MacSmugness and Black Hat Security Breaches
According to a blog on WashingtonPost.com, a couple of hackers claimed they could gain control of a MacBook in sixty seconds or less by using a flaw in the wireless system. Initially the story talked about the hackers exploiting a problem with a MacBook device driver. Later they produced a video, now posted on the internet, showing that they accomplished their goal.
Ultimately the demonstration led to more questions than answers. The demonstrator reported that the computer being exploited does not need to be associated with an access point in order to be taken over, but then connected the MacBook into a software access point on a Dell computer. He also used a third-party wireless card, not MacBook’s AirPort built-in system. While the demonstrator claims that AirPort is also susceptible, it was never proven.
Reaction to this report ranged from total disbelief, with viewers wondering if the whole thing was a publicity hoax, to criticisms about Apple’s security. Supposedly this is a flaw that Apple knew about but hasn’t fixed yet.
Note that, when asked, the hackers said that this is a vulnerability in most wireless systems. They claimed they demonstrated on an Apple computer because of the “aura of smugness” from the cult of Apple. They also cited Apple’s new ads touting it’s security as another reason to use a MacBook for demonstration purposes.
Apple users should learn from those comments about user attitudes. There is good reason to feel good about security on your MacBook or other Apple product, but that doesn’t mean you should let your guard down entirely. Many never use anti-virus or other security programs. This is just asking for trouble over time.
There us good reason to believe that Apple will be challenged more frequently in the future. An interesting article in the Statesman Journal talks about the profit motive for hacking. It points out that intruders haven’t failed to note that Apple Mac users number about 25 million, and another 58 million people own iPods. These numbers are high enough to be worth the time and attention of intruders.
Shortly following the news about Apple’s security flaw, another hacker showed how easy it was to plant malicious code on Vista. This happened after Vista challenged attendees of the Black Hat hacker conference to show what they could do. (The Apple demonstration was also performed by attendees of this conference.) Overall reaction was much different than reaction to the MacBook demonstration. Most articles emphasized that the hacker needed to be in administrator mode to plant the code, and concluded with comments Microsoft made about working to fix this.
I applaud Microsoft for challenging Black Hat attendees. This is a good way to find and fix problems before releasing Vista.
Whether or not Apple has a problem with wireless security remains to be seen. In the meantime, Apple users who have gotten complacent and have forgotten how to protect their computers might want to take this as a wake-up call. It doesn’t matter how secure Apple is; sooner or later somebody with some good financial incentive will raise havoc.
There is no perfect system. Securing your computer before a break-in is much easier than picking up the pieces later. Believe me, I know.
Comments
TWIT discussed this very issue on last week’s podcast and reminded people that this is not a system flaw but rather a driver flaw.
Being a driver flaw, all systems (OSX, Windows XP and yes, Vista, Linux, etc) can be afflicted very easily.
But note here, an 802.11x coverage does not go beyond 300 feet or less than 100 meters. So, unless you’ve got a hack neighbor that performed this trick at Black Hat conference (fewer than ten actually knows how to do this well) then I would be updating my wifi drivers and installing the latest system updates.
Back to the “demo” of this trick. The actual video released is actually a time-shifted event so as to not allow a casual hacker the knowhow of following every steps needed to perform this hack. Again, thanks to the Black Hat trickers for doing this gesture. They are only showing that Apple nor Microsoft should not be claiming virginity with their new toys - Vista or Leopard.
Apple users should learn from those comments about user attitudes.
Not.
A.
Chance.
I agree with Beeb . . .
And that the hackers used a 3rd party WiFi card and not the Airport Extreme card to gain access to the MacBook, I would bet that there are some that are even more smug.
However, that stated, if they really wanted to prove a point, why use a 3rd party card? I would bet that exactly 0 people have installed a 3rd party wireless card into their MacBook. The hackers diluted their argument substantially, and left us all with “trust me . . . it can be done” which, frankly, seldomly works with even half-right thinking people. If you can claim to hack a MacBook, then hack a MacBook dammit, not half of a MacBook.
Do we Mac users have the right to be smug at times? I think so. I, for one, can’t help but laugh when my good friend complains about having to dig through the Windows registry to clean out viri every few months. But to denigrate other platforms when we have our own problems as Mac users is just plain stupid . . . and the Get a Mac ads don’t help.
Although my Mac crashes (full system crash) very rarely (maybe once a year), to pretend that the kernel panic screen doesn’t exist, an idea which is implied in one of the ads, is just stupid, and beyond acceptable arrogance about the superiority of our platform.
Yes, Device Drivers Are Buggy, And Everyone Kept Missing The Point