Macs :: Lacking a lack of vulnerabilities.

Warning to mac owners.

  • (3 Pages)
  • +
  • 1
  • 2
  • 3

43 Replies - 2872 Views - Last Post: 08 August 2009 - 01:36 PM

#1 ShaneK  Icon User is offline

  • require_once("brain.php"); //Fatal error :/
  • member icon

Reputation: 240
  • View blog
  • Posts: 1,224
  • Joined: 10-May 09

Macs :: Lacking a lack of vulnerabilities.

Posted 02 August 2009 - 12:03 PM

So, lots of people say how awesome macs are because they have no viruses or whatever. However, an article a friend told me about proves otherwise.

http://www.semiaccur...k-demonstrated/

Turns out macs can have keyloggers stored in their KEYBOARD's memory. Now, imagine that...next thing you know people will be buying mac keyboards, filling them with rootkits and shoving them into ebay, selling them "cheap" and stealing identities easily.

Meh. I'm just tired of hearing how "few viruses macs have."

Anyway, if you're a mac owner, I'd advise you to watch out if you don't buy your stuff from an official mac store...

Yours,
Shane~

This post has been edited by ShaneK: 03 August 2009 - 06:50 AM


Is This A Good Question/Topic? 0
  • +

Replies To: Macs :: Lacking a lack of vulnerabilities.

#2 ShaneK  Icon User is offline

  • require_once("brain.php"); //Fatal error :/
  • member icon

Reputation: 240
  • View blog
  • Posts: 1,224
  • Joined: 10-May 09

Re: Macs :: Lacking a lack of vulnerabilities.

Posted 02 August 2009 - 12:15 PM

Lol, wasn't sure which one it went in, thanks for moving it.

Yours,
Shane~
Was This Post Helpful? 0
  • +
  • -

#3 KYA  Icon User is online

  • g++ jameson.cpp -o beverage
  • member icon

Reputation: 3101
  • View blog
  • Posts: 19,141
  • Joined: 14-September 07

Re: Macs :: Lacking a lack of vulnerabilities.

Posted 02 August 2009 - 12:16 PM

Wow, just wow. That is pretty awesome (in terms of what people think of and can do).
Was This Post Helpful? 0
  • +
  • -

#4 WolfCoder  Icon User is offline

  • Isn't a volcano just an angry hill?
  • member icon


Reputation: 783
  • View blog
  • Posts: 7,610
  • Joined: 05-May 05

Re: Macs :: Lacking a lack of vulnerabilities.

Posted 02 August 2009 - 12:49 PM

I've been saying this for a long time, the reason there aren't that many Mac viruses is because everyone uses Windows. It's going to be whatever operating system is the most popular.
Was This Post Helpful? 0
  • +
  • -

#5 Trakker  Icon User is offline

  • A$$hole Extraordinaire.
  • member icon

Reputation: 13
  • View blog
  • Posts: 2,386
  • Joined: 06-June 01

Re: Macs :: Lacking a lack of vulnerabilities.

Posted 02 August 2009 - 12:49 PM

There's no computer safer than an unplugged computer.
All computers are vulnerable.
The reason that macs are so "virus-free" is because for the longest time they were almost nearly "marketshare-free". There was simply no demand to exploit the macintosh operating system because there weren't enough people out there using them for the end to justify the means.

Nowadays more people are using mac hardware and software. Everyone knew this day would come ever since Microsoft released Vista.

Oh and by the way, congrats; the media controls your brain.
Was This Post Helpful? 0
  • +
  • -

#6 WolfCoder  Icon User is offline

  • Isn't a volcano just an angry hill?
  • member icon


Reputation: 783
  • View blog
  • Posts: 7,610
  • Joined: 05-May 05

Re: Macs :: Lacking a lack of vulnerabilities.

Posted 02 August 2009 - 12:52 PM

That's a random statement.

I'm still laughing at that contest where a hacker undid the security on a macbook pretty quickly and got control of it.
Was This Post Helpful? 0
  • +
  • -

#7 ShaneK  Icon User is offline

  • require_once("brain.php"); //Fatal error :/
  • member icon

Reputation: 240
  • View blog
  • Posts: 1,224
  • Joined: 10-May 09

Re: Macs :: Lacking a lack of vulnerabilities.

Posted 02 August 2009 - 12:55 PM

I never believed any media that said macs are virus free. I'm laughing at the people who believe them and spread the word like they're profits of Jesus :P

Yours,
Shane~
Was This Post Helpful? 0
  • +
  • -

#8 KYA  Icon User is online

  • g++ jameson.cpp -o beverage
  • member icon

Reputation: 3101
  • View blog
  • Posts: 19,141
  • Joined: 14-September 07

Re: Macs :: Lacking a lack of vulnerabilities.

Posted 02 August 2009 - 01:06 PM

This highlights another major problem, only using first party hardware for things like mice and keyboards. If people are "forced" to use the same thing, there is a larger security risk. Good luck trying to infect all the PC keyboards, we got stuff from Logitech to Microsoft to [insert some cheeeeeeeep brand].
Was This Post Helpful? 0
  • +
  • -

#9 Pwn  Icon User is offline

  • D.I.C Regular

Reputation: 19
  • View blog
  • Posts: 458
  • Joined: 25-November 07

Re: Macs :: Lacking a lack of vulnerabilities.

Posted 02 August 2009 - 01:29 PM

View PostKYA, on 2 Aug, 2009 - 02:06 PM, said:

Good luck trying to infect all the PC keyboards, we got stuff from Logitech to Microsoft to [insert some cheeeeeeeep brand].


Which highlights another interesting Mac facet, the Mac Guru. How hard is it to be an expert when everything is the same. Memorizing FAQs (or more realistically, have the FAQ at your fingertips) is all it takes to be a Mac Guru. Knowing how everything really works will let you be a computer Guru.
Was This Post Helpful? 0
  • +
  • -

#10 Tom9729  Icon User is offline

  • Segmentation fault
  • member icon

Reputation: 180
  • View blog
  • Posts: 2,641
  • Joined: 30-December 07

Re: Macs :: Lacking a lack of vulnerabilities.

Posted 02 August 2009 - 02:30 PM

So this either requires root, or physical access to the machine?
Was This Post Helpful? 0
  • +
  • -

#11 ShaneK  Icon User is offline

  • require_once("brain.php"); //Fatal error :/
  • member icon

Reputation: 240
  • View blog
  • Posts: 1,224
  • Joined: 10-May 09

Re: Macs :: Lacking a lack of vulnerabilities.

Posted 02 August 2009 - 03:03 PM

Or to the keyboard...well, according to the article.

Yours,
Shane~

This post has been edited by ShaneK: 02 August 2009 - 03:03 PM

Was This Post Helpful? 0
  • +
  • -

#12 RudiVisser  Icon User is offline

  • .. does not guess solutions
  • member icon

Reputation: 1003
  • View blog
  • Posts: 3,562
  • Joined: 05-June 09

Re: Macs :: Lacking a lack of vulnerabilities.

Posted 02 August 2009 - 03:06 PM

View PostTrakker, on 2 Aug, 2009 - 11:49 AM, said:

Nowadays more people are using mac hardware and software. Everyone knew this day would come ever since Microsoft released Vista.

Mac's share dropped 6% (relative) since the Win 7 Beta was released/announced.
Was This Post Helpful? 0
  • +
  • -

#13 syfran  Icon User is offline

  • D.I.C Lover
  • member icon

Reputation: 83
  • View blog
  • Posts: 1,103
  • Joined: 12-July 09

Re: Macs :: Lacking a lack of vulnerabilities.

Posted 02 August 2009 - 03:09 PM

View PostWolfCoder, on 2 Aug, 2009 - 11:52 AM, said:

That's a random statement.

I'm still laughing at that contest where a hacker undid the security on a macbook pretty quickly and got control of it.


Not sure if this is the one your talking about. http://www.channelre...03/28/mac_hack/

The mac was the first to go out of all three of the operating systems. The guy did it by exploiting a bug in the safari browser.
Was This Post Helpful? 0
  • +
  • -

#14 KYA  Icon User is online

  • g++ jameson.cpp -o beverage
  • member icon

Reputation: 3101
  • View blog
  • Posts: 19,141
  • Joined: 14-September 07

Re: Macs :: Lacking a lack of vulnerabilities.

Posted 02 August 2009 - 03:51 PM

View PostTom9729, on 2 Aug, 2009 - 02:30 PM, said:

So this either requires root, or physical access to the machine?



My understanding is that the key is stopping the firmware update to insert one's own code.
Was This Post Helpful? 0
  • +
  • -

#15 Tom9729  Icon User is offline

  • Segmentation fault
  • member icon

Reputation: 180
  • View blog
  • Posts: 2,641
  • Joined: 30-December 07

Re: Macs :: Lacking a lack of vulnerabilities.

Posted 02 August 2009 - 04:11 PM

View PostShaneK, on 2 Aug, 2009 - 05:03 PM, said:

Or to the keyboard...well, according to the article.

The keyboard is still a physical part of the machine.

View PostKYA, on 2 Aug, 2009 - 05:51 PM, said:

My understanding is that the key is stopping the firmware update to insert one's own code.

Yep, but running a program in a debugger does not magically escalate it's privileges. I'm guessing you probably need root to update the keyboard's firmware. However as I do not have a Mac I'm not sure if this is the case...

---

My point is that virtually any machine can be compromised if you have either physical access, or root privileges.

As peripherals become more advanced we're going to see more and more cases of user upgradeable firmware, which is what "hacks" like this one take advantage of...
Was This Post Helpful? 0
  • +
  • -

  • (3 Pages)
  • +
  • 1
  • 2
  • 3