Skip to main content

Malwarebytes Slams Apple for the Poor Quality Patching Process

 Malwarebytes has emerged as one of the most popular antivirus systems around the world in recent times. This is when Malwarebytes does not fulfill the requirements to be labeled as fully-fledged antivirus. Recently, the company surprised everyone by complaining against Apple, one of the biggest tech companies in the world. In a blog post written by Malwarebytes support, the company criticized the patching process of Apple saying it can have serious repercussions for the safety and security of the systems being used by the customers.

Thomas Reid, Mac and mobile director in Malwarebytes, wrote a blog post that centers on a campaign called Watering Hole being run in Hong Kong. Watering Hole is actually a security threat that was aimed at the users of Mac OS who were directing people to a pro-democracy event supported by a political organization. TAG from Google first reported about Watering Hole some time ago. Hackers made use of two vulnerabilities in the Mac OS to launch these attacks. One of these was CVE-2021-1789, a web kit flaw, and the other one was CVE-2021-30869, escalation vulnerability related to XNU privilege. Both these vulnerabilities have been pointed out specifically in the blog post published by the Malwarebytes support team.

What is worrying, according to Thomas Reid, is the fact that both these vulnerabilities have been allowed to run wild without any detection so far by the parent company Apple. They have been around since 2019 and hackers have used them inside Trojans to infect the systems of innocent victims with impunity.

Apple claims to have released patches for both these vulnerabilities. The patches were released at the same time as Mac OS Big Sur was launched in February last year. However, there has been no respite for the users of earlier editions of Mac OS namely Mojave and Catalina. Apple says that the users of Catalina and Mojave would have become safe if they had upgraded to Safari OS after the release of the patch. The fact of the matter is that Apple cannot blame the users of Catalina as their vulnerability was fixed only months later on September 23. It means that Catalina users were left in the lurch by the company for more than 7 months.


Malwarebytes support team has pointed out this big lapse in security by Apple in its blog post. Reid says that the users of Catalina and even Safari 13 were left at the mercy of the hackers for 7-8 months. Google says that the number of attempts to breach this security was around 200 in this 7 month period. According to Reid, this lapse in security only highlights the attitude of Apple that it is interested in solving the problems of the latest and the most up-to-date versions of its operating systems. It means you can rely on the company for your security only if you are using Monterey. You are in the hands of God if you are using an older system of Mac.

Malwarebytes support team needs to be applauded for pointing out the inconsistency in the patching process of Apple. More Information: Aol.com mailSatang Pro

Comments

Post a Comment

Popular posts from this blog

At&t Tries Hard to Prevent T-mobile From Surging Ahead in 5g

 AT&T is undoubtedly a giant in the telecom sector around the country. The company made every effort in the last few weeks to tip the scales in its favor in its fight with T-Mobile in the field of 5G services. T-Mobile was the first out of the blocks in 5G and it must have hurt the ego of the company of the stature of AT&T. The best way to thwart the growth story of T-Mobile was to prevent it from amassing mid-band spectrum.  AT&T Mail support  has decided to flex its regulatory muscle to stop T-Mobile from surging ahead of it in the 5G race. AT&T filed a petition with FCC in September 2021 saying it should not allow any single player to amass more than one-third of the total spectrum in a given marketplace. Mid band spectrum which lies in the range of 2.5-6 GHz is considered ideal for use in 5-G technology. As T-Mobile has recently taken over Sprint, it allows the company to bid for a big chunk of the mid-band spectrum on auction by the government. If o...
Post a Comment
Read more

Google Meet Vs. Zoom: Which One is a Better Option?

 Google Meet and Zoom are two of the most popular video conferencing apps available today. In a time when Covid-19 pandemic has forced employees and students inside their homes, these two apps are proving invaluable in attending online classes and business conferences. It becomes confusing for many people to choose between these two wonderful apps. This article aims to throw light on the pros and cons of both these apps (free versions) to let you choose the app that better suits your requirements.   Limitation on meet timing At present, Google Meet has a huge meet time limit of 24 hours though they are planning to cut it short to just 1 hour from 1 st  of October. If you are thinking of using Zoom, you will be disappointed to know that it allows a meet time of 40 minutes. This means if your sessions are going to be long, you would need to stop and start a new session which could be very irritating.  Number of participants  You can choose either of the two vid...
Post a Comment
Read more

Quick Tips on Data Backup & Backup Recovery

 Data backup and recovery is of massive importance for any business irrespective of its size and nature. This is why any business owner should not dare to take this process lightly. Any lapse on the part of the company and it can lead to massive losses both in terms of business and lost clients. Whether you are doing it with the help of a service provider or your own IT department, you must ensure that your data is being backed up and its recovery is possible quickly in real time. Many business owners do not know a thing about data backup and recovery and they even do not know where to turn to when they needdata backup & backup recovery help. Backups done on a daily basis Data loss can prove to be a disaster for a company. All operations come to a standstill and there can be a deluge of complaints and cancellation of orders. There are different ways in which a business can avoid likelihood of data loss. Daily data backup is one of the best lines of defence is to go for. If da...
Post a Comment
Read more