote
Comment on this Article


Guest Posts Visible. Hide Them.
Back to top  Page 2 of 2  Goto page Previous  1, 2  

You cannot edit your comments.   You cannot delete your comments.

Comments are currently closed. Please email the author instead.


Recent Headlines - Updated November 21st

Fri, 7:07 PM
Games - Soccer Sim Championship Manager 2010 Released for Mac
6:47 PM
Games - EA Publishes Original Monopoly for iPhone
6:15 PM
News - Original Apple I on Ebay for $50K, w/Letter from Steve Jobs
6:11 PM
Games - New iPhone Games: Secret of the Lost Cavern Ep 1, New DJ Nights, More
5:47 PM
Games - Star Trek D-A-C Game Headed to the Mac Next Month
4:57 PM
Product News - TidBITS Releases “Take Control of Syncing Data in Snow Leopard”
4:26 PM
John Martellaro's Blog - Particle Debris (week ending 11/20) Stationery Pads Go Poof
2:59 PM
Free on iTunes - Musée du Louvre, Art Lite, SketchBook Mobile X and More.
1:50 PM
Deal Brothers - Acer P215H bmid 21.5” Widescreen LCD Monitor:  $139.99
11:24 AM
TMO Appearances - Jeff Gamet Shares More Holiday Gift Ideas on MacJury
10:43 AM
Product News - Cocktail 4.5 for Leopard Adds QuickLook Cache Clearing
10:06 AM
News - Hack Enables Mac OS X 10.6.2 on Netbooks

The Mac Observer Reader Specials
  • __________
  • Buy Stuff, Support TMO!
  • Podcast: Mac Geek Gab
  • Podcast: Apple Weekly Report
  • TMO on Twitter!