Home PCs not so safe?

[t300]

http://money.cnn.com/2004/10/25/technology/personaltech/cpu_security.reut/index.htm?cnn=yes

Survey: Most users mistakenly believe their computers are protected from viruses and spyware.

This whole article is a big laugh. I am sure most of us Macheads will get a kick out of it.

Most notable parts for me:

Though 85 percent had anti-virus software on their computers, most had not updated that software in the past week -- a necessary step to guard against viruses that can spread across the globe in a matter of days.

And of course, who could forget such timeless classics such as...

"I was surprised at the difference between perception and reality in some cases," said Ken Watson, a Cisco Systems Inc. (Research) executive who chairs the National Cyber Security Alliance, a partnership between high-tech businesses and the U.S. government.

If only CNN had put it at the end....

Oh yeah, and if you don't want any of this ever, go buy an Apple.

 

[Mr. Anderson]

The real question is how long with Apples be immune from this?

And we can still pass on some of the viruses even though they don't affect the macs themselves.

D

 

[jsw]

I don't think we'll be immune much longer. But I think we'll always be much safer, both due to our smaller marketshare and our smarter user base.

 

[emw]

The real question is how long with Apples be immune from this?

And we can still pass on some of the viruses even though they don't affect the macs themselves.

D

One issue is that we have always been so secure, that if something happens we could get caught completely off guard. If you think about it, we're always bragging about how immune we are and that no viruses exist for OS X, etc. The minute one is released, we'll all get it because so few of us are prepared to do "battle."

Those of us with .Mac get Virex, but I'm not sure how wonderful that is...

 

[srobert]

One issue is that we have always been so secure, that if something happens we could get caught completely off guard. If you think about it, we're always bragging about how immune we are and that no viruses exist for OS X, etc. The minute one is released, we'll all get it because so few of us are prepared to do "battle."

Those of us with .Mac get Virex, but I'm not sure how wonderful that is...

Speaking of the devil:

[Johannesburg, 25 October 2004] - Security experts have discovered a worm that targets Apple's Macintosh OS X operating system.

While not in the wild, the SH/Renopo worm is still fairly malicious as it attempts to turn off firewall and other security software, says Brett Myroff, CEO of local Sophos distributor Netxactics.

“The worm, also known as Opener, can turn off the Mac OS X firewall and other security software; will download and install hacker tools for password-sniffing and cracking; will make key system directories world write-able; and will create an admin-level user for later system abuse.”

Renepo also turns off accounting and logging to help hide its presence, adds Myroff. "You do not want the Renepo worm anywhere near your Mac OS X network, as it makes so many security-related changes to your systems that all bets are off once you have been compromised.”

Because the worm attempts to harvest user, configuration and password data for a wide range of applications, it represents a huge security headache for all administrators, creating a backdoor to leave infected computers vulnerable to further attack, says Myroff.

The emergence of the worm serves as a timely reminder for Macintosh users to avoid complacency in terms of malware threats, he adds.

Link

 

[Dalriada]

There's an ongoing discussion of a possible spyware which could create some headaches. Check it out (srry forgot how to show url as a link ?) http://www.macintouch.com/opener.html

 

[jsw]

Well, if it isn't that virus, it'll be another one. Sooner or later, they'll get to us. It has been a nice vacation, though. I think I'll take my old BeBox out of the closet and plug it in. It has a browser, and I'd bet my life savings (all $12.53 of it) that there is never, ever going to be a virus that'll touch that thing.

 

[johnnyjibbs]

Speaking of Mac threats, I have my OS X firewall turned off ( ) as it says it interferes with my iPhoto sharing. I remember an iChat AV Apple discussion article saying something like "or to save problems you could just turn the firewall off on both Macs."

Should I be worried about not having the firewall on? My PC is well protected but I have no anti-virus software on my Mac.

 

[jsw]

Speaking of Mac threats, I have my OS X firewall turned off ( ) as it says it interferes with my iPhoto sharing. I remember an iChat AV Apple discussion article saying something like "or to save problems you could just turn the firewall off on both Macs."

Should I be worried about not having the firewall on? My PC is well protected but I have no anti-virus software on my Mac.

How do you connect to the Internet? Assuming you have a decent hardware firewall between you and the 'net (and most routers have one built in, and they're available for under US$60 if you don't have one already), you're relatively safe. If there's nothing between your Mac and the vast unknown, you're playing a dangerous game.

Also, you'd be much better off just turning off the rules in the Mac firewall which interfere with iPhoto as opposed to shutting it all off.

 

[PlaceofDis]

just out of curiosity, does Airport Extreme have a firewall??

 

[jsw]

just out of curiosity, does Airport Extreme have a firewall??

From Apple's site:

The AirPort Extreme Base Station comes equipped with a built-in firewall to help prevent unwanted access to sensitive data on your computer. It’s also certified for Wi-Fi Protected Access, which greatly increases over-the-air data protection and access control on wireless networks.

 

[rueyeet]

Opener isn't a worm, according to the discussion at MacInTouch; it's a script that requires installation by someone with administrator privileges (though, that could be a hacker who's gained access to your system) but does not spread without manual intervention. At least, not yet.

Also, the discussion seemed to imply that Apple has distributed security patches that would impede Opener since it was posted last September.

 

[johnnyjibbs]

How do you connect to the Internet? Assuming you have a decent hardware firewall between you and the 'net (and most routers have one built in, and they're available for under US$60 if you don't have one already), you're relatively safe. If there's nothing between your Mac and the vast unknown, you're playing a dangerous game.

Also, you'd be much better off just turning off the rules in the Mac firewall which interfere with iPhoto as opposed to shutting it all off.

Well my internet access comes via a PC with Windows XP Home and internet sharing. The PC gets it via USB modem - my ISP probably has some kind of firewall software.

I'm thinking about getting an ethernet router, but it's just an extra cost that I don't need at the moment. I'll try setting up a port for iPhoto and turn the Firewall on then.

 

[Apple Hobo]

There's a similar article in my local newspaper today. Some dude with a Dull had several viruses and over 600 pieces of spyware.

 

[jsw]

There's a similar article in my local newspaper today. Some dude with a Dull had several viruses and over 600 pieces of spyware.

Just imagine how bad it would have been had he actually connected to the Internet.

 

[Mr_Ed]

Speaking of Mac threats, I have my OS X firewall turned off ( ) as it says it interferes with my iPhoto sharing. I remember an iChat AV Apple discussion article saying something like "or to save problems you could just turn the firewall off on both Macs."

Should I be worried about not having the firewall on? My PC is well protected but I have no anti-virus software on my Mac.

Turn the OS X firewall on and open up port 8770 for iPhoto sharing. It's under "Sharing" in "System Preferences." It's actually pretty easy to do.

 

[emw]

Well my internet access comes via a PC with Windows XP Home and internet sharing. The PC gets it via USB modem - my ISP probably has some kind of firewall software.

I'm thinking about getting an ethernet router, but it's just an extra cost that I don't need at the moment. I'll try setting up a port for iPhoto and turn the Firewall on then.

You may want to spend the $50 or $60 (maybe less) on a reasonable router rather than sharing via Windows. Also, it means your XP box is hanging out unprotected on your internet connection, which I would hazard a guess to say that is not optimal.

You ISP won't be doing much in terms of firewall protection for your home setup.

 

[wdlove]

Well, if it isn't that virus, it'll be another one. Sooner or later, they'll get to us. It has been a nice vacation, though. I think I'll take my old BeBox out of the closet and plug it in. It has a browser, and I'd bet my life savings (all $12.53 of it) that there is never, ever going to be a virus that'll touch that thing.

Sadly in this world you can really say never. At MacWorld Boston there was a company selling a hardware solution as a firewall. It's mainly for security, that is why my wife was interested due to her sensitive patient medical records. I was also interested because of a much safer virus protection.

 

[jsw]

Sadly in this world you can really say never. At MacWorld Boston there was a company selling a hardware solution as a firewall. It's mainly for security, that is why my wife was interested due to her sensitive patient medical records. I was also interested because of a much safer virus protection.

Well, I think the "never" is safe for the BeBox. Only a few of us have one, not many more have the BeOS that runs on Intel boxes, and I'm pretty certain that no more than a dozen BeBoxen are online.

I agree that the hardware solution is best - meaning a dedicated device with update-able software. Beware, though, that even the popular dedicated devices can be breached. In the end, it's a question of how paranoid you want to be. A dedicated firewall, a router with a built-in firewall, and the firewall in OS X (combined) ought to be enough to stop anything today. Of course, nothing will prevent you from running a Trojan horse application except for your own common sense.

 

[johnnyjibbs]

Turn the OS X firewall on and open up port 8770 for iPhoto sharing. It's under "Sharing" in "System Preferences." It's actually pretty easy to do.

Now done, thanks.

 

[musicpyrite]

The survey of 329 computer users by America Online and the National Cyber Security Alliance found that many were more vulnerable than they thought.

Well this survey is already down the crapper......







....... who's got the popcorn?

 

[Littleodie914]

Haha what really gets me is how they play it off like it's something new... Are Mac users the only ones who actually realize how infected PC's are? Is there some phenomenon where you only understand that computers aren't supposed to have spy-ware after you've used one that doesn't? But yea, the part where they talk about how updating your virus definitions every week is necessary is hilarious! Gives me another reason to let this precious 'book out of my sight.

 

[Mechcozmo]

....... who's got the popcorn?

I do.

Article in today's paper warning about all kinds of malware. I'll write tomorrow, "And if you use Mac OS X, none of this applies."

Also, there are two tech columns in our paper. The Mac one always is like, "I have some scanner older than my dad, how can I use it?" and the guy tells them to you scanning software and classic, etc. Or, "Do I need to defragment my hard drive?"
The Windoze one: "I get thousands of unsent messages a day. What is up with that, they are all undeliverable?" Turns out, that person was hit with a virus that hijacks your computer and turns it into a spam machine. No way to get it off w/o reinstalling Windows, or doing a massive virus scan too complicated to describe in a newspaper column. It is sad...always the same, "My computer is infected!" kind of story...

And although there may be, one day, a virus for the Mac, it isn't here yet and won't be easy to do for a long time.

 

[whooleytoo]

The reporting about Opener is really starting to bug me - nearly every report about it I've seen describes it as a worm, and that's wrong. It's not a worm, or a virus, or a trojan. I really wish reporters spreading this around as news would read up on the topic beforehand to better understand it.