Oh Lord. I guess someone took the camera off these idiots for too long. Lamer and Belch are back, touting the insecurity of the MacBook’s WiFi card.
Yeah… I know… I beat this one to death already, but something at Engadget caught my eye.
This on-again / off-again storyline surrounding the infamous MacBook WiFi hack has us all in a bit of a whirlwind, but it looks like the responsible party is finally coming clean. David Maynor, who is now the CTO at Errata Security, broke the silence regarding the questionable WiFi vulnerability that he claimed existed in Apple’s MacBook by actually demonstrating his findings in front of the crowds at the Black Hat DC event.
[...]
Yesterday, however, Maynor streamed rogue code from a Toshiba laptop while his MacBook (running OS X 10.4.6) scanned for wireless networks; sure enough, the laptop crashed, and he insinuated that the code could actually be used to do far worse things, such as control functions of the computer — but interestingly enough, it wasn’t noted whether the MacBook’s WiFi adapter was Apple’s own or of the third-party variety.
The angst still felt by Maynor primarily stems from Apple’s outright denial of his claims, only to provide an elusive patch that fixed the issue in OS X 10.4.8, essentially making its operating system more secure without giving David his due credit.
Mr. Maynor also said that he would no longer attempt to work with Apple and wouldn’t report any further findings to them, and while most Macs have certainly done their duty and upgraded to the latest version of OS X, users can reportedly expect a public release of the rogue code to hit the web soon.
Okay. Where to begin.
1. The patch Apple released was unrelated to the supposed vulnerability that these two tools demonstrated once on film and refused to demonstrate again.
2. They have still not answered some basic questions about how they did it.
3. They feel angst? How about all the Mac users who were universally decried as arrogant in the initial demonstration of their third-party sideshow hack?
Here’s my problem with Lamer and Belch. They came out and demonstrated a hack on television so as to control the environment for the test. They then proceeded to whine about the fact that no one was calling them great for finding this “flaw” that wouldn’t apply to half the thinking Mac users out there. Then they ignored people who dared question their procedures and the bug they found and dismissed them as Apple fanboys (a common phrase usually associated with some dimwitted douchebag who prefers to argue strawmen than actual points [no offense, Artie]).
In the end, they felt angst.
You should. You’ve had numerous chances to demonstrate this terrible vulnerability and have yet to do so in any detailed way. If what Engadget reports is true, and Lamer and Belch are about to release this “hack” to the public, then it only serves to demonstrate their own arrogance.
“Don’t recognize me and I’ll bury you.”
Drop dead tools. No one cares about you. The only people who reported your stupid little sideshow got it wrong and left out critical details.
I still feel a lot of “angst” over that.
In the end, they still haven’t answered three very simple questions…
1. Can you demonstrate that vulnerability affecting an integrated Airport card and not a third party card and on the current version of Mac OS X (Not 10.4.6 as you did it recently)?
2. If the hack is as simple as you say, why won’t you demonstrate it face to face with anyone?
3. Why did you not take this code to Apple? They claim they’ve never spoken to you and the vulnerability they patched was not related to what you discovered meaning your code never made it into their hands. And if your interest is in making the platform more secure and not just “teaching us Mac users a lesson” as you originally stated, why would you release that code to the public if it could knowingly damage innocent users’ computers?
Because you’re scum. Both of you.
Technorati Tags: apple, mac, osx, maynor, elch, lamer, belch
Recent Comments