Comment Articles

The Apple of Symantec's eye

Fran Foo ZDNet Australia

Published: 28 Sep 2005 17:05 BST

Security vendor Symantec has once again pointed the knife at Apple Macintosh users.

Symantec's latest Internet Security Threat Report continues to voice concern for the security and stability of the Mac operating system, OS X in particular. The publication covered findings for the first half of 2005.

"An ever-increasing number of users are adopting OS X. Many of these users believe that this operating system and the applications that run on it are immune to traditional security concerns. However, as evidence suggests, increasingly they may be operating under a false sense of security," the report stated.

What exactly was the supporting and undisputed evidence? A SecurityFocus page that aggregates 78 entries of OS X flaws starting from version 10 (circa 2001) onwards. Compare this to Windows ... well, where would you start? OK, I hear your ... it's not an apples-to-apples comparison.

SecurityFocus describes itself as a vendor-neutral site that provides objective, timely and comprehensive security information to all members of the security community. Oh, and by the way, SecurityFocus was acquired by Symantec in 2002.

The report briefly touched on a Trojan called OSX/Weapox — its discovery indicates that OS X may no longer be spared from widespread attack. "Though vulnerabilities and malicious code targeting other operating systems continue to outnumber those on OS X, Symantec recommends users continue to apply security patches and educate themselves on OS X security issues," the report stated.

Symantec's stance against OS X users — that this group is delusional — is familiar.

The false-sense-of-security claim was mentioned in a previous report which covered the second half of 2004. Then, Symantec said increased adoption of the Mac mini will escalate malicious activity since it could be purchased by less security-savvy users. These statements were widely covered in the press and opined on by your writer.

The company also claimed OS X's BSD-Unix origins made it susceptible to vulnerabilities.

In the latest report, however, the Mac mini didn't score a mention. This is due to the fact that OS X has increased in popularity on all of Apple's platforms, Symantec security manager Dean Turner said.

"When we referred to the Mac mini we were referring to it as a popular device for OS X (which we continue to talk about).

"Cheaper hardware can mean increased adoption ... which has been the case for Apple," Turner said.

Indeed, the mini version is more affordable compared with the sleek iMac; a 1.25GHz 40GB Mac mini costs £359 but throw in a keyboard, mouse and monitor, and the cost is almost comparable to a Dell or any other IBM compatible, while a 1.8GHz, 17 inch iMac starts at £899.

Symantec reckons as Mac OS X increases in usage, bad things will happen. Last week was a prime example — Apple released 10 security patches but made no mention to how dangerous the flaws were.

As company policy, Apple tends to...

For more, click here...