• minorninth@lemmy.world
    link
    fedilink
    English
    arrow-up
    29
    ·
    1 year ago

    Some people say there’s no malware for macOS and that’s obviously not true.

    But others say macOS has malware so it’s no better than Windows in that regard, but I don’t think that’s true either.

    Look at this example. It only works if it tricks users into downloading and running an unsigned executable, bypassing sometimes multiple warnings.

    • ShunkW@lemmy.world
      link
      fedilink
      arrow-up
      18
      ·
      1 year ago

      The thing is that Windows is still more used than osx. So naturally it’s going to be targeted more. Especially since more businesses use Windows than osx too.

      I’ve come across Linux malware in my time in cyber Sec. If it exists, it’ll have malware.

      • scurry@lemmy.world
        link
        fedilink
        arrow-up
        6
        ·
        1 year ago

        That’s true, but macs also do have more security controls, configured more sensibly by default. BitLocker, the system’s full disc encryption feature for example, is still considered a premium product reserved for more expensive editions, whereas macs, android, and iOS have had it standard and default enabled (the latter two with no option to disabled it) in current versions for years. Windows still does not require (or last I checked even offer) things like application sandboxing or runtime hardening by default (this may well have changed in the past couple of years, but I’ve heard nothing of it). While the Universal Windows Platform does have a functional permissions system, that whole platform is (as I understand it) limited to the Microsoft store (which as I understand is ignored by vendors), and the last time I looked at it, it was a mess. There are other such things. Which isn’t to say macs can’t get malware, they can, and they’ll get more malware as time goes on. There are other measures set up on Windows but not macOS, but they don’t appear to be as effective to me, and they seem to be mainly focused on reacting to specific incidents. Security-wise, the two really are not the same.

        • ShunkW@lemmy.world
          link
          fedilink
          arrow-up
          4
          ·
          1 year ago

          Drive encryption doesn’t really matter to malware, since the disk must be decrypted to function when turned on. Also the majority of malware still runs in userland, maybe arguably more since the rise of ransomware.

          I’m not sure what you mean by permissions being limited to the Microsoft store exactly, but there’s a very robust permissions system built into Windows by default. It’s just not very user friendly, and your average user wouldn’t know it exists probably.

          There’s arguments on both sides about default security policies anyway, as I’ve found navigating osx systems to install software can often be a nightmare - but that could be due to my lack of experience with it directly.

          Both systems have pros and cons from a security standpoint. In the corporate spaces I’ve worked in, osx security is more annoying to manage from a central point than Windows.

          • winky88@startrek.website
            link
            fedilink
            English
            arrow-up
            1
            arrow-down
            2
            ·
            edit-2
            1 year ago

            As a Windows user that dabbles in Mac but is definitely not an expert, I get seriously frustrated when I try to share my screen in ??? meeting product only to have to adjust permissions and be told I probably need to restart the app (in the middle of a meeting). I’ve found other minor nags with MacOS along the same lines. They are trivial at best, but can be seriously interrupting. I agree with the high security defaults, but the UX could be improved.

        • Stephen304
          link
          fedilink
          arrow-up
          6
          ·
          1 year ago

          In the phrase “security through obscurity”, obscurity means obscuring how the system works, eg making the source code secret. Mac being less popular has nothing to do with security through obscurity. The argument is that a less deployed platform is a less valuable target, which is absolutely true.

    • Wooster@startrek.website
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 year ago

      The Mac’s biggest defense has long been that it plays second fiddle to Windows.

      But with iOS, arguably, being top banana, and Mac now running iPhone software in a Mac costume, I expect a lot more in-the-crossfire vulnerabilities.