Kaspersky: Apple '10 years behind Microsoft in terms of security'
Summary: Eugene Kaspersky believes Apple Mac OS X is 10 years behind Microsoft Windows in terms of security. He arguesCupertino will have to go through the security overhaul that Redmond once did.
Kaspersky Lab last week detailed why the increasing market share of the Apple Mac means more malware on the platform. Eugene (Yevgeny) Kaspersky, co-founder and CEO of the security firm, has now gone further in statement made at the Infosecurity Europe 2012 conference.
"I think [Apple] are ten years behind Microsoft in terms of security," Kaspersky told CBR. "For many years I've been saying that from a security point of view there is no big difference between Mac and Windows. It's always been possible to develop Mac malware, but this one was a bit different. For example it was asking questions about being installed on the system and, using vulnerabilities, it was able to get to the user mode without any alarms."
Kaspersky is of course referring to the Flashback malware that has infected hundreds of thousands of Macs (see links below). He then reiterated what his employees and many security researchers have been saying for years: Apple needs to step up its game.
"Apple is now entering the same world as Microsoft has been in for more than 10 years: updates, security patches and so on," Kaspersky said. "We now expect to see more and more because cyber criminals learn from success and this was the first successful one. They will understand very soon that they have the same problems Microsoft had ten or 12 years ago. They will have to make changes in terms of the cycle of updates and so on and will be forced to invest more into their security audits for the software. That's what Microsoft did in the past after so many incidents like Blaster and the more complicated worms that infected millions of computers in a short time. They had to do a lot of work to check the code to find mistakes and vulnerabilities. Now it's time for Apple [to do that]."
Kaspersky, the privately-held company, produces antivirus and other computer security products. Excluding the energy sector, Kaspersky Lab is considered one of Russia's few international business success stories. The company makes excellent security software and I have personally recommended some of its products a few times.
That being said, Kaspersky, both the man and his company, of course would benefit from a malware epidemic on the Mac. That's important to keep in mind, while acknowledging that the numbers are indeed growing and the Mac security situation is getting worse. Just how bad it's getting, and will get, is a matter of perspective.
See also:
- New Flashback variant silently infects Macs
- New version of Mac OS X Trojan exploits Word, not Java
- New targeted Mac OS X Trojan requires no user interaction
- Over 600,000 Macs infected with Flashback Trojan
- Russian security firm says Flashback infection rates still high
- How big a security risk is Java? Can you really quit using it?
Kick off your day with ZDNet's daily email newsletter. It's the freshest tech news and opinion, served hot. Get it.
Talkback
Tested
Apple moves to the right direction: with new OS X version, they dropped ...
There was [b]never[/b] case of trojans (let alone viruses) spreading because of [i]Apple[/i]'s software vulnerabilities. So getting rid of any relation to the leaky third party software such as Java and Flash will keep Apple's status cleaner. The more so Apple lags so much at the speed they compile updates.
However, while this decision solves Apple's PR problems, it does not solve problem of users who use Java and Flash.
Since those types of technologies can not be run strictly in "sandbox" mode, there will be always risks of malware installed by users wilfully (though ignorantly as they might think that they are installing something useful -- as in most of trojan schemes) or even without users' decision if there are vulnerabilities in Java or Flash.
For now, Neither Apple, nor Microsoft can do anything about.
From what I have read . . .
You can read the article here:
http://www.tomshardware.com/news/Mac-OS-X-Malware-Sophos-Trojan-Flshplyr,15438.html
So what?
Apple may sidestep the whole cycle by iOSising the desktop or drop it
After all, they have a huge consumer hardware market with a huge app market that people seem to love to want to make nothing on, but which nets Apple billlions. They are not adverse to dropping whole swathes of customers.
The only problem with dropping OSX is that they would end up with an even narrower product range, making them even more dependent upon fickle consumers, and they know that it would only take some new (and actually revolutionary) gadget from another company and their markets would suddenly lose customers, leaving them with huge inventory bills.
That is the problem of trying to appeal to those with disposable income. They don't 'need' such products, but just 'want' them, which means they are not really committed (other than the line waiters plus extras) and can quite easily switch to whatever new thing can relieve them of their discetionary cash.
Silly talk about just dropping Java et al
Dependence upon these things is usually built up over a long period and it is not easy to make changes without a lot of time and expense.
In some cases, if the Java apps are critical, it may be easier to change the OS and hardware than the dependency upon the apps. I am not talking about play apps here, but BI and serious enterprise infrastructure which relies upon cross-platform Java-based clients.
Mis-information
Hogwash!!
Bring it!
The OS would fall in seconds, its been proven time and time again.
Dunno about 10 years . . .
Now that Apple is exploding, the truth of this claim will really be put to the test.
Apple isn't exploding!
apple future not so bright.
I suggest you keep your day job
I suggest you keep your day job
And I'll second that. Apple's recent profit earnings make @owlnet a p!ss-poor investment adviser.
Apple future brighter than you think
The point
Laws of gravity
Just remember IBM, Sony, Microsoft, etc etc.
Right now Apple has momentum and probably will last another 3-5 years. After that, who knows.
Statistics & Numbers
Not to mention that the last time I saw a Mac or Apple product used in the workplace -- other than as an administrator's smartphone to be reached while out of the office -- was... oh that's right... [b]never[/b]. Of the 9 employers I've worked for (both private & public sector) since graduating from college, [b]none[/b] of them use Macs for desktops or laptops. They've all been Wintel machines. And we're talking about a range of company size from small business (less than 30 employees) to national/international companies & agencies with thousands to tens of thousands of employees.
Never
Strange analogy...but true. OSX is not a man enough yet...it will take some time to turn the hipster into a real man :P