Mac Security Ping!
If you want on or off the Mac Ping List, Freepmail me.
Posted on 07/29/2009 5:27:16 PM PDT by Swordmaker
* Mac expert shows how hackers can steal encrypted data
* Demonstrates method at conference for security experts
LAS VEGAS, July 29 (Reuters) - A Mac security expert has uncovered a technique that hackers could use to take control of Apple Inc (AAPL.O) computers and steal data that is scrambled to protect it from identity thieves.
Prominent Mac researcher Dino Dai Zovi disclosed the software flaw at the Black Hat security conference in Las Vegas, one of the world's top forums for exchanging information on Internet threats.
About 4,000 security professionals are in attendance, including some who are really hackers. While experts ferret out software flaws to fix them and protect users, hackers use the same information to devise pranks or commit crimes.
Attacks on Apple computers are extremely rare, but security experts say that will change as Macs gain market share on PCs running Microsoft Corp's (MSFT.O) Windows operating system
(Excerpt) Read more at reuters.com ...
If you want on or off the Mac Ping List, Freepmail me.
"The technique -- dubbed "Machiavelli" -- exploits a vulnerability in the Mac OS X kernel, the heart of the machine's operating system. It only works on machines that have already been victimized, such as ones attacked with the pirated software. It can take control of Apple's Safari browser, logging passwords to financial accounts and data on bank statements, Dai Zovi said."In other words, the target Mac has to have been previously compromised and ROOT turned on before this vulnerability is actually exploitable. That is a rare bird, er, Mac, indeed. Since they are talking about a previous compromise that means a trojan... and the user would have to install it.
Sure, I always su to root whenever some hacker emails me a Mac executable.
You too? I just opened a telnet port, enabled root with the password "password" and posted my IP to the hacker forums.
I'm going to complain that Mac security sucks when I get hacked.
Is it just me, or does the above sentence read like it was passed thru a Babelfish translator?
How many times have I read this?
If I'm reading this correctly, the exploit has to already be installed? I thought the point of security was to keep the exploit from being installed. You can deliberately install programs that will do anything to your computer.
Attacks on Apple computers are extremely rare, but security experts say that will change as Macs gain market share on PCs running Microsoft Corp's Windows operating systemSeems like I've heard that before. For years. And years.
|
We do not have any computers or programming experience, so this virus works on the Honor System. Thanks for your cooperation, |
|---|
> Seems like I've heard that before. For years. And years.
Yep. Ya know, the smartest thing Microsoft could do, to improve Windows' image with regard to security holes, would be to let Apple gain, say, 50% market share, so that OS-X would have an equal number of viruses.
Uh-huh...
What's the threshold? 20%? 30%? When does the market share of the Mac reach the level where these tech-press twits admit it's enough?
There are about 35,000,000 Macs out on the internet, and approximately 0.1% of them have any anti-virus protection. And most of their users are non-techies. Who run with administrative privilege.
"Macs are not a target"??? Uh-huh... They're just not an easy target.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.