iPhone has more vulnerabilities than Android, Windows Phone, and BlackBerry smartphones [Study]

vulnerability_graph

In their ’25 Years of Vulnerabilities’ study, SourceFire — a firm that focuses on providing network security solutions to companies — has revealed iPhone has 81% of all smartphone operating system vulnerabilities, followed by Android (9%), Windows Mobile/Phone (5%), and BlackBerry (4%). SourceFire based its conclusions upon data gathered by Common Vulnerabilities and Exposures (CVE) data and National Vulnerability Database (NVD) since 1988.

If you are surprised by this finding, don’t be. The reasons why iPhone — and by association, iOS — has the lion’s share of vulnerabilities is actually quite simple: popularity and Apple’s walled garden.

Earlier this month, I posted an article about how Android accounts for roughly 79% of all mobile malware apps. In the article I explained the reason Android is targeted by malware app developers is because a) Android is very popular, so scumbags have a better chance of infecting people and b) it is fairly easy to install apps from non-official sources (aka sideloading) on Android, which makes it easier to get malware apps installed on devices.

Apple, on the other hand, is very restrictive about which apps can be installed on iOS/iPhone. In fact, you can only download and install apps from Apple App Store (unless you jailbreak, which most people don’t do). So scumbags looking to attack iPhone users don’t have a very good chance of getting malware apps installed on iDevices. However, scumbags still want to attack iPhone due to its popularity — the same idea of “best bang of the buck” I mentioned in the above-referenced Android article. Since crackers cannot infect iPhones vis-a-vis apps, they look for operating system vulnerabilities. This is primarily the reason why iPhone has 81% of all mobile operating system vulnerabilities found over the past twenty or so years.

However, put all logic aside. I just want to see how iSheep justify these findings; they do, after all, jump all over Android for having malware apps (and rightly so, by the way — Google should have better control over Play Store). So will they be as willing to bash on Apple? I doubt it. Excuses coming in 3… 2… 1…

[via BGR, ZDNet]

Share this post

Comments

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

5 comments

  1. kevbo

    [@self] and Ashraf:
    Your reading the pie incorrectly. The first number is the number of vulnerabilities found (210 found for iPhone which accounts for 81% of all the vulnerabilities found) a combined total of 39 vulnerabilities were found for Android, Windows and BB, which accounts for 19% of the total ( 9%+6%+4%).

  2. Seamus McSeamus

    It would be interesting to see how things worked out if Android had a more closed app store like Apple. My guess is that the numbers would even out, with iOS and Android both having fewer malware attacks, but greater o/s vulnerabilities.The open windows and unlocked doors that exist on iOS probably have equivalents on Android, but the need isn’t there to exploit them because it is too easy to come in piggybacked on an app.

    I’m not making excuses for Apple by any stretch. I do have an iPhone and iPad and would like them to be as secure as possible. However, we also have a couple Android tablets in the house, as well, and I would like for them to be secure also – both on the system side, and the app store side.

    Neither platform should be throwing stones, IMO.