Vulnerabilities / Threats

An Apple Fanboi Writing Malware For Mac OSX

50%
50%

At the Dark Reading News Desk at Black Hat Aug. 5, Patrick Wardle, director of research for Synack and Apple fan, spoke to Dark Reading senior editor Sara Peters about his session "Writing Bad @$$ Malware for OS X," why he chose to write exploits for an OS he loves, how he circumvented its best protections, and what Apple has been like to work with on vulnerability disclosure.

Comment  | 
Print  | 
Comments
Newest First  |  Oldest First  |  Threaded View
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
8/19/2015 | 12:51:53 PM
Re: Apple vs Windows
It depends on what your prefer. Yes, in the laptop realm macs will tend to be more expensive but it depends on what you are going for. Windows is the software while Apple is responsible for both the hardware and software even though their hardware is from other 3rd parties. Hence, why many different companies sell windows computers. I go back and forth. I prefer Apple for the aesthetic hardware. But prefer Windows for the OS....Hence why bootcamp is perfect for me...Running Windows OS on Apple hardware. Apples to apples, you are right computers with Windows tend to be less costly but it all comes down to the manufacturing company. For example look at Alienware. Their windows PC's are expensive as well and could defintely compare with Apple pricing.
saiopen
50%
50%
saiopen,
User Rank: Apprentice
8/19/2015 | 4:30:05 AM
Re: Apple vs Windows
i prefer windows as its good in cost
RyanSepe
50%
50%
RyanSepe,
User Rank: Ninja
8/18/2015 | 2:30:09 PM
Apple vs Windows
A very good analogy that I've heard used between Mac and Windows in terms of being exploitable and their security posture is that Mac is an unlocked barn in the middle of nowhere, less of a target and therefore less precaution is taken to secure. While Windows is in a high crime, city-esque populated area. All the windows and doors are locked and barred but it is constantly trying to be exploited and therefore new means and methods are being devised to do so. As the video states, it very heavily has to do with size of target. However, this does not mean that mac should be lax in any way shape or form.
Register for Dark Reading Newsletters
Dark Reading Live EVENTS
INsecurity - For the Defenders of Enterprise Security
A Dark Reading Conference
While red team conferences focus primarily on new vulnerabilities and security researchers, INsecurity puts security execution, protection, and operations center stage. The primary speakers will be CISOs and leaders in security defense; the blue team will be the focus.
White Papers
Video
Cartoon Contest
Current Issue
Security Vulnerabilities: The Next Wave
Just when you thought it was safe, researchers have unveiled a new round of IT security flaws. Is your enterprise ready?
Flash Poll
[Strategic Security Report] How Enterprises Are Attacking the IT Security Problem
[Strategic Security Report] How Enterprises Are Attacking the IT Security Problem
Enterprises are spending more of their IT budgets on cybersecurity technology. How do your organization's security plans and strategies compare to what others are doing? Here's an in-depth look.
Slideshows
Twitter Feed
Dark Reading - Bug Report
Bug Report
Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-0290
Published: 2017-05-09
NScript in mpengine in Microsoft Malware Protection Engine with Engine Version before 1.1.13704.0, as used in Windows Defender and other products, allows remote attackers to execute arbitrary code or cause a denial of service (type confusion and application crash) via crafted JavaScript code within ...

CVE-2016-10369
Published: 2017-05-08
unixsocket.c in lxterminal through 0.3.0 insecurely uses /tmp for a socket file, allowing a local user to cause a denial of service (preventing terminal launch), or possibly have other impact (bypassing terminal access control).

CVE-2016-8202
Published: 2017-05-08
A privilege escalation vulnerability in Brocade Fibre Channel SAN products running Brocade Fabric OS (FOS) releases earlier than v7.4.1d and v8.0.1b could allow an authenticated attacker to elevate the privileges of user accounts accessing the system via command line interface. With affected version...

CVE-2016-8209
Published: 2017-05-08
Improper checks for unusual or exceptional conditions in Brocade NetIron 05.8.00 and later releases up to and including 06.1.00, when the Management Module is continuously scanned on port 22, may allow attackers to cause a denial of service (crash and reload) of the management module.

CVE-2017-0890
Published: 2017-05-08
Nextcloud Server before 11.0.3 is vulnerable to an inadequate escaping leading to a XSS vulnerability in the search module. To be exploitable a user has to write or paste malicious content into the search dialogue.