Kaspersky working with Apple to make OS X safer (Update: sort of)

Remember Kaspersky accusing Apple of being 10 years behind Microsoft when it comes to security? Well, they've decided to do something about it: according to Computing.co.uk, Kaspersky is working with Apple (at Apple's request!) to make OS X a more secure OS.

Kaspersky CTO Nikolai Grebennikov told Computing that they've been painstakingly analyzing OS X for security flaws. “Mac OS is really vulnerable, and Apple recently invited us to improve its security. We've begun an analysis of its vulnerabilities, and the malware targeting it.”

Even though they're actively working with Apple now – no doubt for a hefty sum -, the folks at Kaspersky still have some harsh words for whoever is in charge of Apple's security. “Our first investigations show Apple doesn't pay enough attention to security. For example, Oracle closed a vulnerability in Java, which was a target for a major botnet several months ago.”

The fact is that any OS, no matter who makes it, and no matter how seriously they take security, is vulnerable in one way or another. A lot of Apple's apparent malware resistance has as much to do with their obscurity as with their efforts at building a secure OS, and that obscurity is rapidly fading now that the word's out. And yes, the same can be said of Linux, too.

Computing also points out that Kaspersky has finally fulfilled their longtime dream of working with Apple; last year, Grebennikov told them that he was considered about the security of iOS, and Apple's ability to keep it locked down on their own. He also said that he expected to see malware targetting Apple's mobile devices within about a year. Of course, that was a year ago...

Update 5/15/12: Grebennikov has clarified his statements with Computing, stating that Kaspersky was analyzing OS X independently, but that Apple has been receptive to working with them to patch whatever holes they find in OS X.

Report a problem with article
Previous Story

3 pound, 14 inch Lenovo ThinkPad X1 Carbon laptop announced

Next Story

38 Studios' fate uncertain; possible financial issues

21 Comments

Commenting is disabled on this article.

Neowin is not only slow n delivering these stories, but also not reporting the complete story...

From Mac Rumors:

Update: Kaspersky Lab has provided clarification to Engadget, claiming that Grebennikov's comments were taken out of context and that Apple has not invited Kaspersky to perform any security investigations.
On Monday, April 14, computing.co.uk published an article titled "Apple OS 'really vulnerable' claims Kaspersky Lab CTO" that includes an inaccurate quote regarding Apple and Kaspersky Lab. The article reports that Kaspersky Lab had "begun the process of analyzing the Mac OS platform at Apple's request" to identify vulnerabilities. This statement was taken out of context by the magazine - Apple did not invite or solicit Kaspersky Lab's assistance in analyzing the Mac OS X platform. Kaspersky Lab has contacted computing.co.uk to correct its article.
Kaspersky's analysis is being undertaken at its own initiative, although Apple has reportedly indicated that it is "open to collaborating" on any new issues Kaspersky discovers.

-=MagMan=- said,
Neowin is not only slow n delivering these stories, but also not reporting the complete story...

We delivered the complete story as was available at the time, and we've since updated it to conform to what's happened since then

They could start by filling in the missing part of the Apple. Leaving a piece bitten out like that causes enzymatic browning.

Enron said,
They could start by filling in the missing part of the Apple. Leaving a piece bitten out like that causes enzymatic browning.

You totally made my day <3

Anyone know if they have some method of preventing me from walking into my school's computer labs, booting into root, and changing all their administrator passwords so I can actually use the computer to a minimal potential yet? Cause I see that as a pretty significant flaw.

goretsky said,
Hello,

Original article has been updated: http://www.computing.co.uk/ctg...le-claims-kaspersky-lab-cto

Apple did not invite Kaspersky to look at the security of their operating systems was is instead conducted an "independent" analysis.

Regards,

Aryeh Goretsky

That's a shame. I was going to post something praising Apple for finally taking security seriously. Well, I still hope that they stop resting on their small market share and start trying to design an OS that is more secure, as I expect them to continue their gains...

M_Lyons10 said,

That's a shame. I was going to post something praising Apple for finally taking security seriously. Well, I still hope that they stop resting on their small market share and start trying to design an OS that is more secure, as I expect them to continue their gains...

your assuming something, that Apple actually give a toss about their users..........their money yes, their actual welfare.....errr no

Lets face facts here - OS X may have seen some malware over the last few years - but it's all things that the end user has specifically told the OS to install.

It doesn't matter how secure Widows, Linux, Unix, BSD, OS X, iOS, Android, OS/2, Windows Phone, etc is, if you've got an idiot user, you've got a problem.

CPressland said,
Lets face facts here - OS X may have seen some malware over the last few years - but it's all things that the end user has specifically told the OS to install.

It doesn't matter how secure Widows, Linux, Unix, BSD, OS X, iOS, Android, OS/2, Windows Phone, etc is, if you've got an idiot user, you've got a problem.

Yup, i'm a mac user, no virus software.. i'm one of those 'i've got a mac, screw virus protection' people, but i was sort of like that on PC to be honest, i can spot the signs without a virus scanner and i managed just fine... so i'll manage just fine on my mac, too.

I'm not going to keep my head buried in the sand any longer though, OSX is growing in popularity so it's going to become a bigger target every day.. Apple needs to stand up and realise this instead of ignoring it hoping it will go away.

CPressland said,
Lets face facts here - OS X may have seen some malware over the last few years - but it's all things that the end user has specifically told the OS to install.

It doesn't matter how secure Widows, Linux, Unix, BSD, OS X, iOS, Android, OS/2, Windows Phone, etc is, if you've got an idiot user, you've got a problem.


Very true. There's also another factor involved - Where users get their software from. If users have to go hunting for their own software on the internet, then there's a much greater likelihood of infection.

GNU/Linux repositories remove that infection vector, as do app stores to some degree, which is why Apple has created one, and Microsoft is adding an app store for Windows 8.

Uplift said,

Yup, i'm a mac user, no virus software.. i'm one of those 'i've got a mac, screw virus protection' people, but i was sort of like that on PC to be honest, i can spot the signs without a virus scanner and i managed just fine... so i'll manage just fine on my mac, too.

I'm not going to keep my head buried in the sand any longer though, OSX is growing in popularity so it's going to become a bigger target every day.. Apple needs to stand up and realise this instead of ignoring it hoping it will go away.

Well said Uplift, now to educate the plethora of mac users @work that no, macs are not immune and protection is a sensible precaution.

FarCry3r said,
This is outrageous! They're saying that my secure OSX is NOT secure???

Yes they are. Just install Windows. MACs are 10 years behind in security. It is open door...

DaveBG said,

Yes they are. Just install Windows. MACs are 10 years behind in security. It is open door...

Most wireless routers, wireless access points and managed switches have the ability to filter MAC addresses, but MAC addresses can easily be spoofed so I see your point, however I don't see how it is anything to do with the article.

DaveBG said,

Yes they are. Just install Windows. MACs are 10 years behind in security. It is open door...

Funny how people pretend to know what they're talking about, yet fail to understand the difference between a Mac and MAC.

.Neo said,

Funny how people pretend to know what they're talking about, yet fail to understand the difference between a Mac and MAC.

Good find SmartAss