← Back to context

Comment by tux3

1 year ago

Counterpoint: I have a very non-technical friend that visited recently, and I was horrified to see that her macbook was full of malware. She casually talked about how someone stole money through her credit card. An AV scan actually found something on the laptop.

The AV industry is, unfortunately, terrible. Also unfortunately, some people really need them. I have no idea how one even gets a virus these days, but it does happen. People really do get infected all the time, and basic security advice that people get is not up to the task.

17 comments

tux3

Reply
caseyohara  1 year ago

> her macbook was full of malware

I’m guessing her OS was very out of date? Because I’m having a hard time imagining how this happens in 2024 with XProtect, Gatekeeper, and Notarization all turned on by default. Non-technical people are unlikely to turn these off.

  • int0x29  1 year ago

    Scripts (OSX ships with Python, Perl, Bash, Zsh, and I think JS) bypass all of those.

    Also I would not be suprised if editing scripts in runtime based apps (like electron) still bypass all of those.

    Last I looked at code signing in MacOS it was weaker than Windows in places. With code signing checks enabled in Windows (they are used as a smart screen signal but not required by default) you actually need to sign shell scripts to run them.

    • latexr  1 year ago

      > OSX ships with Python

      Small correction: macOS (it hasn’t been called OS X for close to a decade) hasn’t shipped with Python for a while. It does have a shim at /usr/bin/python3 that when called pops up a GUI to the user telling them they need the Xcode Developer Tools, which if accepted does provide Python.

  • mr_toad  1 year ago

    You don’t need to be very computer savvy to google “how to bypass gatekeeper”. My kids figured that out pretty quickly.

ThatMedicIsASpy  1 year ago

Phones are a bigger problem. Nothing stops people from installing applications with insane permissions.

The basic security advice is install adblockers everywhere. You see someone using a browser without it? Talk to them.

  • ipython  1 year ago

    Phones tho have a default security model which isolates apps from each other, unlike desktop OSes where each app can read anything on the system

    • RestartKernel  1 year ago

      I wish desktop OSes had evolved with such a model in mind. There is no reason why a calculator should be capable of reading my downloads folder — in fact, I'd even prefer it if I had to give explicit permission to access my network, Internet included. Maybe software wouldn't be so liberal with data collection if we had started requiring such stringent permissions way back when.

      5 replies →

huxley  1 year ago

About the only protection most third party AV provides is that it so badly cripples computer performance that PCs become incapable of running sophisticated malware