Mac Warz: De Nile Ain’t Just a River in Egypt

While the Mac platform has never been truly free of malware, with the Apple platforms (Yeh, multiple: iOS and Mac) finally attaining a market penetration that makes it worth malware creators’ time and effort, real people are now seeing real malware problems more frequently on Apple platformed devices, specifically on Macs, for the most part. The recent flap about the Flashback Trojan has led knowledgeable folks such as Kapersky’s Roul Schouwenberg to observe,

“Percentage-wise, Flashback is roughly the equivalent of Conficker,” referring to the multi-vector Conficker Worm that created such a stir in 2008-2009.

Of course, Conficker on Windows computers spread for pretty much the same reason that Flashback recently spread on Macs: OS manufacturers who were slow to patch their OSes and lazy, careless users–often truly clueless naifs–who aided in the spread of the malware. And as long as Apple continues to support the idea that Macs are essentially bulletproof, the cluelessness among Mac users will persist.

But what of iOS? From a February CNet article,

Scanning hundreds of thousands of applications across the mobile landscape for its 2011 Mobile Threats Report, Juniper uncovered more than 28,000 pieces of malware last year, a rise of 155 percent from 2010.

As expected, Android was the post popular target.

Malware aimed at Google’s mobile OS surged to 13,000 samples at the end of last year

I’ll let you decide how toi do the math on that one, ‘K? 28,000 malware apps-13,000 Android malware apps leaves how much malware to divide up between Java and iOS? Recall the anti-malware patch for iOS last Fall? Just sayin’.

Of course, I don’t run any OS from The Evil Empire (do your own search for the term; it’s all over the place *heh*), but I do run a number of other OSes–some just for the fun of it–ranging from various Windows versions to various flavors of ‘nixes, and even including one Android device with its own customized front end (the Kindle Fire). All of them run with up-to-date anti-malware installed. Yes, even the BSD Unix-based compouter that uses the same Unix code base that Apple’s OSX uses (only pure Unix, instead of the bastardized thing Apple’s made of OSX). Modern anti-malware doesn’t have to exact the performance hit that early anti-malware all too often did, and wearing belt (keeping the OS properly patched) and suspenders (up-to-date anti-malware) is both easy to do and a commonsense no-brainer. Not that one would get that impression from most Mac users I know… (Not that I know all that many, since apart from iOS users–still a minority of cell phone and even tablet users around here–Apple has little penetration in America’s Third World County where people often have better things to waste their money on than kewl komputerz from The Evil Empire. *heh*)

We’ll see how this all plays out. Will Apple do the adult thing here and step up, admitting it’s not bulletproof, or will it stonewall and continue the “delayed update response” to threats as it has in the past (*cough* MacDefender *cough*) until compelled to respond to real world threats?

Based on Apple’s long and well displayed arrogance I’m betting on the latter. At least Apple is promising to include better anti-malware in upcoming versions and perhaps even updates to OS X (search Mac Gatekeeper). We’ll just have to wait and see. At least Apple’s promise of better built-in anti-malware is a tacet* admission of the problem.


BTW, for Mac users who do have their heads out of their keisters, here’s an article on commonsense steps to take.


Keep in mind, the installed base of Windows computers is somewhere north of a billion, while the threshold of increased appeal for malware creators targeting Mac computers is minuscule by comparison, given that Apple’s “huge” penetration of the desktop/notebook market is now about 63 million Mac OS X users. ‘nix boxes aren’t even on the radar with only about 1% of the desktop/notebook market (although the server and embedded segments are a far, far different story; your router, for example, is probably running Linux or some other ‘nix variant).


*No, I didn’t misspell “tacit”. “Tacet” is a musical term that means something similar to “tacit” but contains much more content, as a “tacet” passage for an instrument or voice is one of directed silence for a much longer term–frequently a whole passage or movement–than would be convenient to note simply with rests.

Macwarz Redux: Android vs. iOS

So-called “smart phones” and tablets are just another area of computing, one where, once again, Apple fanboiz-and-gurlz (in and out of the Hivemind) claim all kinds of Apple magic. In one area, the vaunted (and debatable) OS stability area, once again reality takes a bite out of the Apple. As of last June, iOS and Android reached a more-or-less parity of distribution among users, despite the phenomenal sales record of the iPhad (15 million in 2011, according to industry figures, still not quite as many as Apple had projected, but phenomenal). I haven’t find any current estimates, but the 6 million, or thereabouts, Kindle Fire’s sold in Q4 of 2011 (yeah, Xmas! *heh*) may have twitched the ratio a tad.

But, stability? Pretty much parity.

Apple’s iOS is the more misbehaved mobile OS, according to Crittercism crash reports from November and December.

Of course, that’s only part of the story. There are a lot of Android and iOS devices in users’ hands, and the various devices run different versions of the OSes. A wee tad more depth shows,

Apple’s iOS 5.0.1 was the most crash-inclined version of all, accounting for 28.64 percent of crashes between Dec. 1 and Dec. 15. iOS 4.2.10 accounted for 12.64 percent, iOS 4.3.3 for 10.66 percent and iOS 4.3.5 for 8.9 percent.

Among Apple devices, the great majority of crashes were logged on iPhones—74.41 percent—followed by the iPod touch, at 14.87 percent, and the iPad, at 10.72.

The most crash-prone version of Android was version 2.3.3, with a 3.86 percent share of the iOS/Android crash pie. Looking at only Android crashes, version 2.3.3 accounted for just shy of one-fourth of all Android crashes, followed by 2.3.4 with also nearly a quarter of the Android-only pie.

With so many different iterations of OS versions out and about, it’s really something of a wonder that there aren’t more application-caused crashes.

Still, no kudos for stability to Apple over Android, though with The Monolith Apple Empire vs. the Fragmented Android Gaggle, a parity of user base numbers isn’t translating into a perceived parity between the platforms. If even one major player differentiates itself from Apple in multiple areas–so-called “smart phone” and tablet both, say–and offers content and user experience that’s even comparable, at more affordable pricing, Apple’s share of this area of computing would go in the direction it did in the desktop area when it priced itself down to 5% of the total PC market there.

It’ll be interesting to watch, although since I have alternatives that work well for me now, I don’t expect it will impact me all that much.


Of course, readers here know I regularly use various versions of Windows, Linux, BSD and now Amazon’s modded Android (on the Kindle Fire). We run a place that’s pretty much free of Apple’s Evil Empire* here. 🙂

Continue reading “Macwarz Redux: Android vs. iOS”

No, That’s Not What Bothers Me

Fake iPad 2s made of clay have been sold at a couple of Canadian electronics stores.

Fake iPads made of clay were sold to as many as 10 people in Vancouver, Canada, CTV News reports. The fake iPads were sold at Best Buy and Future Shop, after scam artists bought a real iPad with cash, and replaced the device with modeling clay.

The scammers then brought the fake iPad back to the store and returned it for a full refund. Future Shop and Best Buy put the returned devices directly back onto the shelf, where other customers bought it. Mark Sandhu bought his wife, Sundeep, what he thought was an iPad 2 for Christmas. Instead, they both got a surprise when they opened the box.

Whoop-de-do. *yawn* So? They were tablets, weren’t they? *heh* No, what bothers me, really bothers me, is this sentence in the FoxBusiness report:

Future Shop and Best Buy put the returned devices directly back onto the shelf, where other customers bought it [sic].

Someone want to parse that for me? The dumbass who wrote the report really should be fired.

I’ll Hand This to Apple…

The Iron Fist with which Apple Rules Its Software Realm means that stupid things like I ran into on a lil netbook recently are less likely to happen with Macs. Of course, they simply do NOT happen on ‘nix computers anyway, because of the way apps install and uninstall so very cleanly (for the most part, unlike Windows apps), so the Iron Fist of Apple™ is really not all that necessary, but still: minor advantage to Macs.

OK, here’s the deal. About 2.something years ago, I installed Stardock’s freebie subset of Windowblinds on a lil HP netbook as the easiest way for the user to kludge around Win7 Starter’s stupid “No, you may NOT change the desktop background!” restriction. Later, I upgraded that lil netbook to Win7 Pro for the user and the Stardock app was no longer necessary, so I uninstalled it. I thought.

“No, no!” said Stardock, “While we know you want to uninstall the product and you have explicitly stated that you want ALL the product uninstalled, we’ll leave the Stardock service to run on the computer, eating up limited Atom chipset resources. Because we can (and because we just don’t give a damn what YOU want).”

After disabling the Stardock “service” and manually deleting files and references to the product in the Registry, it’s FINALLY gone.

I think. *heh*

I swear, Stardock software is almost as inconsiderate and intrusive as Apple software on a Windows computer. Almost.

No, I Am NOT Dumping on Apple

Sure, I think Apple is evil, what with all the i-Crap, the i-tracking, the Apple Straitjacket®, etc., but I’m really only posting the following because it’s humorous:

Poor puppy. Well, at least maybe that’ll deal with the constipation…


“OK, what’s with the excrement humor two posts in one day?” they all ask. And I answer, “Well, at least they weren’t inappropriate.” *heh*

More MacWarz: Apple Silliness

Mac OS X is soooo secure that Apple has designed the default setting in the Safari browser to allow “safe files” to download and execute automatically, making it super easy for the “MacGuard” successor to the “MacDefender” malware (that Apple has finally responded to) to install itself on OS X machines running in an admin account session… which an enormous number of Mac users–like Windows users–do.

I guess Apple bought into their own “OS X is secure” propaganda, because when Safari installs on Windows machines it, like all the other mature browsers–and even Internet Exploder *heh*–defaults to asking if the user is sure about downloading a file and warns it could be dangerous.

Oh, but that’s for Windows machines. Have to maintain the fiction of Mac invulnerability, so not gonna do that on OS X machines, no matter how it might endanger the users.

Dumb move, Apple. It’s already caught you with your pants down and until you admit your users need at least a warning, and get the word out widely in your user base, it’s gonna keep biting you on your bare ass.

It is going to be amusing to watch the slow awakening of folks who’ve accused anyone who pointed out the tiniest lil flaw in the Apple fantasy world of “hate speech” or worse when, little by little, their little fantasy world crumbles beneath their feet.

BTW, which OS was hacked first in the Pwn2Own meet recently? Hmmm? 😉 5 Seconds to fail.

On a most basic level the attack exploited Apple’s weak memory protections in OS X Snow Leopard. Microsoft, more popular and more commonly attacked, includes two critical types of memory protection — data execution prevention and robust address space layout optimization (ASLR) — both of which attempt to prevent memory injection attacks. By contrast, Snow Leopard only supports ASLR and the implementation is badly botched according to hackers.

The attack also exploited poor coding in Apple’s branch of WebKit, which features many bugs and security flaws. While Apple’s WebKit branch, which powers its Safari browser, shares a certain amount of code with Google’s WebKit browser Chrome, Google has added much more robust security layers and is less buggy.

Just sayin’.

In past years the contest has been dominated by OS X hacking/security pro Charlie Miller. So it was nice to see a fresh face for a change, though the MacBook was still the first to fall — as usual. Mr. Miller sums up OS X security the best, with his famous remark, “Mac OS X is like living in a farmhouse in the country with no locks, and Windows is living in a house with bars on the windows in the bad part of town.”

Now, before anyone accuses me of “hating on Apple” please note that I’m just stating facts here, ‘K? Apple has deliberately misled folks for years about the security of OS X (not the “the MacBook was still the first to fall — as usual” comment above) and stonewalled AppleCare subscribers with, essentially, “Screw you” when asked for help with the “MacDefender” malware issue, so Apple deserves a swift kick in the ass, as far as I’m concerned. I’ve delivered a few M$’s way from time to time, and it’s only fair that when Apple acts evil that it gets some mud in its eye.

Waiting for the Other Shoe to Drop

While my Wonder Woman, Son&Heir and I are using the nearest available public WiFi (“Family Night” at the Library! *heh*), I’m taking time to post some schadenfreude-laden “nanny-nanny-boo-boo” in the MacWarz! category:


Waiting on the class action lawsuit based on the “Mac Defender” malware and its more robust and sneaky successor(s?) Why? Because Apple misled naive users. They said, specifically, that no user intervention is necessary to protect users from malware.

From http://www.apple.com/why-mac/better-os/

Safeguard your data. By doing nothing.

With virtually no effort on your part, Mac OS X defends against viruses and other malicious applications, or malware. For example, it thwarts hackers through a technique called “sandboxing” — restricting what actions programs can perform on your Mac, what files they can access, and what other programs they can launch. Other automatic security features include Library Randomization, which prevents malicious commands from finding their targets, and Execute Disable, which protects the memory in your Mac from attacks.
Download with peace of mind.

Innocent-looking files downloaded over the Internet may contain dangerous malware in disguise. That’s why files you download using Safari, Mail, and iChat are screened to determine if they contain applications. If they do, Mac OS X alerts you, then warns you the first time you open one.

Stay up to date, automatically.

When a potential security threat arises, Apple responds quickly by providing software updates and security enhancements you can download automatically and install with a click. So you’re not tasked with tracking down updates yourself and installing all of them one by one.
Protect what’s important.

Mac OS X makes it easy to stay safe online, whether you’re checking your bank account, sending confidential email, or sharing files with friends and coworkers. Features such as Password Assistant help you lock out identity thieves who are after personal data, while built-in encryption technologies protect your private information and communications. Safari also uses antiphishing technology to protect you from fraudulent websites. If you visit a suspicious site, Safari disables the page and displays an alert warning you about its suspect nature.

Of course, none of this prevented Mac users by the droves from installing the “Mac Defender” malware, and the new procedures reluctantly posted by Apple to remove it and prevent its installation (last week Apple was simply telling AppleCare users who called, “Screw You”) WILL NOT WORK with the new version of the malware that has already been seen in the wild. Neither will all the supposed security features touted above. Go to the ZDNet article linked above for more.

Be Nice to the “Slower” Members of the Herd

Been following the onslaught of Mac users infecting themselves with the Mac Defender/Mac Security scareware/trojan? The weaker members of the Mac herd (which probably comprises only about 90% of the herd *heh*) are the only ones susceptible to the social engineering ploy leading them to self-infect. *sheesh* OSX even uses the same sort of “superuser” or administrator password authentication that almost all ‘nix OSes do, which means users who infect themselves have to intervene to allow the scareware/trojan to install itself. (Windows users have griped about this sort of security nagging only since Vista… but careless Windows users still circumvent it as well.)

Here’s info from a leaked internal Apple memo about the issue:

Read it and weep. Apple, the paragon of user friendliness and service, says to its users essentially, “Screw you.” Oh, the memo points to a “helpful” page on malware in the Apple docs archive:

http://docs.info.apple.com/article.html?path=Mac/10.6/en/27449

The sad thing is that the article at the link is a case of closing the barn door after the horse has fled, as it offers absolutely no help to someone who’s already infected themselves. Bupkis, zip, nada, a big zero with the rim kicked off. Oh, well. That’s Apple, eh?

If you do run into any of the 5% of computer users who use OSX who are among the subset that has infected themselves, just be kind to these weaker members of the herd, OK? 😉 I’ve had to practice being nice to self-infectors for years with Windows users, so I know full well what it’s like to bite my tongue when someone insists–contrafactually–that they did nothing to infect themselves. *heh*


Oh, and contrast Apple’s “Screw you” policy with Evil Microsoft’s policy:

The screencap shows only part of a fairly detailed article with more than a few FREE options for removal of malware. Apple, paragon of virtue: “Screw you,” to users. Evil Microsoft: “Here are some helpful, FREE avenues to take.”

I Really Don’t Get It

Whoopee! Not.

So, “Apple Unveils 11.6-Inch MacBook Air, New 13.3-Inch Model”–this is big news? The 11.6″, 1.4-GHz Core 2 Duo model with a meager 64GB of storage (granted, SSD, but still… only 64 GB?) supposedly has a “full size keyboard” (how, with such a small form factor? I suspect “full size keyboard” is Applespeak for, “DEFINITELY NOT full-size keyboard” *heh*), this miniature computer starts at… $999.

*feh*

The lil toy computer I’m writing this on has a 15.6″ screen, running a dual core Intel 2.2Ghz processor with a reasonable 320GB of storage and a real keyboard, including a number keypad, for… $500. And it’s a brand with just about the lowest incidence of notebook failure among PCs, easily as low as or lower than Macbook failure rates.

So, why the buzz about this miniature, underpowered toy Apple notebook? Why, it’s an Apple, of course. And yes, at significantly less capability (and strapped into the Mac OSX straitjacket *feh*), it does have the virtue of weighing 1/2 what my lil toy Asus does. That’s for weenies who can’t handle carrying more than the 2.3 pounds the lil underpowered toy weighs. Anyone who has trouble carrying a 5-6 pound notebook (or having it on their lap for a few hours’ time, if that’s all the “desk” they have) deserves an Apple straitjacket. Weenies.