A worm in the Apple.

[Akaran_D]

http://www.technologyreview.com/article ... 102804.asp

Weird things are happening these days. The Red Sox win the World Series (in four games, yet!)—and hackers hit the Macintosh. It’s hard to say which is the stranger event.

The Apple community has—since its inception—been largely immune to nefarious hackers bent on spreading harm. If you are a Windows user, as I am, you know the routine. You complain about the latest spyware or virus attack, and Apple devotees respond with good-natured teasing—they don’t have worry about such nonsense. Well, now they do. That’s not true anymore.

Predictably, posts on various Apple-related message boards have been offering varying levels of concern, ranging from mild disappointment to utter gloom. I think this reaction is fundamentally misguided. MAC users should not be upset about this malware news; they should rejoice.

Huh? Why should the Apple community be celebrating the news? Before I explain, let me make one thing clear: I’m not advocating this kind of hacking, and certainly—as a victim of a virus attack myself not too long ago—I empathize with anyone who has been attacked. That said, this program is a milestone in computing history because the Apple community is finally large enough that it has drawn the attention of the hackers.

Here’s what happened: Last week, astute Mac users discovered a program dubbed “Opener.” This piece of code embeds itself onto Macs running OS X, the latest Apple operating system, and disables the computer’s firewall. The malware also locates and collects any password information it can find on the infected system, leaving behind a password-cracking program called “John the Ripper.” It is believed that Opener can be called into action remotely utilizing a “bot net,” in which a remote hacker plants malware onto unsuspecting users’ computers and then calls that code into action. (For more on bot nets, see my earlier column on the topic.).

Apple’s imperviousness to viruses and the like was based on two factors. First, the Macintosh is more secure than Windows, in part because of Apple’s reliance on more secure Unix components for its underlying operating system foundation; this explains why, technically, the Mac is less vulnerable to viruses, Trojan horses, and malware than is Microsoft’s software. But second, and more important, the Apple user community simply wasn’t big enough for hackers to target. Hackers want headlines and notoriety, among other things. What’s the point of creating a program that will affect only four percent of the computing population, when you can spend as much time creating something that will affect 96 percent?

Apple’s market share is still in the single digits, but as this week’s U2 iPod announcement—not to mention the company’s sky-high stock price—shows, Apple is back. According to the company’s most recent earnings statement, Apple sold 836,000 Macs in the latest quarter, up six percent from the previous quarter. Sales of iPods zoomed up 500 percent from the year-ago period. And dare I say, the company is performing better than ever before? Its new color-screen iPod can’t help but stimulate interest in the device. The company’s conspicuous public presence these days, coupled with a slow but steady growth in number of Macintosh users, makes it a target for those who seek to do harm.

It was encouraging to see the Apple community respond quickly to address the Opener threat. Because Apple fans aren’t used to viruses and the like, they don’t have the same industry of virus watchers at the ready, scanning the Web for any suspicious activity. When a virus hits Windows systems, anti-virus companies immediately spring into action, issuing fixes and alerts. Not so here. The first alerts of Opener that I could find were from individual users, discussing strange findings on their computers. “It's important that a warning get out quickly,” wrote one person on a Mac message board on October 22. “I'm now actually a bit spooked,” wrote another. Three days later, Sophos, an anti-virus company, posted a fix for the problem.

Three days is a pretty long lag time between alerts and a fix, but the Apple community is just now finding its sea legs in the world of malware. It’s an odd thing to be celebrating, but Apple maniacs should actually see this development as an event with positive underpinnings. Mac users’ next move should be to pop open a bottle of champagne and do their best Sally Field impersonation: “You like us! You really like us!”

[Lohrno]

You know, I wouldn't be so quick to pin Apple as 'Virus Free'. I remember quite well in the early days there were tons nifty of viruses you could get.

-=Lohrno

[noel]

You can write a virus for anything that runs an operating system that's based on software.

You can write a worm for anything that has a network connection and software.

[Lohrno]

You can write a virus for anything that runs an operating system that's based on software.

You can write a worm for anything that has a network connection and software.

Yeah I'm just disputing the article writers portrayal of the pristine virus free Macintosh landscape. I'm pretty sure it's not quite like that.

Actually, you can't write a virus for BREW cell phone handsets because you can't write software for it that it will accept. Maybe you can write a J2ME virus... But that's a whole other can of worms as you can't really write software for it unless it passes through all the tests.

-=Lohrno

[noel]

Yeah I'm just disputing the article writers portrayal of the pristine virus free Macintosh landscape. I'm pretty sure it's not quite like that.

Actually, you can't write a virus for BREW cell phone handsets because you can't write software for it that it will accept. Maybe you can write a J2ME virus... But that's a whole other can of worms as you can't really write software for it unless it passes through all the tests.

-=Lohrno

But if you could write software it would accept, and you wrote software that did something other than a desired function, no matter how innocuous, that could be considered and may be considered a virus.

I wasn't challenging your post btw, rather trying to add to it.

[Lohrno]

But if you could write software it would accept, and you wrote software that did something other than a desired function, no matter how innocuous, that could be considered and may be considered a virus.

Yeah exactly. That's the nature of things. Well, technically what you describe would be a Trojan or Malware.

You know though, I'd rather have the threat of virii than be forced to longhorn or some other restrictive software development model. I thought that the reason people had computers in the first place was that they wanted to play with them, and have the power to write their own software.

I wasn't challenging your post btw, rather trying to add to it.

I know. Sorry if I gave a confrontational impression...long day.

-=Lohrno

[Tenuvil]

You can write a virus for anything that runs an operating system that's based on software.

You can write a worm for anything that has a network connection and software.

Great point...the "Morris worm", the first malware released to the Internet, propagated across millions of hosts without regard for the host operating system.

A refresher in the OSI model might be helpful for those who think these things are absolutely limited to one particular OS.

[Arundel Pajo]

Used Macs for years, and I still think OSX is a better operating system than WinXP. That said, Macintosh was never without viruses. There are just a hell of a lot fewer of them, but they're still out there.

[Neost]

Who'd want to spend the time to write a virus to piss off the 15 people still using mac?

[Sionistic]

I thought every mac came bundled with a virus? sure operates like it does

[Sargeras]

I thought every mac came bundled with a virus? sure operates like it does

It seems that way at the G5's at my school. OSX runs slow/buggy as SHIT on every single one of those machines (G5 /w 1gig RAM). Where XP runs super fast on the HP workstations.