Skip to main content

Malwarebytes Slams Apple for the Poor Quality Patching Process

 Malwarebytes has emerged as one of the most popular antivirus systems around the world in recent times. This is when Malwarebytes does not fulfill the requirements to be labeled as fully-fledged antivirus. Recently, the company surprised everyone by complaining against Apple, one of the biggest tech companies in the world. In a blog post written by Malwarebytes support, the company criticized the patching process of Apple saying it can have serious repercussions for the safety and security of the systems being used by the customers.

Thomas Reid, Mac and mobile director in Malwarebytes, wrote a blog post that centers on a campaign called Watering Hole being run in Hong Kong. Watering Hole is actually a security threat that was aimed at the users of Mac OS who were directing people to a pro-democracy event supported by a political organization. TAG from Google first reported about Watering Hole some time ago. Hackers made use of two vulnerabilities in the Mac OS to launch these attacks. One of these was CVE-2021-1789, a web kit flaw, and the other one was CVE-2021-30869, escalation vulnerability related to XNU privilege. Both these vulnerabilities have been pointed out specifically in the blog post published by the Malwarebytes support team.

What is worrying, according to Thomas Reid, is the fact that both these vulnerabilities have been allowed to run wild without any detection so far by the parent company Apple. They have been around since 2019 and hackers have used them inside Trojans to infect the systems of innocent victims with impunity.

Apple claims to have released patches for both these vulnerabilities. The patches were released at the same time as Mac OS Big Sur was launched in February last year. However, there has been no respite for the users of earlier editions of Mac OS namely Mojave and Catalina. Apple says that the users of Catalina and Mojave would have become safe if they had upgraded to Safari OS after the release of the patch. The fact of the matter is that Apple cannot blame the users of Catalina as their vulnerability was fixed only months later on September 23. It means that Catalina users were left in the lurch by the company for more than 7 months.


Malwarebytes support team has pointed out this big lapse in security by Apple in its blog post. Reid says that the users of Catalina and even Safari 13 were left at the mercy of the hackers for 7-8 months. Google says that the number of attempts to breach this security was around 200 in this 7 month period. According to Reid, this lapse in security only highlights the attitude of Apple that it is interested in solving the problems of the latest and the most up-to-date versions of its operating systems. It means you can rely on the company for your security only if you are using Monterey. You are in the hands of God if you are using an older system of Mac.

Malwarebytes support team needs to be applauded for pointing out the inconsistency in the patching process of Apple.More Information: Aol.com mail | Satang Pro

Comments

Post a Comment

Popular posts from this blog

How Can We Control the Spread of Covid-19?

 Covid-19 is a pandemic that has engulfed the whole world in its grip at present. Simply referred to as Corona virus, it is a deadly respiratory infection that causes several symptoms in the victim that usually appear after 2-14 days of catching the infection. These symptoms are dry cough, fever, shortness of breath, body aches, and fatigue. In many patients, Corona virus remains asymptomatic which means that they do not exhibit any of the symptoms associated with the virus and yet serve as deadly carriers of the virus for the rest of the population. How does Corona virus spread? Corona virus is a highly infectious disease that can be easily spread by an infected individual through coughing or sneezing. The droplets coming out of the mouth and nose of the infected individual can easily infect other people coming in his contact. Also, these droplets containing virus can remain active for hours on various surfaces and infect others who touch them.  Prevention is the only cure ...
Post a Comment
Read more

Apple’s Iphones Selling in Large Numbers in China Again

 In December 2018, Apple CEO Tim Cook was a worried man because of falling sales of iPhones in China, one of the most important markets for the company. In fact, he wrote a letter to the investors to be prepared for lower sales in the holiday quarter because of dropping iPhone sales in the Chinese market. It was the first time since 2002 that Apple CEO had to issue a warning to its stakeholders. Within a year, situation has reversed and sales of iPhones are increasing in China. In fact, 18% more iPhones were sold in China in December 2019 than in December 2018. This tremendous  iPhone support  from Chinese people has investors smiling again. This performance of iPhones is even better than what was predicted by WSJ. In December 2019, Apple shipped half a million iPhones more than in December 2018. This jump in the sales of iPhones in China was reflected in the increasing stock prices of Apple on the stock market. There can be no two opinions about the fact that China is a...
Post a Comment
Read more

Google Admits to a Security Flaw Affecting 1.5 Billion of Users

 Google has finally admitted to vulnerability that has security repercussions for nearly 1.5 billion of its users. This security flaw was brought to the notice of Google two years ago by researchers at Black Hills Information Security. These researchers had claimed that vulnerability in Google Calendar app was enough for hackers to allow hackers to steal information from he computers of users of Gmail around the country. It is only now that  Gmail support number  is acknowledging the existence of this security flaw. Google did not take any steps to fix this security flaw back in 2017 as it would have resulted in drop in functionality for the users of its Google Calendar app. This was despite the fact that these researchers demonstrated how this vulnerability could be exploited as a weapon by hackers to steal information from the computers of users of Gmail. At that time, Google said that its policy was to prevent spread of malicious content on the services offered by the ...
1 comment
Read more