Sujet : Re: Almost every iOS & macOS app has had huge vulnerabilities for over a decade
De : andrew (at) *nospam* spam.net (Andrew)
Groupes : misc.phone.mobile.iphone comp.sys.mac.system uk.telecom.mobileDate : 08. Jul 2024, 04:14:14
Autres entêtes
Organisation : BWH Usenet Archive (https://usenet.blueworldhosting.com)
Message-ID : <v6fli6$2sf5$1@nnrp.usenet.blueworldhosting.com>
References : 1 2 3 4 5 6 7 8
User-Agent : NewsTap/5.5 (iPad)
badgolferman wrote on Sun, 7 Jul 2024 12:02:22 -0000 (UTC) :
This situation reminds me of the Ford Explorer rollover debacle. Ford
blamed Firestone and Firestone blamed Ford. In reality they both had a
major part in the whole thing. Firestone tires were separating at the tread
and Ford Explorers had weak suspensions and high center of gravity. Both of
those caused the exceedingly high number of rollovers and deaths.
Whom did the customer purchase the vehicle from, Ford or Firestone?
The answer is Ford. So this is purely a Ford ecosystem problem.
To wit, this huge security hole is purely an Apple ecosystem problem.
https://www.darkreading.com/cloud-security/apple-cocoapods-bugs-expose-apps-code-injectionWhat kind of ecosystem is so primitive that ANYONE ON THE PLANET could
modify any of three million iOS/macOS apps at will - whenever they want?
For ten years!
Take your pick as to whom to blame, but it shows neither company performed
adequate testing together or merely ignored warning signs.
If Apple did NOT tout that their ecosystem provided safety and security, we
could let Apple off the hook for never bothering to test that claim.
As it is, it's clear that the one thing the primitive Apple ecosystem does
NOT provide, is safety & security.
I wonder if these zealots realize ANYONE ON THE PLANET FOR TEN YEARS could
inject ANY CODE THEY WANTED TO INJECT into over three million iOS/mac apps.