Skip to main content

Malwarebytes Slams Apple for the Poor Quality Patching Process

 Malwarebytes has emerged as one of the most popular antivirus systems around the world in recent times. This is when Malwarebytes does not fulfill the requirements to be labeled as fully-fledged antivirus. Recently, the company surprised everyone by complaining against Apple, one of the biggest tech companies in the world. In a blog post written by Malwarebytes support, the company criticized the patching process of Apple saying it can have serious repercussions for the safety and security of the systems being used by the customers.

Thomas Reid, Mac and mobile director in Malwarebytes, wrote a blog post that centers on a campaign called Watering Hole being run in Hong Kong. Watering Hole is actually a security threat that was aimed at the users of Mac OS who were directing people to a pro-democracy event supported by a political organization. TAG from Google first reported about Watering Hole some time ago. Hackers made use of two vulnerabilities in the Mac OS to launch these attacks. One of these was CVE-2021-1789, a web kit flaw, and the other one was CVE-2021-30869, escalation vulnerability related to XNU privilege. Both these vulnerabilities have been pointed out specifically in the blog post published by the Malwarebytes support team.

What is worrying, according to Thomas Reid, is the fact that both these vulnerabilities have been allowed to run wild without any detection so far by the parent company Apple. They have been around since 2019 and hackers have used them inside Trojans to infect the systems of innocent victims with impunity.

Apple claims to have released patches for both these vulnerabilities. The patches were released at the same time as Mac OS Big Sur was launched in February last year. However, there has been no respite for the users of earlier editions of Mac OS namely Mojave and Catalina. Apple says that the users of Catalina and Mojave would have become safe if they had upgraded to Safari OS after the release of the patch. The fact of the matter is that Apple cannot blame the users of Catalina as their vulnerability was fixed only months later on September 23. It means that Catalina users were left in the lurch by the company for more than 7 months.


Malwarebytes support team has pointed out this big lapse in security by Apple in its blog post. Reid says that the users of Catalina and even Safari 13 were left at the mercy of the hackers for 7-8 months. Google says that the number of attempts to breach this security was around 200 in this 7 month period. According to Reid, this lapse in security only highlights the attitude of Apple that it is interested in solving the problems of the latest and the most up-to-date versions of its operating systems. It means you can rely on the company for your security only if you are using Monterey. You are in the hands of God if you are using an older system of Mac.

Malwarebytes support team needs to be applauded for pointing out the inconsistency in the patching process of Apple.

Comments

  1. Custom Assignment Help
    Writing an assignment is not a difficult task. No student ever said that. When the professor announces the assignment writing instructions, guidelines, formats, citation style, submission deadline, and so on, every college student becomes nervous. If you’re thinking about getting help and looking for assignment help, you’ve come to the right place. We offer the best custom assignment help services in the UK. Do you also fret over preparing academic write-ups under the specifications given? If yes, then we’ve got you covered. for more - https://archliteassignments.co.uk/custom-assignment-writing-service/

    ReplyDelete

Post a Comment

Popular posts from this blog

Avg Browser Extensions Caught Spying on User’s Behavior

 AVG antivirus free version is the most popular software used by people to safeguard their safety against online threats. Users are asked to install some browser extensions when setting up the program on their computers. Recently, Mozilla has removed some browser extensions being offered by Avast and AVG antivirus programs. This was done as there were reports that these extensions were spying on the browsing behaviors of the customers and gathering this data.  AVG customer care  is not confirming these reports as of now. The extensions that have been blamed for snooping on browsing history of users are AVG SafePrice, AVG Online Security, Avast SafePrice, and Avast Online Security. If you are not aware, Online Security extension claims to protect the user by disallowing visit to a malicious website. On the other hand, SafePrice browser extension says it works to apprise the user about websites where it can get higher discounts and better deals. It appears that both these ...

Malwarebytes Premium Support: Multiple Layers of Protection

 In times not so long ago, antivirus products were of a simple nature and they provided protection to the system against viruses of all kinds. In those days, viruses were easy to be detected. Today, there are multiple threats that take on different forms like ransomware, malware, rootkits, Trojans, and so on, making it difficult for any antivirus to identify and destroy all these threats. Malwarebytes Premium 4.0 carries out behavior based analysis in addition to providing other layers of protection to the user. Malwarebytes premium support  costs just $39.99 per annum and by paying $79.99, you can get this support on up to 5 of your devices. The dashboard tells you that your system is protected when everything is all right. It also tells you the details of the last scan. On the right side of the dashboard are the toggles that work as controls for 4 layered security provided by the program. If you click on the scan button on the middle panel, Malwarebytes Premium 4 begins a sc...