--
In a previous article, entitled "Desperate Propaganda..." I had a rant-fest regarding a PC World FUD-fest regarding Apple security. The author, Preston Gralla, managed to spew out this line of deceit:
:-Q****** "The security company Secunia reports that Apple products have more vulnerabilities than those of any other company."
This was clearly taken as a hit at all Apple products. What was missing was any reference to the context of the source Secunia report, which you can read HERE. I knew better, having been an avid Secunia reader since 2005. In fact, the only Apple products noted in the report were QuickTime and iTunes on Microsoft Windows. Secunia didn't cover any other Apple products.
When I read through the entire Secunia Report I found nothing of relevance to Mac OS X except the fact that the Apple apps discussed are prone to the same problems on Mac OS X as well as Windows.
QuickTime Hell
In previous articles I've covered the major problems with QuickTime, the biggest culprit of Apple security holes. It is used in iTunes, thus making iTunes just as vulnerable. In summary, QuickTime stumbles over malicious ECMAScript (aka 'JavaScript') and coding errors that allow malicious buffer overflows.
Supposedly Apple has been overhauling QuickTime. The first peak at it has been QuickTime Player X. But as far as any user can tell, the QuickTime X project is stalled at version 1.0.0. What we have on Snow Leopard is entirely inadequate, incomplete and buggy. Serious QuickTime users are required to also install QuickTime version 7, the current version of which is 7.6.6.
Hopefully Apple will get back to work on revising QuickTime now that iOS 4 has been completed and released.
--
Showing posts with label Secunia. Show all posts
Showing posts with label Secunia. Show all posts
Thursday, 12 August 2010
Saturday, 24 July 2010
Desperate Propaganda, aka FUD, in the Anti-Malware Community
--
We are living not only the 'The Age of Triva' as I call it, but 'The Age of the Marketing Moron'. Marketing Morons treat the customers and clients as worthless scum only valuable for their money.
Lately I have been wondering if biznizz skoolz deliberately teach their MBA candidates how to be effective psychopaths. Who is better at abusing other humans than a psychopath? I read this past week that an estimated 10% of biznizz executivez are psychopaths because it is such an in-demand mental illness for the creation and execution of biznizz ambitions. Imagine that. Variations of Bernie Madoff may be running your company. No wonder we're in a lingering economic depression.
[Note: I use the terms 'biznizz', 'executivez', 'skoolz' etc. whenever discussing deceitful aberrations from respectable forms of the subject. Deliberately distorted spelling is an enjoyable method of both sarcasm and laughter.]
Last week Intego pulled a FUD (Fear, Uncertainty and Doubt) move with their monstrosity 'Learn About Mac Malware'. This week it is being reported, by PC World, that Secunia have joined the anti-Apple security FUD circus. I'll decide that for myself in a future article. For now, it's of interest to take a look at the utter bullshite perpetrated by PC World. It doesn't get much more stooopid:
Security Firm: Apple Has More Security Holes Than Microsoft
The first sentence in this article gives away the show. This is FUD:
Here is a ticked-off post I made over at MacDailyNews regarding this FUD:
Secunia Half Year Report 2010
Seeing as PC World has no interest in factual Macintosh security information, and may well be spinning FUD regarding Secunia, I'm going to give the report a read myself. If I find anything of interest to Mac users, I'll post.
Share and Enjoy!
--
We are living not only the 'The Age of Triva' as I call it, but 'The Age of the Marketing Moron'. Marketing Morons treat the customers and clients as worthless scum only valuable for their money.
Lately I have been wondering if biznizz skoolz deliberately teach their MBA candidates how to be effective psychopaths. Who is better at abusing other humans than a psychopath? I read this past week that an estimated 10% of biznizz executivez are psychopaths because it is such an in-demand mental illness for the creation and execution of biznizz ambitions. Imagine that. Variations of Bernie Madoff may be running your company. No wonder we're in a lingering economic depression.
[Note: I use the terms 'biznizz', 'executivez', 'skoolz' etc. whenever discussing deceitful aberrations from respectable forms of the subject. Deliberately distorted spelling is an enjoyable method of both sarcasm and laughter.]
Last week Intego pulled a FUD (Fear, Uncertainty and Doubt) move with their monstrosity 'Learn About Mac Malware'. This week it is being reported, by PC World, that Secunia have joined the anti-Apple security FUD circus. I'll decide that for myself in a future article. For now, it's of interest to take a look at the utter bullshite perpetrated by PC World. It doesn't get much more stooopid:
Security Firm: Apple Has More Security Holes Than Microsoft
The first sentence in this article gives away the show. This is FUD:
Here's another blow to those insist that Apple products are rock solid and unhackableAs I wrote to PC World:
No one says "Apple products are rock solid and unhackable" except YOU PC World. It is an invented club with which to slam and abuse Mac users. It's called desperate propaganda, aka FUDI also wrote to PC World, and posted at FaceBook:
Facts (vs FUD) regarding Macintosh security:
Number of Mac OS X viruses: 0
Number of Mac OS X worms: 0
Number of illegal Mac OS X spyware: 1
Number of Mac OS X Trojan horses: 23
Compare that to the number for Windows and decide for yourself.
No one ever said Mac OS X was perfect (except trolls). But it remains the single most secure GUI operating system available. The only operating systems that are more secure:
- OpenBSD
- FreeBSD
And Mac OS X contains elements of both these operating systems. No coincidence.
Suggestion: Do your homework before posting about Mac OS X.
Here is a ticked-off post I made over at MacDailyNews regarding this FUD:
ANTI-FUD:Meanwhile, you can take a look at the Secunia report that inspired the FUD. It is a PDF file:
I receive EVERY Secunia report they publish via eMail.
Want to know what they publish every week? A GIGANTIC PILE of Windows vulnerabilities and extremely few Mac OS X vulnerabilities, as in about 1 (ONE) per month, at a guess.
This FUD attack 'by Secunia' [by PC World!] is made utterly hilarious by their own publications. Don't believe me. Go look for yourself:
http://secunia.com
Examine the home page. What do you see Highlighted there? Today:
- Microsoft Windows Shell Shortcut Parsing Vulnerability
- Apple iTunes "itpc:" Handling Buffer Overflow [That is SPECIFIC to WINDOWS ONLY]
- Microsoft Windows MFC Document Title Updating Buffer Overflow
Is there ANYTHING there related to Mac OS X? NO!
So what's with the FUD?
--> The fact that nearly the entire Anti-Malware Community lives off the security FAILures of Windows. Therefore, obviously, everyone MUST USE WINDOWS in order to keep them all employed!
? = Pure Adulterated PROPAGANDA
And no folks. There is nothing perfect about Mac OS X security. It just happens to be the most reliable of any GUI OS on the market. The only OSes with better security reputations are:
- OpenBSD
- FreeBSD
And oh look. Mac OS X contains elements of BOTH these OSes.
Hey FUD mongers: GET BENT.
Secunia Half Year Report 2010
Seeing as PC World has no interest in factual Macintosh security information, and may well be spinning FUD regarding Secunia, I'm going to give the report a read myself. If I find anything of interest to Mac users, I'll post.
Share and Enjoy!
--
Sunday, 26 April 2009
Multiple Symantec Software Vulnerabilities Found
--
This isn't so much a useful article as a thumb in the eye of my least favorite anti-Mac security FUD monger, Symantec. Have an *evil laugh* along with me if you like:
Digging around at the F-Secure site tonight I happened up on this article from a few days back:
Symantec Brightmail Gateway Control Center Multiple Vulnerabilities
They were NOT discovered by Symantec.
So next time Symantec strike one of their Overlords Of Security poses, just laugh at them.
;-D
--
This isn't so much a useful article as a thumb in the eye of my least favorite anti-Mac security FUD monger, Symantec. Have an *evil laugh* along with me if you like:
Digging around at the F-Secure site tonight I happened up on this article from a few days back:
Symantec Brightmail Gateway Control Center Multiple Vulnerabilities
SummaryThe vulnerabilities were discovered by Secunia.
Some vulnerabilities have been reported in Symantec Brightmail Gateway, which can be exploited by malicious people to conduct cross-site scripting attacks and by malicious users to bypass certain security restrictions.
Detailed Description
Some vulnerabilities have been reported in Symantec Brightmail Gateway, which can be exploited by malicious people to conduct cross-site scripting attacks and by malicious users to bypass certain security restrictions.
1) Certain unspecified input passed to the Control Center is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session in context of an affected site.
2) An error when processing unspecified console functions can be exploited by a Control Center user to gain administrative privileges.
The vulnerabilities are reported in versions prior to 8.0.1.
They were NOT discovered by Symantec.
So next time Symantec strike one of their Overlords Of Security poses, just laugh at them.
;-D
--
Subscribe to:
Posts (Atom)