Based on research across established dark web forums, threat actors are targeting macOS, with exploits trading for millions of dollars

  • interolivary@beehaw.org
    link
    fedilink
    English
    arrow-up
    14
    ·
    1 year ago

    Welp, maybe I’ll finally have to get around to installing some sort of anti-virus/malware software after 20 years of macOS and/or Linux. At least the system architecture isn’t quite as much of a dumpster fire as Windows’ is, but nothing is invulnerable when there’s enough incentive

    • meseek #2982@lemmy.ca
      link
      fedilink
      arrow-up
      18
      ·
      edit-2
      1 year ago

      Naw. This is just FUD. I mean it’s coming from Accenture ffs.

      Keep calm and keep computing.

      • Yep. Seems to be a sensationalized piece that basically boils down to “Mac market share in enterprise is now more than a rounding error, so hackers might start targeting it”

        • meseek #2982@lemmy.ca
          link
          fedilink
          arrow-up
          2
          ·
          1 year ago

          Anker did just that. Turned out you could just copy paste the url into VLC and watch someone’s feed without them even knowing. They suppressed the info and hid.

      • interolivary@beehaw.org
        link
        fedilink
        arrow-up
        4
        ·
        1 year ago

        Yeah I’m not exactly in a hurry here, but more widespread malware is still just a question of incentive. macOS isn’t invulnerable, it’s just mainly been a smaller and less easy target so it’s not gotten the same sort of attention as Windows

        • meseek #2982@lemmy.ca
          link
          fedilink
          arrow-up
          5
          ·
          edit-2
          1 year ago

          Every software has holes. Not saying macOS is bullet proof. But it’s much harder to infect thanks to its Unix core and the fact the entire OS is on a read only partition. That with their own anti malware tool (Gatekeeper) that took on a much more active roll in macOS’s defenses come Ventura.

          I’m far more worried Apple replaces macOS or closes it just like all their other OSes and we end up bouncing between jailbreaks.

    • Barry Zuckerkorn@beehaw.org
      link
      fedilink
      English
      arrow-up
      6
      ·
      1 year ago

      The general recommendation is to configure your system to allow the use of the minimum number of privileges. If you don’t have the need to use software that doesn’t come from a trusted repository (like the Apple App Store itself, but also things like homebrew), go ahead and turn off the ability to run software from other sources. If you’re coding, make sure your code is properly sandboxed, and that you’re not blindly relying on untested packages (see compromised npm packages). Don’t give apps accessibility or other rights if they don’t need them, etc. And then stay current on all software updates.

      Even zero-days often rely on certain configurations, and you can always lock down the built-in apps to not auto-run or auto-preview things they receive. Some of it requires an active user maintenance to decide how to balance convenience versus security on your own system.