Apple Invites Kaspersky Lab to Consult on OS X Security Issues [Updated: No]

Computing.co.uk reports on comments from the Chief Technology Officer of Russian security firm Kaspersky Lab, who claims that his firm has been invited by Apple to probe security issues on OS X and to assess the platform's vulnerabilities.

Speaking exclusively to Computing, Kaspersky CTO Nikolai Grebennikov said his firm had recently begun the process of analysing the Mac OS platform at Apple's request.

"Mac OS is really vulnerable," he claimed, "and Apple recently invited us to improve its security. We've begun an analysis of its vulnerabilities, and the malware targeting it," said Grebennikov.

Grebennikov believes that Apple "doesn't pay enough attention to security", citing the Java vulnerability that led to hundreds of thousands of Flashback malware infections. That vulnerability was patched by Oracle before the outbreak, but Apple did not issue its own update to close the hole in time.

Grebennikov also notes that it is only a matter of time before malware begins showing up on iOS devices, believing that such threats will appear within the next year or so. Apple's "walled garden" approach of restricting application installation to software available through the App Store has allowed the company to minimize such threats for the time being, but Grebennikov argues that malware creators will find their way in and that Apple needs outside security expertise to help manage those threats due to its relative inexperience in the field.

Update: Kaspersky Lab has provided clarification to Engadget, claiming that Grebennikov's comments were taken out of context and that Apple has not invited Kaspersky to perform any security investigations.

On Monday, April 14, computing.co.uk published an article titled "Apple OS 'really vulnerable' claims Kaspersky Lab CTO" that includes an inaccurate quote regarding Apple and Kaspersky Lab. The article reports that Kaspersky Lab had "begun the process of analyzing the Mac OS platform at Apple's request" to identify vulnerabilities. This statement was taken out of context by the magazine – Apple did not invite or solicit Kaspersky Lab's assistance in analyzing the Mac OS X platform. Kaspersky Lab has contacted computing.co.uk to correct its article.

Kaspersky's analysis is being undertaken at its own initiative, although Apple has reportedly indicated that it is "open to collaborating" on any new issues Kaspersky discovers.

Top Rated Comments

(View all)
Avatar
103 months ago
Why would a company that sells anti-malware solutions want to help make an OS more secure?
Score: 39 Votes (Like | Disagree)
Avatar
103 months ago

Why would a company that sells anti-malware solutions want to help make an OS more secure?


I'm sure Apple is paying them handsomely.
Score: 27 Votes (Like | Disagree)
Avatar
103 months ago
I'm always a bit confused by phrases like "Mac OS is really vulnerable."

If this is so, why have most recent Mac exploits come in by way of plug-ins like Java or Flash? (And the rest have been social exploits, not technical ones.)

I'm not saying Apple doesn't need to work on these problems, I'm just saying that I wouldn't describe that as the "Mac OS" being vulnerable. Rather, it seems to me that the Mac OS is pretty darned secure if exploiters are having to attack it in roundabout ways such as that.

The Mac and iOS ecosystems are certainly vulnerable and need protecting. But the OS itself seems be doing ok to me.
Score: 24 Votes (Like | Disagree)
Avatar
103 months ago
I know there are hackers but...

I always have a suspicious feeling that there AV companies themselves plant viruses to help their cause!

again I know apple will grow bigger into the consumer and business market and will become MORE of a target... but again I have my suspicions.

I switched to mac back in 05 and never looked back - so its been a great 7 years of NO AV software and i want it to continue this way.

can't even trust these AV companions anyway thats to Norton and Sonys root kit.
Score: 21 Votes (Like | Disagree)
Avatar
103 months ago

Really vulnerable with less than 5 known threats? :rolleyes:


The Deathstar only had 1 Weakness ;)

I thought Macs couldn't get viruses. :o


Don't say that! You'll invoke the wrath of GGJstudios! :D
Score: 19 Votes (Like | Disagree)
Avatar
103 months ago

Grebennikov also notes that it is only a matter of time before malware begins showing up on iOS devices, believing that such threats will appear within the next year or so.


Interesting.

A while ago I relayed a story on MacRumors about meeting a friends friend who worked in marketing for MacAfee. We were at a wedding talking about our jobs, and I jokingly asked who are all these people that code viruses and how do they make a living to support themselves as it takes a lot of time, are they MacAfee and Norton employees throwing out security breaches to create product demand? We laughed, but he kind of half heartedly chuckled and winked. We got a little quiet at that point :).
Score: 17 Votes (Like | Disagree)

Top Stories

Apple Acquires Weather App Dark Sky

Tuesday March 31, 2020 10:22 am PDT by Juli Clover
Apple has acquired weather app Dark Sky, Dark Sky's developers announced today. Dark Sky is one of the most popular weather apps on the App Store, known for its accuracy and storm warnings. Our goal has always been to provide the world with the best weather information possible, to help as many people as we can stay dry and safe, and to do so in a way that respects your privacy. There is no ...

Seemingly Unreleased Version of Logic Pro X With Live Loops Appears on Apple's Education Site [Updated]

Sunday March 29, 2020 7:23 am PDT by Hartley Charlton
Update: Apple has replaced the Logic Pro X image with an older version. Original story follows. A seemingly unreleased version of Logic Pro X has appeared on Apple's education site, as spotted by a Reddit user. The image from Apple's education products page shows a 16-inch MacBook Pro running Logic Pro X, but with a familiar interface that looks extremely similar to GarageBand's Live Loops ...

Bloomberg: Apple's 5G iPhone Still on Schedule for Fall Launch, But Future Products Could Be Delayed

Monday March 30, 2020 2:40 am PDT by Tim Hardwick
Apple's 5G iPhone is still on track to launch within the company's typical annual fall release schedule, according to a new Bloomberg report on filed on Monday. Signs are that Apple's Chinese-centric manufacturing -- of which Hon Hai is the linchpin -- is slowly getting back on track. The next iPhones with 5G wireless capabilities remain on schedule to launch in the fall, partly because mass...

Case for Upcoming Low-Cost iPhone Shows Up at Best Buy With Alleged April 5 Stock Date

Monday March 30, 2020 4:25 pm PDT by Juli Clover
Apple has a new low-cost iPhone in the works, which is supposed to be launching sometime in the first half of 2020. Given the ongoing situation in the United States and other countries, it's been unclear if the device is going to launch within the planned timeline, but there are signs that it could be coming soon. We started seeing cases for the new low-cost iPhone back in early February,...

Testing Brydge's New Pro+ Keyboard With Trackpad for iPad Pro

Monday March 30, 2020 2:04 pm PDT by Juli Clover
Well ahead of when Apple introduced trackpad support in iOS 13.4, Brydge announced an iPad Pro keyboard with a built-in multi-touch trackpad. We have one of Brydge's new Pro+ keyboards on hand, and thought we'd check it out to see how it works with Apple's new 2020 iPad Pro models. Subscribe to the MacRumors YouTube channel for more videos. The Brydge Pro+ keyboard is similar in design to...

Apple's Work on New Upcoming Products Progressing Normally as Employees Adjust to Telecommuting

Monday March 30, 2020 11:58 am PDT by Juli Clover
Apple's development of upcoming products is progressing as usual despite the fact that Apple employees around the world are working from home, according to a new report today out from Bloomberg. Apple is still working on new versions of the HomePod, Apple TV, MacBook Pro, budget iPads, Apple Watch, iPhone, and iMac, all of which could be released "as early as later this year" and have been...

Apple Releases ProRes RAW Beta for Windows

Monday March 30, 2020 9:33 am PDT by Juli Clover
Apple today released ProRes RAW for Windows in a beta capacity (via Mark Gurman), with the software designed to allow ProRes RAW and ProRes RAW HQ video files to be watched in compatible applications on Windows machines. According to Apple, the software will let the files be played within several Adobe apps: Adobe After Effects (Beta) Adobe Media Encocder (Beta) Adobe Premiere...

2020 iPad Pro Teardown Provides Closer Look at LiDAR Scanner and Confirms Incremental Update

Saturday March 28, 2020 9:56 am PDT by Hartley Charlton
iFixit today shared a video teardown of the new iPad Pro, which Apple unveiled earlier this month. iFixit found that most of the internals of the 2020 iPad Pro are the same as the 2018 model, confirming that the device is a relatively incremental update. The most notable new feature seen inside the new iPad Pro was the LiDAR scanner, which measures the distance to surrounding objects up...

Apple Configurator 2 Updated With New Features, Including Support for Restoring Firmware on 2019 Mac Pro

Tuesday March 31, 2020 5:34 am PDT by Joe Rossignol
Apple Configurator 2 has been updated to version 2.12 with several improvements, including support for restoring firmware on the 2019 Mac Pro. The release notes:• Added support for restoring firmware on the 2019 Mac Pro • Allow access to websites using TLS 1.0 and 1.1 • VPN: Configure Provider Designated Requirement for Custom SSL connection type • VPN: Configure network options for ...

U.S. Government Using Mobile Ad Location Data to Track Compliance With Curbs on Movement

Monday March 30, 2020 4:48 am PDT by Tim Hardwick
The U.S. government is using smartphone location data from the mobile ad industry to track people's movements amid the coronavirus outbreak, according to a Wall Street Journal report. Local governments and the Centers for Disease Control and Prevention have received the anonymized data about people in areas of "geographic interest," with the aim being to create a portal of geolocation...