OFFICIAL SECURITY BLOG

We’ve moved! You can now read the latest and greatest on Mac adware and malware at Malwarebytes.

Who can you trust?

Published March 6th, 2013 at 4:27 PM EDT , modified October 22nd, 2015 at 9:06 AM EDT

Recently, a new reader of my blog asked me, “Why should I trust your information?” While this may seem like an impertinent question, in the security world, it’s actually quite an astute one. In fact, it’s one that people need to ask themselves far more often online. Nearly every transaction you perform online, from electronic banking to just fooling around on YouTube, involves trust. Yet few people think about such things. Let’s try to change that!

Software

It should go without saying that care should be used when downloading and running software on your computer. However, many people download things on a whim, often straight from an advertisement that caught their eyes, and never spare a thought for whether or not they should. This obviously puts the user at risk for being infected with malware, but more commonly, it often results in the user installing what tech support folks like to call “crapware.” There’s a lot of bad software out there that will slow down your computer or even cause it to crash, and a lot of software that is on the border between malware and legitimate software.

The first thing you should do to avoid installing such software is to never install anything on a whim. If you see something that sounds promising, do not download it! First, go find out more about it. Seek out reviews in reputable places, such as from well-regarded publications like MacWorld, MacLife or TidBITS. Beware of user-submitted reviews on software download sites, like Download.com or MacUpdate, as those are known to be manipulated by unethical companies. The same is true of reviews posted on social media sites. Once you have determined that the app is a reasonable thing to try, go straight to the developer’s site and download it from there, or from the App Store if it happens to be available there. Do not obtain it from any third-party download site, where you may or may not get what you wanted. (For example, Download.com has been known to add junky “adware” to downloads. That software will be installed along with the software the user wanted, for the purpose of generating ad revenue for Download.com.)

GatekeeperFurther, be sure that you allow Mac OS X to protect you. The latest version of Mac OS X (version 10.8, aka Mountain Lion) includes a feature called Gatekeeper. By default, Gatekeeper will not allow you to open any applications that have not been digitally signed by a developer who has registered (for a fee) with Apple. Although this cannot protect you from junk software, it is pretty effective at protecting against trojans. In the Security & Privacy pane of System Preferences, make sure that you do not allow applications downloaded from “Anywhere,” as that will compromise Gatekeeper’s ability to protect you.

Web Sites

People visit a lot of web sites, and often they just assume that doing so is safe, unless the site looks “dodgy.” Unfortunately, the quality of the site rarely has anything to do with its trustworthiness. I have seen some pretty ugly and unprofessional sites with top-notch information and/or software, and conversely have seen some extremely professional-looking and polished sites that are outright scams. There are, for example, some very professional-looking “review” sites that post glowing reviews of a specific product, but if you scratch beyond the surface, have very little else. A concrete example that was recently shut down was a fake news site that promoted an Acai berry diet. It can be very difficult to figure out what sites are trustworthy and what sites are not.

Fortunately, there are some tools you can use to help. First is Google’s Safe Browsing tool, which is used by Safari, Chrome and Firefox. This will block sites that are known to be malicious. Another is Web of Trust, which provides trust ratings based on user-supplied voting. You can also choose to use some kind of internet filtering software, or use a free OpenDNS account to block access to particular kinds of sites. It’s important to keep in mind that these sorts of things are never 100% reliable. User votes can be falsified, and new sites can take a while to be added to blacklists.

When it comes to information found on web sites, you have to evaluate it as you would any other information. Use your critical thinking skills, and compare the information to other sources. Even a legit web site may now and then slip up and post bad information. Keep in mind that anything that sounds too good to be true probably is.

Worse, though, web sites can be purveyors of malware. The common wisdom is to avoid visiting “dodgy” sites, but as I’ve pointed out already, that can be difficult to do. In addition, recent information suggests that as much as 80% of malware may come from legitimate sites that have somehow been hacked. For example, NBC’s web site was recently hacked to distribute malware. Such hacks involve using vulnerabilities to install without user interaction, or what are termed “drive-by downloads.” This makes it impossible to ever be completely sure that any site is safe! Fortunately, Mac users are safe from drive-by downloads if they take certain precautionary measures, like disabling Java in the web browser and disabling or selectively blocking Flash. For more information, see How can I protect myself?.

People

Everyone knows that some people are trustworthy and some are not. However, it can be very easy to blindly give trust to someone who has a special badge next to their name on a forum or who has their own fancy-looking web site. Such things give the appearance of authority that may or may not be real. Keep in mind that the hand behind that blog post you’re reading belongs to a human being, and as such, the information may or may not be biased, incomplete, inaccurate or even outright false. As with people in real life, think very carefully about what they say, and pay less attention to superficial things.

So, why should you jump to take my advice? You shouldn’t. I expect you to turn that critical eye on me, as well, and make your own choices.

Tags:

2 Comments

  • aalien says:

    Nice post!
    I do not doubt but I do not trust, generally!

    “as those are known to be manipulated by unethical companies” – Unfortunately that’s true. Not only manipulated by companies but also by “kids”, or simply stu**d users who just want to spoil things, or (for me the most common) by fashion and naifs thoughts… BUT we find truly genuine reviews too.

    I saw an article were you can buy thousands of Facebook/Twitter/Other forum accounts in the black market. I don’t remember very well… It was a reportage from a national TV channel in my country where a reporter went to buy 1000 Facebook accounts for something like $100 (more or less). The reporter said it was part of a new company and wanted the accounts for spamming a new product… and he bought it!!! The reportage was about how the digital trafficking world was cheap nowadays…

    I most often find the “real” feedback when I know that related situation it’s true but with a little bit of search (just google it) and after reading various (various = various) posts in DIFFERENT websites (mostly community forums) one can really find the “real” thing…

    I think sites like this ones, that are maintained but individual neutral persons are very informative. From various reasons and between them we find that there’s no need to favour something other than real experience with the product, because it’s not just one post or comment or feedback in a random forum/website, because it’s a lot of constantly upgrade. Also you can easily find Thomas at apple official mac forums (where I discover his mac security guide) and after you read his comments and constant feedback you can’t miss he is really impartial (of course he has is options we all have) and clearly informative in his choices…

    The problem for me it’s that in a general perspective people are not really educated nor really aware of knowledge and common sense to think out-of-the-box… Mostly often when they see a bunch of people running in one direction they just start running with them in a fashionably way…

  • Someone says:

    Thomas –

    I have always had a great deal of respect for you, ever since I read your post “MacDefender in action” and learned that you download malware onto your own computer on a regular basis to inform the public of what happens, and that respect grew with your using your own computer as an AV-software testing environment. I know you have the technical know-how to keep your computer safe when you use it as a guinea pig, but still, I would never, ever knowingly do anything to my own computer that could potentially hurt it, whether I had the technical know-how or not. (I don’t.) I’m basically a computer chicken.

    But this article makes me respect you more, because essentially, you’re saying “You should take everything I’m saying with a grain of salt.” You’re basically supporting the hecklers of your information. It’s very brave of you, and I feel quite confident taking technical advice from someone who is confident enough in his knowledge to openly support those who question him.

This post is more than 90 days old and has been locked. No further comments are allowed.