Catalina no longer getting new security updates?

[bogdanw]

i'm not sure about it, but i also like to think that iOS should in fact be even harder to corrupt by design?

You would think that, based on years of Apple propaganda.
It’s false. iOS is more popular than macOS, it attracts more interest in exploiting its vulnerabilities.
10 zero-day/actively exploited vulnerabilities since the start of the year, most of them are in iOS kernel or WebKit, that affects every browser on iOS, not just Safari.
https://www.bleepingcomputer.com/ne...-fixes-new-ios-zero-day-used-to-hack-iphones/
https://www.kaspersky.com/blog/always-update-safari-on-iphone/44039/

 

[unrigestered]

not because of Apple propaganda, as i'd like to think that i'm generally pretty immune to what people try to convince me to believe 🤪, especially when it's coming from sales persons.

i just thought that it should provide less ways to install exploits, as there shouldn't be too many ways of installing "launchagents/daemons"?
and Kernel extensions shouldn't be as much of a thing too?
at least i would not allow those on an OS, as restrictive, as iOS already is.

same as i think that macOS with all of it's more "recent" stuff like SIP, etc. should be more secure by design than the usual Linux distro.
but of course the active / potential userbase is playing a big role in actual exploits / attempts
and of course, at least i think, iOS doesn't have something similar to XProtect, or MRT going in the background?

 

[MBAir2010]

With respect, just because Safari 11 blocked one malicious site doesn't mean that you should use it. By that logic, we should all still be using Netscape Navigator. You should always use a current, supported, and fully-updated web browser.

I have to use that version to run that OSX, I just wont bank or expect anything safe as Venutra Safari on the MBA-M1

recently I got a scare when I saw "openthread.thread.home.arpa" on my network
that is for the 'HomePod",  stated!

 

[bogdanw]

not because of Apple propaganda, as i'd like to think that i'm generally pretty immune to what people try to convince me to believe 🤪, especially when it's coming from sales persons.

Sorry, I didn’t mean “you”. I should have said “one”, as in anyone https://www.merriam-webster.com/dictionary/you/one would think (that)
No need for user interaction, no need for persistence.
https://www.kaspersky.com/resource-center/definitions/what-is-zero-click-malware

 

[unrigestered]

no harm done in any way 👍

english is not my native language and i quite regularly think that a "you" is "me" initially, before realising. plus i can be dense at times

but regarding iOS vs macOS:
shouldn't the iOS counterparts of Safari, iMessage, Mail, etc. still provide the very same level protection as the ones on macOS?
so aside from the missing (at least i think they are) XProtect and MRT, shouldn't you one have at least have the same level of security, plus the added level of security that is coming by it's restrictiveness?

 

[dimme]

I am running a 2012 MacMini as a file server running Catalina. It's connected to my home network and the only online task I use is a cloud backup to backblaze and Resillo sync. I do not browse the internet or check email on this machine. However because it is my fileserver there is a copy of all my data on it. The hardware works great and I don't want to toss the system just because it's an unsupported OS. Am I being an idiot for using an old system that works perfectly?

 

[fricotin]

If you are then I am also as well as many others…