Tuesday, March 8, 2011

Hackers vs Apple: An Interview with Charlie Miller and Dino Dai Zovi

Via H-Online.com -

Heise's new Mac & i magazine recently interviewed Charlie Miller and Dino Dai Zovi, co-authors of “The Mac Hacker's Handbook” about Apple security and how to compromise it. The H is able to present that interview in full. Both Miller and Dai Zovi are well known for their exploits against the Apple Mac software environment. Miller is a researcher currently employed by the security consultants Independent Security Evaluators. He previously worked for the NSA and has won prizes for successful exploits at several Pwn2Own contests.

Like Miller, Dai Zovi is a regular at Pwn2Own and was successful at the first Pwn2Own contest at CanSecWest 2007, where he hijacked a MacBook Pro through a cross-platform QuickTime flaw. He has been named by eWeek as one of the top 15 most influential people in security and currently works as an independent security consultant, author and speaker.

---------------------------------------------------------------------

Very entertaining interview. Gives the reader a very good overview of the real security threats to Apple, their current security stance (and why it is the way it is) and steps Apple can take now to get ahead of the malware - which is expected to grow with market share.

Some parts are quite technical, so some knowledge of exploit development and mitigation will be a plus to readers. But there are also some very funny parts. Good read.

No comments:

Post a Comment