“Mac OS X software has more high-risk vulnerabilities than all versions of Windows put together,” explains Bogdan, “Apple markets these products as virus-free. They say you don’t need an antivirus, because they know people hate antivirus software. These utilities often slow down your computer, so they don’t want to promote them.”
“We have discovered and registered more than 48 million new unique malware samples this year alone, but more than 98% have been written for the Windows platform,” says Andreas Marx, AV-Test CEO, “Less than 5,000 new viruses were written for Mac OS X, but these kinds of malicious software do exist.”
“It’s going to cost the hacker more to build Mac OS X malware than Windows-based malware,” says Bogdan.
The reputation Mac OS X has for security is also not entirely undeserved. Mac OS X does have safety mechanisms built-in. You don’t have root privileges over the machine, you have to enter your password to reconfigure the system, and there’s a gatekeeper sub-system that doesn’t allow you to install files unless they are digitally signed by Apple. Of course, none of that means you can’t write malware for Mac OS X.
Article: Digital Trends
Note from Innovice-IT B.V.
Santa is a binary whitelisting/blacklisting system for Mac OS X. It consists of a kernel extension that monitors for executions, a userland daemon that makes execution decisions based on the contents of a SQLite database, a GUI agent that notifies the user in case of a block decision and a command-line utility for managing the system and synchronizing the database with a server.
Santa is not yet a 1.0. We’re writing more tests, fixing bugs, working on TODOs and finishing up a security audit.
Santa is named because it keeps track of binaries that are naughty and nice.
Santa is a project of Google’s Macintosh Operations Team.
For more information about Santa, please contact us!