95% of exploits are application based
Applications are the biggest threat to any computers security.
And what's worst is giving programs administrative (aka sudo "root) access to install "hooks" or other marketing gleaming code deep into a operating systems workings.
Developers don't give a rats behind about securing their code, they are run by marketing departments and they already have your money, so little is motivating them.
Apple needs to wake up and better compartmentalize their operating system security.
As a longtime Mac user, I am APPALLED at the crap of security the Mac OS and Apple apps has turned into.
Don't get me started about EFI....
( a powerful firmware environment that can contact the internet and download even before the OS has even loaded? Insane !!!)
Biting the hand that feeds IT
