If I were to be a presenter of the much missed TV series MythBusters, then it would have to be Jamie Hyneman. I mean, the magnificent facial hair is reason enough, right? I mention this because I sometimes feel that a similar TV series is needed to dispel the myriad myths of information security. Not least, he says getting to the point at last, that nothing is “unhackable” or “100% secure” – and that includes such timeless favourites as macOS, iOS and, yes, dear reader, even Linux. If threat actors were vampires, then Linux is not a garlic-flavoured crucifix; it’s more an elderly Peter Cushing playing Dr Van Helsing, a good act but unlikely to deter a determined group of folk after your blood.
There, I’ve said it, but just before I rush to the nerd bunker for my own protection, let me explain why.
I will start by saying that, for all intents and purposes, Linux is more secure than Windows, and I’m not disputing that. It isn’t, however, mythically secure. This can be exampled by a recent piece of rather interesting research into an espionage-focused advanced persistent threat
