Malaysia Explorer
By Edwin Yapp
Plug into the latest on the Internet, mobile and multimedia
Macs: No longer last bastion of invulnerability
Last week, a friend of mine pointed me to an online promotion for some software for the MacBook that I own. It was a suite of 12 security-related programs designed specifically to protect the Mac OS.
I duly went to the site to check out the promotion as I was shopping around for some security software to protect my Mac. There was a time before when many Mac users would not have bothered doing so but today, more and more security breaches are targeting not only Window-based machines but Macs too.
In fact, as far back as 2007, a new form of malware was targeting Mac users, taking advantage of the inclination to watch porn. Intego, a Mac security software company, had issued a warning to Mac users of the OSX.RSPlug.A malware, which it described as a Trojan horse that disguised itself as a video codec that forced any porn video Mac users stumbled upon to play on their system.
More recently, security researcher Graham Cluley of Sophos, blogged about a new way in which the OSX/RSPlug-F Mac Trojan horse is being distributed by hackers through a form of a poisoned HDTV/DTV program called MacCinema. Cluley noted that visiting a Web site that shows all signs of legitimacy can lead users to download
Trojan horses, even on an Apple Mac.
And at this year's Black Hat security conference held in Las Vegas, security researcher Dino Dai Zovi revealed a proof-of-concept rootkit that runs on Apple's Mac OS X operating system, proving the fact that all software--regardless Windows or Mac--has flaws.
Like the many misconceptions the public has that the Mac is only good for desktop publishing, Web designers and multimedia programmers, the notion that Macs are invulnerable to virus and malware attacks is totally misstated.
The fact is that the Mac OS is just another piece of software that skilled hackers can exploit, but have not been doing so yet because of the relatively low penetration of Macs in the worldwide market.
And hackers, like any shrewd businessmen, only go into business on a sure bet--that is to exploit a piece of software, in this case, Windows--which they know will likely bring them returns.
It remains to be seen how widespread the exploitation of Mac OS will be, but what's certain is that there is no turning back the clock on the fact that more Macs will be exploited as we move forward, and as Macs gain popularity due to other factors such as the proliferation of the iPhone and iTunes among consumers.
Some experts have said that as the Mac OS begins to grow its market share, Macs will be the next obvious target for hackers.
So, as a Mac user, how does one prepare for such a day?
I think one thing that all of us Mac users can do is to become more aware of the kinds of threats that are going on in the online world today. Many strategies that hackers use to exploit the vulnerabilities first start by using social engineering tactics to fool users into acting without thinking. Knowing how some of these threats work would definitely go a long way to making us aware as to what to avoid.
Next is to always apply our minds and think about what you're installing onto your computer before you do, as some of these malicious software require you to intervene before it becomes active.
Lastly, it wouldn't be a bad idea to start shopping around for some Mac security software and install programs such as antivirus/spyware, firewall, and some basic data encryption into your Mac, to be on the safe side.
If you do have any other ideas or experiences to share, do drop me a comment.
Tags: Security, Malware, Graham Cluley, social engineering, Apple Inc., Apple Macintosh, Apple Mac OS, Software, operating system, Web
Talkback 1 comments
Recent Posts
Most Popular
- Bahasa or English? One step forward, two steps back?
- The blog that refused to be written
- Do you really need an iPhone?
- Is censorship the answer?
- Macs: No longer last bastion of invulnerability
Archive
Latest in Blog Central
- Don't CC me, I'll CC you
- M'sian broadband wars heat up
- Where have all the bosses gone?
- NUS Enterprise: An 'incubator without walls'
- Will there be too many chefs cooking India's UID broth?
Subscribe to BlogCentral
Click this link to view this blog as XML.
Add this feed to your online news reader
Edwin Yapp
An engineer by training, Edwin first cut his teeth as a cellular radio frequency optimization engineer in one of Malaysia's largest telcos. After more than five years, he hung up his radio engineering boots to try his hand at technology reporting at The Star, Malaysia's leading English daily, where he won several awards for Best Online Technology reporting. He left to start his own editorial consultancy and is now a freelance journalist for several publications, including ZDNet Asia. A self-confessed gadget geek, Edwin hopes his blog contributions will stir up deeper discussions within the Malaysian technology scene.
Tags
|
|
Cutting-edge technology from premium sponsors
Adaptive Threat Management
More resources to optimize the security of your enterprise »
More Tech Showcases:
IDC's Powering the Enterprise Cloud Event 2009
12 Nov - 17 Dec 2009
Grand Copthorne Waterfront Hotel, Singapore
Int'l Conference on Cloud Computing & Virtualization 2009
25 - 26 Nov 2009
Suntec International Convention & Exhibition Centre, Singapore
ZDNet Asia Top Tech 50 Index
AT&T- Asustek
- Canon
- Convergys
- Ericsson
- Hewlett-Packard
- Infosys
- LogicaCMG
- NTT
- Samsung
- SingTel Group
- Toshiba
- Xerox
- Accenture
- Atos Origin
- Capgemini
- Dell
- France Telecom
- Hitachi
- Intel
- Microsoft
- Nokia
- Satyam Computer Services
- Sony
- Verizon Communications
- ZTE
Master in Organisational Leadership
Part-time masters program from Monash University. Find out more.
What's consuming your network bandwidth?
Find out today. Download SolarWinds award-wining software here - FREE 30-day Trial
Security Considerations for Cloud-Ready Data Centers - Download the whitepaper!
A network-centric approach to providing security in the data center delivers multiple benefits
Cloud Computing & Virtualization Conference 2009
Register & learn how to adopt cloud computing & virtualization technology to your company
IT Salary & Skills Report 2009
Join activeTechPros for free access to the report
- ZDNet.com |
- ZDNet Japan |
- ZDNet.de |
- CNET UK |
- CNET.de |
- Tech Republic |
- BNET |
- MP3.com |
- activeTechPros |
- ZDNet UK |
- ZDNet Korea |
- ZDNet France |
- CNET Australia |
- CNET France |
- Download.com |
- Builder |
- GameSpot
- ZDNet Australia |
- ZDNet Taiwan |
- CNET |
- CNET Taiwan |
- News.com |
- Silicon.com |
- TV.com |
- GameSpot Korea
Macs: No longer last bastion of invulnerability
Thanks for the heads up! That's a screaming deal!
Posted by Elmo Umlang on Thursday, October 22 2009 11:02 PM