The reality is that malware is not very successful without system level access. System level access is gained either via social engineering, privilege escalation exploitation, or systems running with elevated privileges by default.
Social engineering used to get system level access can only be completely prevented with user knowledge. Antivirus software does not have %100 detection rates.
Privilege escalation exploitation is rare in the wild in malware for any OS. But, the likelihood of privilege escalation being used in malware in Mac OS X is less than it being used in Windows because Windows has a greater number of privilege escalation exploits. Again, antivirus software is not complete protection so Windows is more vulnerable than Mac OS X.
Also, the default account created in any OS is the typical account used by the average user. The default account created in Mac OS X does not run with elevated privileges. Windows XP is still the OS with the greatest market share and the default account created and typically used in Windows XP is running with elevated privileges by default. Only exploitation to the user level is required for system level access in Windows XP admin accounts given that discretionary access controls are disabled. Windows XP systems make up most of the machines infected with malware belonging to botnets such as Zeus.
I get annoyed when Windows "fanboys" post in malware threads that the sky is going to start falling for Macs when those posters are likely to be using or have used in the past without understanding the consequences a Windows XP admin account given the statistics of OS market shares. Those users start making accusations of fanboyism when other users post objective details about how to avoid the threat, such as "it is only a trojan so just be careful what you authenticate."
Social engineering used to get system level access can only be completely prevented with user knowledge. Antivirus software does not have %100 detection rates.
Privilege escalation exploitation is rare in the wild in malware for any OS. But, the likelihood of privilege escalation being used in malware in Mac OS X is less than it being used in Windows because Windows has a greater number of privilege escalation exploits. Again, antivirus software is not complete protection so Windows is more vulnerable than Mac OS X.
Also, the default account created in any OS is the typical account used by the average user. The default account created in Mac OS X does not run with elevated privileges. Windows XP is still the OS with the greatest market share and the default account created and typically used in Windows XP is running with elevated privileges by default. Only exploitation to the user level is required for system level access in Windows XP admin accounts given that discretionary access controls are disabled. Windows XP systems make up most of the machines infected with malware belonging to botnets such as Zeus.
I get annoyed when Windows "fanboys" post in malware threads that the sky is going to start falling for Macs when those posters are likely to be using or have used in the past without understanding the consequences a Windows XP admin account given the statistics of OS market shares. Those users start making accusations of fanboyism when other users post objective details about how to avoid the threat, such as "it is only a trojan so just be careful what you authenticate."
Last edited: