Posted on 02/06/2010 12:09:39 PM PST by driftdiver
When I am asked the question "Which is more secure, Mac or PC?" I find myself stumbling around for a response because I don't have a clear-cut answer. I use both. And I use antivirus software with both.
So I decided to conduct an informal survey of a bunch of security experts and see what they had to say in the hopes that people can use the information to help them come to their own conclusions.
Before I provide quotes from the 32 experts who participated in the survey, along with edited comments from an interview with a Microsoft representative and a link that Apple provided, I'd like to share some relevant research from antivirus vendor ESET.
More than half of Americans believe that PCs are "very" or "extremely" vulnerable to cybercrime attacks, while only 20 percent say the same about Macs, according to this ESET survey. (Credit: ESET)
ESET released the results of a survey in November related to awareness of cybercrime in the U.S. The survey of more than 1,000 people found that while both PC and Mac users perceive the Mac as being safer, Mac users are victims of cybercrime just as frequently as PC user
(Excerpt) Read more at news.cnet.com ...
>>Hate to muddle the waters with facts or input from experts but I found this an extremely good article.<<
Most people and many security think that the install base of the Mac is too small to attack.
Those who know better know that is WHY it is such a great target.
Don’t forget our resident Mac expert... :-)
“Those who know better know that is WHY it is such a great target.”
Yep, but I’ve taken an incredible amount of abuse from mac believers on FR. I’m sure they’ll show up here sooner or later frothing at the mouth.
BTW, I run a security company. We’ve done development for MAC and Windows environments. We’ve also done security testing for both as well.
took em a minute and 12 seconds.
I vote for Linux with no GUI.
Ya know... after years and years of using Macintosh anti-virus software, I’m considering just getting rid of it. I mean, in over 25 years of continuous Macintosh usage, I’ve had exactly one virus show up (and it was a minor one at that time), back in about 1988 or 1989. It’s been so long ago, I just can’t quite remember when... LOL..
And since that time, I’ve had zilch... nada..., nothing show up... nothing at all. And yes, I do run an anti-virus software package, but as I said, I’m wondering why... :-)
It’s from Intego and I think I’m just handing them over money every year for no good reason... ya know what I mean...
Anyway... if someone wants to be on the safe side and something does pop up about 20 years later, down the road, then sure... run some anti-virus software on the Macintosh...
^__^
It could be because MACS are not a big market and the perception is that most of the hacking attacks take place more on PC’s then Macs.
Written on February 04, 2010
by Dave Greenbaum
Just over a year ago, Mac users began to feel a bit more Windows-like after a major Mac trojan horse was discovered in the wild. Of course, you’d get it only if you obtained copies of pirated software. While there had been a few scattered OS X virus reports, this trojan had the most destructive potential to date.
Since that rumble last year, the Mac security front has been relatively quiet. This begs the question that has been on many people’s minds and one I get asked on a daily basis: “Why don’t Macs get viruses?”
Of course, we know the question isn’t valid. Macs can be attacked as evidenced earlier. Even Apple suggests running some kind of antivirus software on your Mac and included one with a .Mac subscription. Additionally, numerous security flaws are found and Apple releases regular security updates to patch them up. So, a better question might be “Why don’t Mac users have to worry about malware like Windows users do?” I suspect a relatively small number of readers have active antivirus software running on their Mac, despite Apple’s recommendation. For purposes of simplicity, we’ll lump viruses, worms, spyware, malware, and trojans under the common term of “viruses.” Here are the common responses given and my take on them.
Macs Aren’t Popular
Why do people rob banks? That’s where the money is! (Sutton’s Law). Because Windows-based computers represent around 90 percent of the market, virus writers get more bang for their buck. Not only does a Windows virus spread farther and faster due to its numbers, but the people writing viruses are more likely to have Windows machines upon which to code. And the banks are running Windows as well, so Windows is where the money is.
Of course, when Apple introduced Intel-based computers, some were concerned that Macs would get PC viruses because they were running the same chips. The chip switch was a legitimate concern, but for a different reason. If cheap PCs could be turned into Macs, the enemy could use that to their advantage and begin diversifying. Hacking the Mac OS to run on a PC would provide an easy way for malware writers to explore the MacOS.
However, as the Mac’s popularity has increased, we haven’t seen a rise in viruses for the Mac. Popularity is a weak rationale.
Macs Don’t Maintain Backward Compatibility
Since 1984, Apple has made multiple shifts in its operating system strategy. First there was the shift from 68K processors to PowerPC, and then the shift from Classic to OS X, and then finally the shift from PowerPC to Intel based processors. That old copy of MacWrite or NetTrek won’t run on your new MacBook without major emulation and other chicanery. On the other hand, WordPerfect 5.1 for DOS runs great on a Windows 7 PC with just a minor tweak.
Microsoft, in order to maintain compatibility with older products, has never fully excised old code and flaws in its operating system. Apple has been willing on at least three occasions to completely abandon old software and start from scratch. Because Apple controls the hardware and the software and has a much smaller installed base, it is better positioned to make these drastic moves.
Ironically, Macs used to get tons of viruses in the System 7 days. I fondly remember “Disinfectant,” and countless viruses spread via floppy disk. As the Classic OS evolved, less and less viruses worked until finally OS X rewrote the OS book. Which leads to the final reason for the dearth of Mac nasties.
Macs Were Designed with Security in Mind
Since Apple knew about Mac viruses, it was able to redesign the operating system with safeguards in place to prevent malware outbreaks. The proper use of the Administrator account and password was the most important key in preventing the spread of any Mac viruses. For those unfamiliar, on a Windows XP PC, programs can install automatically without an administrator name and password. While Vista and Windows 7 ask permission sometimes, you can still easily install programs (and therefore viruses) without intervention from a user.
Alternatively, Mac programs requires someone with Administrator privileges in order to install most software. In my day job as a computer repair tech, countless Mac clients can’t even remember their own password, so they are extremely unlikely to accidentally install some software. Windows PCs are usually infected by clicking on some kind of link followed by Windows automatically installing a virus in the background without user consent or intervention. This idea is as foreign to Mac users as a .dll file.
Because Apple has a quicker schedule in updating and patching its operating system, any flaw that is found and acknowledged by Apple can easily be patched via an update or the next operating system. Getting Apple to acknowledge some of these flaws is a different story, though Snow Leopard provided protection against the trojans discovered last year.
Do you run antivirus software on your Mac?
Good question. Apple said at one time it recommended antivirus software (though later it recanted), yet most Mac users don’t. The risks of a virus on your Mac are slim and protection software is perceived as slowing down computers and being generally buggy. Unlike most other software, virus protection requires a yearly fee to keep protection active. If you stay away from the red light district on the Internet, you are much less likely to get a virus. Make sure your system password is a good one and hard to guess. Be wary of any software you download and check the source. That’s why you get the warning now whenever you download a program from the Internet. Common sense is your first line of defense.
Personally, at home, I have ClamXav installed. It’s a free program that will scan your Mac to determine if you have a virus, but won’t pre-emptively protect you from getting one. It’s an “on-demand” versus an active scanner. I update and run it every so often after I hear of some new threat.
For my work computer, I have Intego VirusBarrier installed. The program is unobtrusive and has little or no impact on the performance of my Mac mini. Because I work with a large number of clients, I can’t always guarantee that they haven’t downloaded an Internet Nasty and I don’t want to catch what they have on their computer.
The choice is yours whether to run antivirus software. The reasons why Macs don’t get many viruses are as much based on luck and market conditions, as they are on inherent security. At the very least, besides a good administrative password, a Mac on the Internet should have a copy of ClamXAV on it that can be run at the first sign of trouble and updated after a suspected outbreak. Furthermore, remember that “social engineering” threats, like phishing emails that attempt to steal your passwords can affect Mac and Windows users equally. Stay on your toes and never respond to unexpected emails that try to scare you into visiting a website that requires your password or other personal information.
“I vote for Linux with no GUI.”
I’m guessing you’re a geek. :)
But you’re right, that would do away with the java problems. Is there a vi based browser?
They’re all secure if you stay offline. And keep it in a secured vault. Or leave them unplugged and turned off. :)
By Bambi Brannan
Monday, February 27, 2006
Just when you thought Mac OS X was safe and secure, there’s a barrage of… virus protection software makers.
Which is more dangerous? The virus, or the innoculation? Guess who says you need protection?
Despite the scares of last week’s trojan horses, and OS X exploit vulnerabilities (one of which was fixed last year, the other is easily fixed in two seconds, and my practicing Safe Downloads), the Mac has become a target again.
This time, those doing the targeting of Mac OS X are the virus protection makers, such as Sophos and Symantec. Who’s protecting us from the protectors?
For all intents and purposes, it’s nearly impossible to protect a Mac from a trojan horse. Why? Trojans rely on human intervention; downloading or opening a file without knowing the sender or the contents.
That’s a sure recipe for disaster, and there’s not many software applications to protect the user from the user.
The security folks at Sohos and Symantec and Intego and Trend Micro, and elsewhere, sell software to guard computers and networks against the threat and damage of malware; viruses, worms, trojan horses, etc.
They have a vested financial interest in spreading a little fear among Mac users.
As we saw in last week’s news headlines, malware is out there for the Mac. More will come.
What can you do to protect you and your computer and your files?
If Sophos and Symantec have a say, you’ll buy products from them to give you and your computer more protection.
Of course, none of the major or minor virus protection services could have protected any Mac user from the recent so-called outbreaks of malware for Mac OS X.
That begs the question, “Why bother?” Why worry about protection until there’s something to protect against?
That’s a valid point, and a simple answer isn’t easy.
Sophos is the latest to offer anti-virus software for Mac OS X.
What does it do?
“Sophos Anti-Virus provides integrated cross-platform virus detection on Macintosh servers, desktops and laptops. Our powerful Sophos virus detection engine scans all potential entry points for potential threats, and also detects non-Mac viruses that could be harbored on Mac computers.”
What does it cost? That’s easier to ask than it is to get Sophos to tell you. We’re still waiting for a quote. Why? Here’s what Sophos has to say:
“Your request is now being dealt with and you will hear back from the Sophos team shortly.” That was then and this is now. So far, silence.
Thanks. It’s reassuring to know that the people who claim I need virus protection are willing to jump into action immediately and provide me with their so-called solution.
It looks to me as though Sophos and Symantec and many other virus makers make their money selling to one (or both) of these two entities; Windows users, Windows business users.
Mac users might be a future market, but for now, we’re an afterthought. How can I tell?
About virus reporting capability of their anti-virus for Mac OS X, Sophos says, “Every virus incident is automatically reported to the administrator, making day-to-day management even easier.”
Uh, administrator? See what I mean?
Virus protection is a serious issue and Mac users need to be concerned.
But it all boils down to three basic issues; need and trust and results.
Do we need what the malware protectors are selling? Can we trust them to provide us with protection? What do the results show so far?
As to the need, there are still no viruses of substance to report; same with worms; both of which could be dangerous to Mac users.
Will the malware protectors provide Mac users with protection before said malware strikes? Thus far, they have not. Finally, what do the results show so far?
FUD. Fear, uncertainty, and doubt emanating from malware protectors.
It’s the FUD I want to remove, and it’s protection I want to have. For now, common sense and Mac OS X seem to be doing a better job than the malware protectors.
Update - I finally received a response from Sophos regarding their anti-virus software for Mac OS X. Four days after my query for pricing. It was just an email response. No price, and a curt “Please call me.”
“It could be because MACS are not a big market and the perception is that most of the hacking attacks take place more on PC’s then Macs.”
And of course MAC believers ( I say believers because its a religion for many of them) want you to think that.
The reality is there are many aspects to security. Mac does not make a server OS which is the source of many of the problems. Mac is better against certain threats and worse at others.
“You’re particularly adept at channeling his elitism,”
After being insulted many many times and told that all windows developers were criminals I don’t think I’m the one portraying “elitism”.
But then I’m just a criminal to you star, right? Stop posting to me.
I find that living in a cave with the technology available in 10,000 BC affords absolute safety as far as theft and cyber crimes. The only drawback is a life expectancy of less than 30.
As long as there is money to be stolen there will be computer crime. Perhaps thats BOs real agenda, to stop computer crime by getting rid of everyones money.
Have to agree, I got a reall nasty hack in Jan. PC
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.