User profile for user: kjbalt
kjbalt Author
User level: Level 1
7 points

Software Update Dialog is a Security Risk

This is not a new issue, but as we become more security conscious, the problem has become more apparent.


When there are pending updates for my system the attached dialog will appear out of the blue while I am working.

In our modern world, no one should ever type their system password into a dialog that simply appears out of nowhere.


Though I have never coded for the mac, i've been coding for 30 years, and my expectation is that it would be trivial for a piece of malware to replicate the look of this dialog and pop up a such a malicious lookalike at some random point. Heck it might be able to do that and then validate the password by kicking off a legitimate software update with it and I would never know what happened. (Speculating on that last point. I would hope that that, at least, is not possible.). Either way, the fact that the MacOS has such a dialog, makes it too easy for scammers to fake it.


In any event, this post is a call out to Apple to fix this. If the OS needs the user to enter their password to enable software updates (or for any reason that isn't directly the result of their own user-initiated action), it should put up a dialog that instructs the user to open the system preferences screen and initiate the software update from there, because they should never trust a dialog that pops-up unbidden to be legitimate.


I suppose some sort of 'secret phrase' or 'special picture' that is encrypted somewhere such that only the system can get to it, and which the user themselves provided at some point in the past, could be used to validate the legitimacy of such dialogs. However, even that is dependent on how secure the OS is able to keep said secret and how much the user trusts it to do so.


Am I paranoid? Thoughts?


MacBook Pro 15″, macOS 10.14

Posted on May 8, 2023 12:12 PM

Reply
Question marked as Top-ranking reply
User profile for user: ddemerre
ddemerre
User level: Level 1
4 points

Posted on Jan 29, 2024 11:36 AM

I feel that if the system has been configured with "automatic updates" enabled, there should be a feature that allows this to happen without any notification or confirmation via password... That's what "automatic" means, not "semi-automatic".

For instance when one enables "automatic log-in" to an account, at the moment of selection/activation, the credentials of the account to log-in to must be given, and then - later - when the auto-login is activated, there is no "enter your credentials here" dialog.

The option "automatic update" (for apple update, that should be "sufficiently trustworthy", and ideally - especially for security updates - rolled out asap) should then also permit (the "well informed about possible consequences" administrator to authorize the setting (with a once given authorization), and then that setting is "kept" as permissive - until ever it is disactivated.

View in context

Similar questions

4 replies
Question marked as Top-ranking reply
User profile for user: ddemerre
ddemerre
User level: Level 1
4 points

Jan 29, 2024 11:36 AM in response to kjbalt

I feel that if the system has been configured with "automatic updates" enabled, there should be a feature that allows this to happen without any notification or confirmation via password... That's what "automatic" means, not "semi-automatic".

For instance when one enables "automatic log-in" to an account, at the moment of selection/activation, the credentials of the account to log-in to must be given, and then - later - when the auto-login is activated, there is no "enter your credentials here" dialog.

The option "automatic update" (for apple update, that should be "sufficiently trustworthy", and ideally - especially for security updates - rolled out asap) should then also permit (the "well informed about possible consequences" administrator to authorize the setting (with a once given authorization), and then that setting is "kept" as permissive - until ever it is disactivated.

Reply
User profile for user: a brody
a brody
User level: Level 10
85,308 points

May 18, 2023 9:55 AM in response to kjbalt

Software Update is easy enough to turn off in Apple menu -> System Preferences -> Software Update.

I agree though in principle that all push notifications pose a security risk.

And anyone who enables it needs to be aware whether or not the dialog they are receiving is genuine.

Good computer training is vital no matter whom uses the computer.


If someone turns on automatic software update, they should be trained to cancel it it and then see if it is genuine through Apple's own software in System Preferences or Apple menu -> About This Mac, and never take such dialogs at face value.


Sadly since the advent of push notifications over 20 years ago, such a security risk has always been present.




Reply
User profile for user: @rkanes
@rkanes
User level: Level 1
9 points

Jan 11, 2024 10:27 AM in response to a brody

I see the same dialogs from time to time, and am also suspicious. Agreed that all legit requests should ideally come from the System Settings environment. But beyond that, why would Apple even allow a dialog like this (from them or others), to invoke an action without actually specifying *what* is being updated? Seems easy enough to do, and would be even better as an experience if there was an info link in the dialog along the lines of the existing "About this update" links they use in other contexts.

Reply

This thread has been closed by the system or the community team. You may vote for any posts you find helpful, or search the Community for additional answers.

Software Update Dialog is a Security Risk

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple Account.
Learn more Sign up