Interesting read: Macs outpaced Windows by nearly 2:1 for malware

Discussion in 'IT & Internet' started by Nico Albrecht, Feb 12, 2020.

  1. Nico Albrecht

    Nico Albrecht UKBF Enthusiast Full Member - Verified Business

    681 123
    Apple cult user will probably deny such a problem and blame it that people are using their Macs wrong.

    Mac threats increased exponentially in comparison to those against Windows PCs. While overall volume of Mac threats increased year-over-year by more than 400 percent, that number is somewhat impacted by a larger Malwarebytes for Mac userbase in 2019. However, when calculated in threats per endpoint, Macs still outpaced Windows by nearly 2:1.

    Source: https://blog.malwarebytes.com/repor...s-labs-releases-2020-state-of-malware-report/
     
    Posted: Feb 12, 2020 By: Nico Albrecht Member since: May 2, 2017
    #1
  2. gpietersz

    gpietersz UKBF Enthusiast Full Member

    630 124
    I go into smug Linux user mode at this point
     
    Posted: Feb 12, 2020 By: gpietersz Member since: Sep 10, 2019
    #2
  3. Nico Albrecht

    Nico Albrecht UKBF Enthusiast Full Member - Verified Business

    681 123
    True in Linux you only need to open a text file to get backdoor root access. Go Linux.
     
    Posted: Feb 12, 2020 By: Nico Albrecht Member since: May 2, 2017
    #3
  4. gpietersz

    gpietersz UKBF Enthusiast Full Member

    630 124
    Posted: Feb 12, 2020 By: gpietersz Member since: Sep 10, 2019
    #4
  5. Nico Albrecht

    Nico Albrecht UKBF Enthusiast Full Member - Verified Business

    681 123
    I posted a link from a security flaw in Linux a while ago that allowed a full root level access by only a user open a simple text file as an attachment. Long story short all OS's one way or the other fail and have their security flaws. But with the apple cult you have a whole community out there believing the apple marketing propaganda that they are save from those threads.
     
    Posted: Feb 12, 2020 By: Nico Albrecht Member since: May 2, 2017
    #5
  6. gpietersz

    gpietersz UKBF Enthusiast Full Member

    630 124
    @Nico Albrecht I would like to see the link to that. Of course linux is not immune to flaws, but I have not heard of one that allows root access as a result of a non-privileged user opening a text file
     
    Posted: Feb 12, 2020 By: gpietersz Member since: Sep 10, 2019
    #6
  7. Nico Albrecht

    Nico Albrecht UKBF Enthusiast Full Member - Verified Business

    681 123
    Last edited: Feb 12, 2020
    Posted: Feb 12, 2020 By: Nico Albrecht Member since: May 2, 2017
    #7
  8. gpietersz

    gpietersz UKBF Enthusiast Full Member

    630 124
    That bug (here https://nvd.nist.gov/vuln/detail/CVE-2019-12735 ) is a long way from:

    1. It will only work if the text file is opened in a particular editor in a particular configuration - its not a linux bug, its a vim/neovim bug. It also requires the modelines feature to be enabled. It would work on other OSes if you used vim.
    2. It does not give you root access - it lets you run commands, but there is nothing in the CVE to suggest privilege escalation.
    3. If by attachment you mean an email attachment, very few people are going to open email attachments in a console text editor. Essentially some mutt (not an insult, the name of an email client) users.
    4. Vim is mostly used for things like editing config files or as a programmers editor. In neither case is it easy to get someone to open a malicious file - no easier than getting them to download an run an executable.
     
    Posted: Feb 13, 2020 By: gpietersz Member since: Sep 10, 2019
    #8
  9. KM-Tiger

    KM-Tiger UKBF Legend Full Member - Verified Business

    9,940 2,638
    That was last summer, and I think Vim was patched fairly promptly.

    So you would have to not keep your system up to date and be dumb enough to open a text file from an unknown source in Vim. Not very likely.

    But if your point is that all OS's can be exploited in some shape or form, then yes that is true.
     
    Posted: Feb 13, 2020 By: KM-Tiger Member since: Aug 10, 2003
    #9
  10. Ian J

    Ian J Factoring Specialist Full Member - Verified Business

    5,537 1,626
    I'm sure that you've read enough posts from people here complaining that their accountant didn't tell them that they would have to pay tax to know that anything is likely to happen
     
    Posted: Feb 13, 2020 By: Ian J Member since: Nov 6, 2004
    #10
  11. gpietersz

    gpietersz UKBF Enthusiast Full Member

    630 124
    The sort of people who use vim are fairly savvy - its definitely a geeky way to edit text. It would be more like an accountant saying no one told them they had to pay tax. I have a nasty feeling you are going to say you can think of people doing something that stupid. :)
     
    Posted: Feb 13, 2020 By: gpietersz Member since: Sep 10, 2019
    #11
  12. Ian J

    Ian J Factoring Specialist Full Member - Verified Business

    5,537 1,626
    I thought that Vim was something to scrub the floors with :)
     
    Posted: Feb 13, 2020 By: Ian J Member since: Nov 6, 2004
    #12