Re: [Fed-Talk] Apple's security belly-flop
Re: [Fed-Talk] Apple's security belly-flop
- Subject: Re: [Fed-Talk] Apple's security belly-flop
- From: Michael Pike <email@hidden>
- Date: Fri, 24 Feb 2006 20:45:48 -0700
don't lose too much sleep people... it's only a matter of a few days
before the next Windows bomb hits and this will all be old news.
Right now they have nothing better to report.
You cannot really trust SANS any more than the A/V companies. SANS
sells security training... "wow, you mac users better pay us to teach
you."
a major reason that viruses and worms are released for windows is
because of the hacker mentality and how they believe Microsoft is
evil. The people that are making these so called "announcements"
saying "It's Mac's turn" do not have a clue.
Did you know that the intelligence agencies (security) will not hire
anyone that has any type of record? Well guess what, THOSE are the
ones who know what is really going on, not the bald old guy who reads
"computer security for dummies" books.
I'd love to see some of our so called "rent-a-cop" Internet Security
Officers last 10 minutes in the ring with some of these teenagers you
find on IRC.
Back to my point - aside from being a better OS, the hacker community
doesn't have the hatred towards Apple that they do towards Microsoft.
Look at Linux's.... same thing, it's not targeted because it would be
bad Karma.
Mike
On Feb 24, 2006, at 4:10 PM, Rex Sanders wrote:
- Macs are getting hacked.
At 8:32 PM +0000 2/24/06, The SANS Institute wrote:
Attacks have
been seen; Macs are now being infected. They get infected just by
visiting an infected web site.
And you can be attacked through email and other paths. Some attack
paths
do NOT require a user to click "OK" -- and many users will click "OK"
regardless of policies and warnings.
- Exploits using the "Metasploit framework" (point and click
hacking) are
posted on public web sites.
- FrSIRT rates this vulnerability "Critical Risk - Remotely
exploitable
vulnerabilities, which could lead to system compromise (user
interaction is
not needed)."
- Various web sites have parts, but not all of the story. I've
seen a lot
if misinformation floating around.
-- Rex
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
40gmail.com
This email sent to email@hidden
_______________________________________________
Do not post admin requests to the list. They will be ignored.
Fed-talk mailing list (email@hidden)
Help/Unsubscribe/Update your Subscription:
This email sent to email@hidden