Toggle sidebar Toggle sidebar
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

Apple's Notarization Process Repeatedly Approved Malware for Mac

Appleman3546 said:
Just goes to show that Apple’s walled garden approach still fails, the best option is to allow users the choice to decide what to download regardless of Apple’s built in preferences and encourage antivirus software
Click to expand...
Walled Garden? This example is just a odd example of something getting by Apple notarization that is something no longer needed, as well as a good reminder not to install something you never requested by untrustworthy web site. MacOS is not a walled environment like iOS, or IPadOS. 🙂
 
  • Like
Reactions: G5isAlive
now i see it said:
Proof that their notorization is worthless. But it sounds good on paper.
Click to expand...

No it's not. Notarization is not malware detection. It ensures that the binary actually came from who it claims to have come from. That's it. Just like a notary public proves that a document was signed by the person who claims to have signed it, and doesn't prove that the contents of the document are true.

This is a weird news article.
 
  • Like
  • Disagree
  • Love
Reactions: Tco13, bernuli, itsmeaustend and 11 others
This is why I run Bitdefender on all my computers even netgear armor on my router. You never know and you are better safe than sorry in my book.
 
ArtOfWarfare said:
The victim isn't really the owner of the Mac, but the owner of the website if this malware is present...

All that's happening is the Mac gets different ads than it should.
Click to expand...

That may be true for now, but it's like the proverbial Camel getting it's nose in under the tent.
 
Last edited:
This is clearly a failure in the notarization process— if the code is known to be bad, it should be blocked from the start. Notarization still proved valuable in the ability to revoke the app once the problem was found.

What I don’t understand is why you’d try to disguise your malware as just another form of malware... Maybe this slipped through the review because it was hard to distinguish what was malicious from what was Adobe?

cmaier said:
No it's not. Notarization is not malware detection. It ensures that the binary actually came from who it claims to have come from. That's it. Just like a notary public proves that a document was signed by the person who claims to have signed it, and doesn't prove that the contents of the document are true.

This is a weird news article.
Click to expand...
But it didn’t do that, did it? I don’t think Adobe submitted this...

Or is your point that Apple is notarizing that the developer signature is valid, not that the developer is who they claim to be— that this was a valid developer account, but there’s no check that this is the developer for Flash?
 
  • Like
Reactions: itsmeaustend
cmaier said:
No it's not. Notarization is not malware detection. It ensures that the binary actually came from who it claims to have come from. That's it. Just like a notary public proves that a document was signed by the person who claims to have signed it, and doesn't prove that the contents of the document are true.

This is a weird news article.
Click to expand...

Wrong. While it does do what you say, it also has an automated malware detection scan.
 
  • Like
Reactions: lolrepeatlol, rwxx and jonblatho
cmaier said:
No it's not. Notarization is not malware detection. It ensures that the binary actually came from who it claims to have come from. That's it. Just like a notary public proves that a document was signed by the person who claims to have signed it, and doesn't prove that the contents of the document are true.

This is a weird news article.
Click to expand...
That’s code signing, not notarization. Notarization does indeed include checks for malicious software: "The Apple notary service is an automated system that scans your software for malicious content, checks for code-signing issues, and returns the results to you quickly. If there are no issues, the notary service generates a ticket for you to staple to your software; the notary service also publishes that ticket online where Gatekeeper can find it.” (Source)
 
  • Like
Reactions: snek and Expos of 1969
ouimetnick said:
Just another reason why we should be allowed to install 3rd party apps on iOS with out the App Store. Just because Apple approves the app (I know it’s for macOS in this particular article) doesn’t mean it’s guaranteed to be safe.
Click to expand...

What are you going on about? Allowing 3rd party apps without the app store would make this problem way worse. At least with the notary system apple can disable said software for distribution. I'm not trying to apologize for apple though, they done messed up but no one is perfect.
 
  • Like
Reactions: Ethosik
cmaier said:
yes it does. But the argument was that it is "useless." It was never intended to be the first line of defense against malware.
Click to expand...
Your argument was explicitly that notarization is not malware detection. You were incorrect; it is. That doesn’t mean it’s perfect, but it does detect malware.
 
  • Like
Reactions: ryecoke
cmaier said:
yes it does. But the argument was that it is "useless." It was never intended to be the first line of defense against malware.
Click to expand...

Well, I would argue that it IS the first line of defence.

I do agree that it isn't (and can't be) 100% perfect, but yeah its definitely not "worthless" either.
 
  • Like
Reactions: jonblatho
ouimetnick said:
Just another reason why we should be allowed to install 3rd party apps on iOS with out the App Store. Just because Apple approves the app (I know it’s for macOS in this particular article) doesn’t mean it’s guaranteed to be safe.
Click to expand...

The purpose of notarisation is not to provide 100% safety after the first "review", but it is the ability to withdraw the notarisation so the application will not run which is important.
 
  • Like
Reactions: bernuli and amartinez1660
Yeah, I don't see the problem here per se. Notarization isn't intended to be perfect, it's just an extra check. We can have arguments about whether the value is worth forcing on developers (ie, Apple could change the warning message for non-notarized software to make it a bit easier for users), but it seems like a nice feature to have as an option.

---

ouimetnick said:
Just another reason why we should be allowed to install 3rd party apps on iOS with out the App Store. Just because Apple approves the app (I know it’s for macOS in this particular article) doesn’t mean it’s guaranteed to be safe.
Click to expand...

Or maybe let users decide what risks they're comfortable taking? Allowing apps from outside the App Store for some people ≠ removing the App Store.

PBMB said:
Now wait a minute. You mean that Flash is still around? And on top of that, it is still used on Macs? 😱
Click to expand...

Adobe says Flash will continue to be supported through the end of 2020.
 
ouimetnick said:
Just another reason why we should be allowed to install 3rd party apps on iOS with out the App Store. Just because Apple approves the app (I know it’s for macOS in this particular article) doesn’t mean it’s guaranteed to be safe.
Click to expand...
How does the first sentence in any way lead to the second sentence?
 
You must log in or register to reply here.
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.
Top Bottom
Back