In an update to my post last week about the computer hacking competition, "Pwn to Own", I read another article that told of how the Windows Vista Ultimate computer ultimately fell to a hacker. The exploit cam through the Adobe Flash player which is ubiquitous on most computers these days. I'm actually a little shocked that Vista didn't fall purely on it's own default installed software, but I guess that shows that Microsoft did some things right in Windows this time around.
This also goes to show that no software can be completely relied on to be 100% secure. Adobe is a well respected company, and their software is trusted by most people. Most people have no problem installing the Flash player on their computer so they can ply online games or view videos on sites like YouTube.com. However, this competition shows us all that we need to be aware that even the big dogs on the software block can put out software with vulnerabilities.
I've said it before and I'll say it again, stay on top of your security updates and patches.
BTW, the Linux computer was the only one of the 3 to not fall during the competition, though many wonder whether very many people actually tried to hack it.
Monday, March 31, 2008
Friday, March 28, 2008
The "un-hackable" Mac?
I read an article today discussing a contest in which anyone was given the opportunity to try to hack 3 different computers - one Vista, one Mac and one Linux. The first day of the contest only allowed attacks to be attempted over the network - no direct access to the computers was allowed. All three computers remained safe.
On the second day, people were allowed to send emails and web links to the computers, which contest organizers would open and click on. In under 2 minutes, the Mac had been hacked by Charlie Miller, a former National Security Agency employee (best known as one of the researchers who first hacked Apple's iPhone last year), thus earning Miller a $10,000 prize. The Vista and Linux computers remained unhacked.
Today, the contest rules will be relaxed again, allowing people to attack 3rd party software installed on the computers. Organizers of the contest think that today will be the day that the other two computers are hacked.
So why have my last 2 posts been "anti Mac" - pointing out that the OS has flaws? Am I an Apple hater? Do I bow at the feet of the almighty Microsoft? Of course not. It's true that I am slightly biased toward MS products because I have built up my career around their products, and have had a blast doing so. Is Microsoft perfect? No. Do their products have flaws? Obviously. No one in their right mind would say otherwise.
However, followers of the "Cult of Mac" love to talk about how great and infallible Apple is, and how all of their products are the most secure and "un-hackable" products on the market. They often speak as if they are immune to security problems that others have to deal with because they use a Mac. This should be a wake up call for all the Apple daydream believers. In the words of Flavor Flav, "Don't, don't, don't, don't, don't believe the hype!"
In today's world, EVERYONE needs to take proactive steps to ensure that their computers are safe and secure - regardless of which operating system they use. Install OS patches promptly. Purchase and install additional security software, like anti-virus, anti-spam and anti-spyware programs and KEEP THEM UP TO DATE.
I think that contests like the one discussed in the article I read are absolutely vital to the computing industry. Not because they continue to poke holes in the Invincible Apple Theory, but because they cause ALL of the operating system vendors to put even more emphasis on tightening up security in their products. Gone are the days in which you only had to focus on having a million and one widgets in your OS to sell a gazillion copies. Now they must focus on making their software a secure as they can. And in the end, that's good for all of us. : )
On the second day, people were allowed to send emails and web links to the computers, which contest organizers would open and click on. In under 2 minutes, the Mac had been hacked by Charlie Miller, a former National Security Agency employee (best known as one of the researchers who first hacked Apple's iPhone last year), thus earning Miller a $10,000 prize. The Vista and Linux computers remained unhacked.
Today, the contest rules will be relaxed again, allowing people to attack 3rd party software installed on the computers. Organizers of the contest think that today will be the day that the other two computers are hacked.
So why have my last 2 posts been "anti Mac" - pointing out that the OS has flaws? Am I an Apple hater? Do I bow at the feet of the almighty Microsoft? Of course not. It's true that I am slightly biased toward MS products because I have built up my career around their products, and have had a blast doing so. Is Microsoft perfect? No. Do their products have flaws? Obviously. No one in their right mind would say otherwise.
However, followers of the "Cult of Mac" love to talk about how great and infallible Apple is, and how all of their products are the most secure and "un-hackable" products on the market. They often speak as if they are immune to security problems that others have to deal with because they use a Mac. This should be a wake up call for all the Apple daydream believers. In the words of Flavor Flav, "Don't, don't, don't, don't, don't believe the hype!"
In today's world, EVERYONE needs to take proactive steps to ensure that their computers are safe and secure - regardless of which operating system they use. Install OS patches promptly. Purchase and install additional security software, like anti-virus, anti-spam and anti-spyware programs and KEEP THEM UP TO DATE.
I think that contests like the one discussed in the article I read are absolutely vital to the computing industry. Not because they continue to poke holes in the Invincible Apple Theory, but because they cause ALL of the operating system vendors to put even more emphasis on tightening up security in their products. Gone are the days in which you only had to focus on having a million and one widgets in your OS to sell a gazillion copies. Now they must focus on making their software a secure as they can. And in the end, that's good for all of us. : )
Subscribe to:
Posts (Atom)