Linked by Thom Holwerda on Mon 1st Apr 2013 12:25 UTC
Apple "Last Friday, The Verge revealed the existence of a dead-simple URL-based hack that allowed anyone to reset your Apple ID password with just your email address and date of birth. Apple quickly shut down the site and closed the security hole before bringing it back online. The conventional wisdom is that this was a run-of-the-mill software security issue. [...] It isn't. It's a troubling symptom that suggests Apple's self-admittedly bumpy transition from a maker of beautiful devices to a fully-fledged cloud services provider still isn't going smoothly. Meanwhile, your Apple ID password has come a long way from the short string of characters you tap to update apps on your iPhone. It now offers access to Apple's entire ecosystem of devices, stores, software, and services."
Permalink for comment 557329
To read all comments associated with this story, please click here.
RE[5]: it happens to everyone
by JAlexoid on Tue 2nd Apr 2013 14:31 UTC in reply to "RE[4]: it happens to everyone"
JAlexoid
Member since:
2009-05-19

Generally I think that the way to assess the relative security performance of operating systems or platforms is to look for independent and reasonable competent measurements of actual real world security breaches and malware exploits based on large samples and large data sets.


Yes. Security breaches and exploits. Of which Android has suffered no more or less than iOS.(Even if you include such blunders as full RAM access by Samsung)

But obviously, you will count user negligence as a security breach or exploit against your opponents when it suites you. You know, discounting social engineering that results in hundreds of dollars lost via IAP on iOS. Because user negligence is not the same as social engineering, when it comes to Apple...

The fact is - malware on Android is a regional and very localized problem. Much more so than even Windows. Google can't and shouldn't solve it. At most they can do malware scanning in the Play Store.

And the fact that F-Secure didn't state the level of threat coming from Play Store tells us that Google is doing a damn good job. Otherwise the title of that report would have been "Google Play Store is infested with malware - run for your lives!!! or buy our product..."

Reply Parent Score: 3