11-22-2011, 07:34 AM | #1 | ||
PRS+ author
Posts: 1,637
Karma: 2446233
Join Date: Dec 2007
Device: Sony PRS-300, 505, 600, 650, 950
|
iOS malware up ∞% since January 2011
At the beginning of the year Apple still claimed zero malware in the App Store (it's logical for them not to count Apple's built-in malware as malware, since it doesn't come from app store), then this happened:
Charlie Miller Circumvents Code Signing For iOS Apps And then this happened: Webzine Does Not Store User Data Quote:
Quote:
PS Did they admit these 2 cases, by the way, or is "Dolphin Browser" still dubbed "for Android" since it was caught? |
||
11-22-2011, 08:34 AM | #2 |
Interested Bystander
Posts: 3,725
Karma: 19728152
Join Date: Jun 2008
Device: Note 4, Kobo One
|
Wow, you really do have an axe to grind, don't you?
|
Advert | |
|
11-22-2011, 09:56 AM | #3 |
.
Posts: 3,408
Karma: 5647231
Join Date: Oct 2008
Device: never enough
|
|
11-23-2011, 10:04 AM | #4 |
Banned
Posts: 725
Karma: 656644
Join Date: Oct 2010
Location: Central Florida
Device: iPad "3", Kindle Touch, Kindle Fire, iPhone 4S
|
|
11-23-2011, 10:29 AM | #5 |
Grand Master of Flowers
Posts: 2,201
Karma: 8389072
Join Date: Oct 2010
Location: Naptown
Device: Kindle PW, Kindle 3 (aka Keyboard), iPhone, iPad 3 (not for reading)
|
Because the bug in Dolphin HD is *completely like* a third party putting SMS trojans on an Android phone that actually rips the user off for actual money.
Obviously, iOS can't be complacent, as the Charlie Miller demo shows. And malware incidents are still very rare on Android - the 500% increase from 6 months ago and the 480% increase now are from a very small number. But iOS has had no real incidents of malware and is much more secure than Android at the present. In large part this is a function of being "open." But denying that A. is more susceptible to malware, or pretending that there is some sort of equivalence between the two platforms is disingenuous. At the risk of being repetitive: Android allows you to put any apps on your phone. It is a *selling point* of the phone. But there is no way around the fact that putting non-curated random apps on your phone directly and unavoidably increases the chances of getting malware when compared to only putting approved apps on your phone as done by iOS. It is unavoidable. But the tradeoff between more openness and more risk is one that most Android evangelists are happy to accept: they are willing to take more responsiblility for vetting what goes on their phone in exchange for the freedom to put non-approved apps on their phone. They don't deny that the risk is there, but tend to believe that it can be managed (which for most people who pay attention is probably true). But you can't have more freedom and more security: the freedom to install a random porn app from a site in Romania brings with it the increased risk of malware. The limitations imposed by only being able to install apps from Apple's app store brings with it increased protection from malware. These tradeoffs are unavoidable, and there's no point in pretending that they don't exist, or that the risks are equivalent. |
Advert | |
|
11-23-2011, 11:09 AM | #6 |
Evangelist
Posts: 420
Karma: 8522810
Join Date: Dec 2010
Location: Wisconsin, USA
Device: Kindle PW3
|
I wonder how much malware gets into the Amazon Appstore, if any.
|
11-23-2011, 11:29 AM | #7 |
.
Posts: 3,408
Karma: 5647231
Join Date: Oct 2008
Device: never enough
|
|
11-24-2011, 07:53 AM | #9 |
PRS+ author
Posts: 1,637
Karma: 2446233
Join Date: Dec 2007
Device: Sony PRS-300, 505, 600, 650, 950
|
Finally somebody with a sense of humour.
PS To the "evil SMS sending" argument, speaking of "secure platform", compare installing app and explicitly allowing it to do whatever it wants on your phone (Android) to the situation when app can grant itself rights on its own and you are assured that your platform is "secure" (iOS), ouch. |
11-24-2011, 10:37 AM | #10 |
Guru
Posts: 895
Karma: 4383958
Join Date: Nov 2007
Device: na
|
There's bound to be more instances of malware on Android, since users can install apps from anywhere. It's no different to desktops, if you only go via an app store you limit your exposure as the odd case that does sneak into the store will be pulled as soon as they realise. Installing from anywhere else and you're taking the risks onboard.
The only difference between the android and apple stores will be down to the screening process and there should be no reason both cannot be as good. kartu has a valid point about permissions though. I wish even though apps were installed via the apple app store that you had an option to grant permissions per app. Even if the default is apps get all the permissions they request, I'd like the option to say apps get nothing by default (or these permissions by default) the rest have to be ok'd. That way when I download what I think is an offline only app, the app cannot communicate with other devices/network without me realising there's an online component to it. Apple were probably against that as they like to keep things simple. However, if it's an option at least those who care about such permissions could make use of it. Although they have included per app permissions for location services, I'd like that taken further to include mic/camera/access to other data like contacts and photos/network access... |
11-24-2011, 01:08 PM | #11 | |
Spork Connoisseur
Posts: 2,355
Karma: 16780603
Join Date: Mar 2011
Device: Nook Color
|
Quote:
|
|
11-25-2011, 07:24 AM | #12 | |
Guru
Posts: 895
Karma: 4383958
Join Date: Nov 2007
Device: na
|
Quote:
To be fair, it's not like the idea is a new one, per app (well per file) permissions have existed for a long long time in unix in the form of high level read/write/execute permissions. This would just be a logical extension of that to allow finer grained control of what an app can do. I say logical as the actual implementation would likely follow a very different path. |
|
11-25-2011, 09:55 AM | #13 |
Connoisseur
Posts: 85
Karma: 30
Join Date: Feb 2009
Device: Nook WiFi, iPad2
|
Just to be pedantic, division by zero is considered "undefined", so "X/0" doesn't equal infinity.
|
11-25-2011, 03:52 PM | #14 |
Wizard
Posts: 3,681
Karma: 28297636
Join Date: Dec 2008
Device: BeBook, Sony PRS-T1, Kobo H2O
|
On a general level that may be true. On an individual level it is incorrect.
If one has the ability to ensure each app installed is completely secure then one can have the freedom to install any app they choose without any increased security risk. |
11-26-2011, 09:53 AM | #15 |
Zealot
Posts: 109
Karma: 494242
Join Date: Dec 2007
Location: London, UK
Device: Toshiba E740, Cassiopeia, iLiad, iPad, Kobo Touch, Kobo Aura HD
|
Don't we all love all bad news about Apple products on this site! Interestingly I can't seem to find anything about the vanishing disk space on the new Samsung Galaxy whatever with Android Icecream Sandwich!
|
|
Similar Threads | ||||
Thread | Thread Starter | Forum | Replies | Last Post |
Get the first of a series for free until January 22nd, 2011 | moondog | Self-Promotions by Authors and Publishers | 28 | 05-18-2012 11:14 AM |
Protection from malware? | 49Kat | Kobo Tablets | 6 | 11-09-2011 06:14 PM |
Android Most Targeted Mobile Malware in Q2 2011: McAfee | RockdaMan | Android Devices | 4 | 08-25-2011 03:25 PM |
Short Fiction Bierce, Ambrose: Chickamauga. v1 6 January 2011 | AlexBell | ePub Books | 0 | 01-06-2011 12:34 AM |