Apple servers may be more vulnerable to attack than Windows servers, say experts


Apple servers may be more vulnerable to attack than Windows servers, say experts

Warwick Ashford

Businesses running Apple servers may be more vulnerable to some cyber attacks than those running Windows-based servers, according to researchers at consulting firm iSEC Partners.

The warning comes as an increasing number of companies are using Apple server software and treating desktop computers as part of the network.

The vulnerability of Apple servers is one of the findings of a report to be presented at this week's Black Hat 2011 conference in Las Vegas, according to the Financial Times.

A sophisticated hacker would find it easier to navigate around an Apple network once inside, the iSEC researchers claim.

The basis of the claim is that Windows-based servers have been updated to make it more difficult for hackers to navigate networks, take control of administrator accounts and increase their levels of authorised access, while Apple's server software has lagged behind.

Microsoft, for example, enforces the use of one set of strong encryptions, but Apple has multiple pieces of server software with five different authentication systems that are all vulnerable to cracking, said iSEC.

In July, hacker group Anonymous claimed to have stolen 25 internal user names and passwords from a server used by Apple for online surveys.

A Twitter post by Anonymous indicated that the Apple breach was part of the AntiSec campaign by hackers to steal sensitive government and company information to expose security flaws.

Email Alerts

Register now to receive IT-related news, guides and more, delivered to your inbox.
By submitting your personal information, you agree to receive emails regarding relevant products and special offers from TechTarget and its partners. You also agree that your personal information may be transferred and processed in the United States, and that you have read and agree to the Terms of Use and the Privacy Policy.

COMMENTS powered by Disqus  //  Commenting policy