Hacker: Microsoft More Secure Than Apple, Adobe
Microsoft is doing things better than Apple and Adobe, according to a career hacker.
Marc Maiffret got into hacking not long after he got his first computer as a schoolboy, and by age 17, he was a known hacker who was greeted one morning by an FBI agent who held a gun to his face.
Since then, Maiffret turned his life around and helped to co-found eEye Digital Security, a company dedicated to finding security flaws in Microsoft's software. Last December, he joined anti-malware firm FireEye as chief security architect.
For all his work trying to find holes in Microsoft's products, Maiffret now says that the Windows maker has the best practices when it comes to software security.
"Now when you look at Microsoft today they do more to secure their software than anyone. They're the model for how to do it. They're not perfect; there's room for improvement. But they are definitely doing more than anybody else in the industry, I would say," Maiffret told CNet in an interview. "From an internal process in how they go about auditing their code and securing software from a technical perspective, they do have one of the best models. The area they still have room for improvement is around time lines of how long it takes for them to fix things."
Maiffret is now pointing to Adobe and Apple as being companies who are lacking in the security department. "They are starting to get black eyes with people saying Adobe is a bigger worry than Microsoft is at the moment, which I agree with. As those things are happening, Adobe and Apple and other companies are starting to pay attention and care more. But a year ago, it was still very much a marketing thing. People from both companies treated it as a marketing problem. They didn't have good technical structures behind the scenes."
Apple has hired an industry-noted security employee formerly of Microsoft, but Maiffret still says that Apple's very much behind when it comes to security. "They've really only begun in the last six months or so taking security seriously and understanding that it impacts their business in a serious way."
Referring to Apple, Maiffret said,"It's even a little scarier with them because they try to market themselves as more secure than the PC, that you don't have to worry about viruses, etc. Anytime there's been a hacking contest, within a few hours someone's found a new Apple vulnerability. If they were taking it seriously, they wouldn't claim to be more secure than Microsoft because they are very much not. And the Apple community is pretty ignorant to the risks that are out there as it relates to Apple. The reason we don't see more attacks out there compared to Microsoft is because their market share isn't near what Microsoft's is."
Maiffret continued, "I think Microsoft does a better job with their code auditing than folks like Apple do. We've only seen a scratching of the surface as far as Apple vulnerabilities because nobody cares to find them. There's nothing inherent with Apple themselves and their development. The only reason Apple gets little increase in security is because they're running on top of a Unix-based operating system and they can take advantage of some of the things that have been done for them."
- AMD Making Money, Sells 6 Million ATI DX11 GPUs
- Deals for April 16: Blu-ray Bundle, God of War 3
- UCSC Students Creating Killer StarCraft Bot
- Why Apple Fans Hate Tech Reporters
- 200GB Toshiba HDD Built for Automobiles
- Intel, Nvidia, NSA Rally with iPad's Early Success
- Nvidia Custom-Made the 320M IGP for Apple
- ATI Catalyst 10.4 Preview Driver Now Available
- Deals for April 15: StarCraft 2 Collector's Edition
- No Surprises Here, But Crysis 2 Looks Best on PC
- Report: Apple Looking to AMD for Future Chips
- Did Steve Jobs Steal The iPad? Genius Inventor Alan Kay Reveals All
- Office 2010 Hits Release to Manufacturing Milestone
- How To: Setup XP-Mode on Win 7 Basic, Premium
- Deals for April 19: Blu-ray Bundle, 500GB External
- 5 Features The iPhone 4G Needs Right Now
- iPad Disassembled, Reassembled in Animation
- Your Laptop Could Be an Earthquake Detector
Nothing new here.
Btw, most Linux distro's also claim being completely secure. Is this like Mac OSX because market share is too small to be a target for hackers or is it really a safe kernel? I've been wondering that for a while.
Being open source helps. If you don't trust the kernel, its right there for you to inspect. I would say that no matter what system is being used though, your users are always going to be the greatest point of failure.
true, too many people believe in the, i have to admit, incredible work in apples marketing sector... the small market share makes macOS less interesting for malware, which most people naively interpret as higher system security... oh dear^^ cant wait for stupid macusers being nailed by malware once macOs has a greater market share.
true, too many people believe in the, i have to admit, incredible work in apples marketing sector... the small market share makes macOS less interesting for malware, which most people naively interpret as higher system security... oh dear^^ cant wait for stupid macusers being nailed by malware once macOs has a greater market share.
When Mac computers will become infected by malware and show faulty operation, Jobs will proclaim 'It just works. Some careless users just did something wrong and installed malware. You will be struck down by a thousand thunderbolts if you ask for a refund'.
On which point, thousands of Cultists will jump around the internet to defend the Cult of the Holy Apple and blame anyone saying the malware is there because of MacOSX's weakness
And then everything will be back to normal and people will continue to buy iCrap for its prestige.
i've thought this was public knowledge for years. I mean i know there are millions of technologically illiterate people in the world, more commonly known as apple customers. But the fact is that there are somewhere in the region of 3billion MS computers in the world, and only a few hundred million apples. And since the gits that write viruses want impact, they dont waste there time attacking apples, lets face it, it would take months for an apple virus to spread from one PC to the next unless u managed to hit a "trendy" designer company.
I hate the way MS still has its evil mega company when apple is the one infrindging of every copyright law in the EU!
Nothing new here.Btw, most Linux distro's also claim being completely secure. Is this like Mac OSX because market share is too small to be a target for hackers or is it really a safe kernel? I've been wondering that for a while.
As I understand it, there are some things that are inherently secure in Linux, but as has already been said, most problems people face with security is caused by their own ignorance. I use OS X, Windows and Ubuntu and I very rarely have a problem with any. When I say very rarely, I had one minor issue (trojan) using Windows however that was quickly stamped out. Never had any with OS X or Linux, but I have used those considerably less on the whole (last 3 years or so).
Any problems I ever had with Windows were caused by my own stupidity or risky behaviour to be fair.
Hmmm, I agree that the only thing that protects Apple in the security domain is its small market share. However - technicalities aside - the fact is that, for whatever reason, the unschooled user is less likely to be on the receiving end of a virus if they are using a mac.
If I swim where there are no sharks, I don't need shark nets.
@evolvedpc
"If I swim where there are no sharks, I don't need shark nets."
You are quite right, but a swimmer would be wise to check why there are no sharks. It's one thing if you're swimming in a lake that sharks can't reach; it's quite another if at the moment they just happen to be a little further out to sea.
The day some guy write a good worm for MacOSX, I'll laugh my ass off at all the Apple fanboys crying on their infected and not protected computer!