DealsOnTheWeb Daily Deal: Buy.com's After-Christmas Super Store - Check out the Revolving Savings
MacForensicsLab Publishes White Paper on Mac Malware
by , 1:50 PM EST, March 5th, 2008
Some users believe that their Macs are absolutely invulnerable to viruses, trojans, and worms. Technical professionals, however, know that all OSes have some degrees of vulnerability. The MacForensicsLab, in concert with SubRosaSoft, has published a white paper on the state of Mac OS X malware with a mind towards educating users on the state of Mac system security. One observation was that a sense of false security can be very dangerous indeed.
In order to keep the reading light and approachable, the white paper is sprinkled with graphics, anecdotes and some Apple history. There are plenty of references if users want to dig further.
One of the themes was that the growing market share of Macs make it more financially rewarding for professional hackers to engage the Mac. When combined with a false sense of security by Mac users, the benefits of attacking the platform are compounded.
"Most Mac users take security too lightly. In fact, most are quite proud of the fact that they don't run any security at all," Chris Christiansen , an IDC analyst was quoted. "That's an open door; at some point it will be exploited."
Some proponents of the Mac have pooh-poohed the idea that Mac OS X users need to be cautious and go on to claim that companies that specialize in security software are just trying to drum up business with alarmist reports. They point out that the FreeBSD system on which Mac OS X is based is open source, patched regularly, and well architected.
Despite the occasional Chicken Little story, this white paper pointed out some things that literate Mac users should be aware of. Some components of Mac OS X are not open source, but proprietary. In addition, the package/bundle structure of Mac OS X applications is one possible mechanism for embedding malicious code. That's because many Mac users don't know that their applications are, in fact, entire directory structures full of scripts and code, comprising perhaps many hundreds of files.
Some of the other design issues of Mac OS X and its strengths (the Leopard Sand Box) and weaknesses (Address Book) were discussed in a calm, professional fashion.
Apple's own document on Mac OS X security was cited as a handy reference.
Technical professionals know how to secure their Macs in the enterprise, and while non-professional Mac users know that Mac OS X is well designed and constantly patched, being armed with a little more knowledge is always a good thing. This white paper serves that purpose.
Observer Comments
It would be more convincing if the people who write articles about holes discovered in the operating system could give examples of viruses or other successful attacks on the Mac.
Hackers like a challenge, and hacking a PC is old hat. Hacking a Mac would be a great exploit. So, market share is not a valid measure for virus frequency.
Before Mac OS-X there were plenty of viruses for Mac. Please list the active viruses now.
From the summary, it doesn't sound as though they're claiming that there is malware out (other than proof-of-concept), they're claiming that there are exploitable *people* who run OS X.
I admin many Mac boxes, and don't worry about viruses, but I know enough to lock down the machines anyway. You run an open Telnet server, or type your Admin password whenever it's asked, or engage in other unsafe behaviors and you're looking for trouble.
Doesn't matter what the OS is, if you run everything without a skeptical eye.
rm -rf script in an app could cause a lot of damage before you know it...
when a destructive virus/trojan/malware does become widespread within the apple community, Apple CO will take the hit for not 'making OS X" perfect and 100% - whatever that means.
I think prudence and constant education are not a bad thing. Give the propensity for people in the US to NOT TAKE personal responsibility and to bring legal law suits at the drop of a hat, (hot coffee anyone? - have you seen the stickers on ladders lately? - patent trolls) Apple should do more to educate the Apple base about the potential for virus/malware etc.
However, how I relish the current lack of virii for mac. Windows users do have it tough.
Recent Headlines - Updated January 7th
- Wed, 6:20 PM
- Macworld Expo 2009 - Ecamm Introduces World’s First Bluetooth Webcam
- 6:16 PM
- News - Verbatim Announces Speaker Keyboard, Store ‘n’ Go Micro USB Drive
- 6:09 PM
- Photo Gallery - Photo Gallery: Macworld 2009 Day 2
- 3:24 PM
- Just a Thought - First Time Macworld Impression
- 12:16 PM
- News - EMC Issues Beta of Retrospect 8.0 Backup Software
- 12:04 PM
- News - REAL Server 2009 to Ship Next Month
- 11:40 AM
- News - Livescribe to Bring Pulse Smartpen Software to Mac
- 10:58 AM
- Hot Forum Topic - Reader Reactions: Apple’s Macworld Expo Keynote
- 10:39 AM
- News - Verbatim, Lexar Introduce New Flash Storage Options
- 10:20 AM
- Editorial - Don’t shoot the messenger: Content, Not Delivery Marred Apple’s Last Keynote
- 9:51 AM
- News - LaCie Releases 2big Quadra External Hard Drive Line
- 9:29 AM
- News - Microsoft’s Mac Business Unit Reveals Upcoming Office Improvements
The Mac Observer Reader Specials
- Download Typestyler, still the Ultimate Styling Tool for Internet, Print and Video Graphics. Works great in Classic with a Native OS X Version on the way. Free Tryout: www.typestyler.com
MacPro Memory 667Mhz With Apple Spec Heat Sink - 2GB $62 / 4GB $80 / 8GB $158. Click to Maximize your Macs...
Mac observers can now play Party Poker for Mac as well as Mac casino games by going to MacPokerOnline.com.
RamJet Memory: Mac Pro FB-DIMMs: 2GB Kit $95, 4GB Kit $159, 8GB Kit $309! MacBook/Pro DDR2 4GB $118, DDR3 4GB $99! Click hereFor the latest Apple products use Ciao a comparison website to find laptops like MacBook Air. Then find the best prices on MP3 players and use our comparison tool to evaluate cell phones.
Laptop Hardware Provided by TechRestore - Overnight Mac & iPod Repairs.

