On 2024-02-10 11:54, david wrote:
> Using <news:kqLxN.280713$Ama9.98273@fx12.iad>, Alan Browne wrote:
>
>>> Nobody could deny this app easily slipped through Apple's checks and
>>> nobody could deny it took Apple too long to react (at least if you ask
>>
>> Again you don't understand what happened.  No surprise.
>
> What do you disagree with of my understanding based on the reports?

The part where you called it "malware"?

>
> 1. *Apple pulled it* after LastPass asked them to remove it.
> 2. Apple took a few days and then fully *agreed* with LastPass.
> 2. LastPass clearly publicly says it's *fraudulent malware*.

Where did they say that?

>
> Which do you dispute and what is your basis for that dispute?
That anyone called it "malware".

And because those words do not appear in the article you cited...

....not said by anyone.

On 2024-02-10 12:09, david wrote:
> Using <news:l2ofkiFg2ogU1@mid.individual.net>, Jolly Roger wrote:
>
>>> It's about Apple boasting that they check for malware when it's clear
>>> that
>>
>> This app isn't malware.
>
> LastPass called it "Fraudulent Malware" and Apple subsequently removed it.
> After testing it for two days (according to the reports).

That's a lie; that LastPass called it "malware".

>
> So what's clear is it didn't meet Apple's requirements.
> And yet, it was there. Which likely indicates plenty of others are also.
>
> That it happened clearly shows Apple's boasts are hollow.
> That's what you don't like.
>
> And you shouldn't like it.
> Blame Apple. Not LastPass.
> All LastPass did was inform Apple the app passed Apple's checks and yet the
> app clearly does not meet Apple's boastful requirements.
>
> Otherwise, Apple wouldn't have removed it after investigating it for days.

You have yet to show that anyone called it "malware".

On 2024-02-10, david <this@is.invalid> wrote:
> LastPass clearly publicly says it's *fraudulent malware*.

Liar. Your own article disputes your obvious lie:

<https://arstechnica.com/security/2024/02/a-password-manager-lastpass-calls-fraudulent-booted-from-app-store/>

All you trolls have are weak lies. Pathetic.

--
E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

JR

On 2024-02-10, david <this@is.invalid> wrote:
> Using <news:l2ofkiFg2ogU1@mid.individual.net>, Jolly Roger wrote:
>
>>> It's about Apple boasting that they check for malware when it's
>>> clear that
>>
>> This app isn't malware.
>
> LastPass called it "Fraudulent Malware"

That's a lie, as anyone who reads your article can see:

<https://arstechnica.com/security/2024/02/a-password-manager-lastpass-calls-fraudulent-booted-from-app-store/>

Weak troll, as usual.

--
E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

JR

Alan Browne wrote:
> On 2024-02-10 14:54, david wrote:
>> Using <news:kqLxN.280713$Ama9.98273@fx12.iad>, Alan Browne
>> wrote:
>>
>>>> Nobody could deny this app easily slipped through Apple's
>>>> checks and nobody could deny it took Apple too long to
>>>> react (at least if you ask
>>>
>>> Again you don't understand what happened.  No surprise.
>>
>> What do you disagree with of my understanding based on the
>> reports?
>>
>> 1. *Apple pulled it* after LastPass asked them to remove it.
>> 2. Apple took a few days and then fully *agreed* with LastPass.
>> 2. LastPass clearly publicly says it's *fraudulent malware*.
>>
>> Which do you dispute and what is your basis for that dispute?
>
> You said it passed through Apple's checks.  Quite right.  Of
> course it did, because it was not malware per se.  It is
> imposter ware, perhaps, and there is no way Apple could control
> for that.
>
> Lastpass did __not__ say the imposter was malware, by the way.
>
> As explained elsewhere, when one trusts Lastpass or 1Password
> to be a password locker manager, one is putting full faith in
> their reputations - fact is, if they wanted, they could be
> sucking all the data out of your "locker" along with the
> decrypt key and use it maliciously.
>
> Fortunately they have instead earned the trust of millions of
> users to use their products as reliable purpose made apps.
>
> As to the imposter ware, it is malware free as far as anyone
> knows, but nobody has tested it sufficiently to see if it is
> trustworthy.
>
> Now I expect the above is confusing to you, because you are
> what you are.
>
>

Apple is always treated unfairly.

Why does everyone persecute this poor little company?

It's a damn shame.

Jolly Roger wrote on 11 Feb 2024 01:10:07 GMT :

>>>> It's about Apple boasting that they check for malware when it's
>>>> clear that
>>>
>>> This app isn't malware.
>>
>> LastPass called it "Fraudulent Malware"
>
> That's a lie, as anyone who reads your article can see:
>
> <https://arstechnica.com/security/2024/02/a-password-manager-lastpass-calls-fraudulent-booted-from-app-store/>
>
> Weak troll, as usual.

So the fraudulent app had never made it into the Apple App Store then?

Alan Browne wrote on Sat, 10 Feb 2024 17:03:28 -0500 :

> Because LastPass protested over the imposter ware attempting to pass it
> off as a LastPass product.

So it never happened?

Using <news:uq91ea$35tc$1@dont-email.me>, Alan wrote:

>> What do you disagree with of my understanding based on the reports?
>
> The part where you called it "malware"?

That doesn't matter.

It was fraudulent. It stole credit card and personal information.
It wasn't LastPass but it pretended in look & feel to be LastPass.

The chance of it not being malware is zero - but you can believe it was
just trying to give people an alternative way to access LastPass.

Whether it exercised its payload yet or not, it was in the App Store.
That Apple booted it means it didn't pass Apple's stated requirements.

That it was in the App Store means Apple doesn't test for fraudulent apps.
Why did Apple allow it into the App Store if they never tested it first?

Using <news:l2ql1jFsfhcU1@mid.individual.net>, Jolly Roger wrote:

> Liar. Your own article disputes your obvious lie:
>
> <https://arstechnica.com/security/2024/02/a-password-manager-lastpass-calls-fraudulent-booted-from-app-store/>
>
> All you trolls have are weak lies. Pathetic.

That doesn't matter. It's like the Judge convicting someone for shooting a
person in the torso and you insist it didn't happen because he shot him in
the abdomen (it's just your weak excuse solely by you playing on words).

It was fraudulent. It stole credit card and personal information.
It wasn't LastPass but it pretended in look & feel to be LastPass.

The chance of it not being malware is zero - but you can believe it was
just trying to give people an alternative way to access LastPass.

Whether it exercised its payload yet or not, it was in the App Store.
That Apple booted it means it didn't pass Apple's stated requirements.

That it was in the App Store means Apple doesn't test for fraudulent apps.
Why did Apple allow it into the App Store if they never tested it first?

On 2024-02-10 22:05, david wrote:
> Using <news:l2ql1jFsfhcU1@mid.individual.net>, Jolly Roger wrote:
>
>> Liar. Your own article disputes your obvious lie:
>>
>> <https://arstechnica.com/security/2024/02/a-password-manager-lastpass-calls-fraudulent-booted-from-app-store/>
>>
>> All you trolls have are weak lies. Pathetic.
>
> That doesn't matter. It's like the Judge convicting someone for shooting a
> person in the torso and you insist it didn't happen because he shot him in
> the abdomen (it's just your weak excuse solely by you playing on words).

No. It's like the judge ruling that shooting a firearm that doesn't it
anyone isn't murdeer.

>
> It was fraudulent. It stole credit card and personal information.

It was fraudulent in that it tried to convince you it was LastPass.

There is no evidence that it "stole credit card and personal information".

> It wasn't LastPass but it pretended in look & feel to be LastPass.
>
> The chance of it not being malware is zero - but you can believe it was
> just trying to give people an alternative way to access LastPass.
>
> Whether it exercised its payload yet or not, it was in the App Store.
> That Apple booted it means it didn't pass Apple's stated requirements.
>
> That it was in the App Store means Apple doesn't test for fraudulent apps.
> Why did Apple allow it into the App Store if they never tested it first?

You have no evidence that it was tested...

....Arlen

On 2024-02-10 22:02, david wrote:
> Using <news:uq91ea$35tc$1@dont-email.me>, Alan wrote:
>
>>> What do you disagree with of my understanding based on the reports?
>>
>> The part where you called it "malware"?
>
> That doesn't matter.

You want it not to matter...

....now.

Because you were wrong...

....Arlen

On 2024-02-10 21:56, Andrew wrote:
> Jolly Roger wrote on 11 Feb 2024 01:10:07 GMT :
>
>>>>> It's about Apple boasting that they check for malware when it's
>>>>> clear that
>>>>
>>>> This app isn't malware.
>>>
>>> LastPass called it "Fraudulent Malware"
>>
>> That's a lie, as anyone who reads your article can see:
>>
>> <https://arstechnica.com/security/2024/02/a-password-manager-lastpass-calls-fraudulent-booted-from-app-store/>
>>
>> Weak troll, as usual.
>
> So the fraudulent app had never made it into the Apple App Store then?

Making it into the App Store doesn't make it "malware" that Apple didn't
catch...

....Arlen

On 2024-02-10 21:56, Andrew wrote:
> Alan Browne wrote on Sat, 10 Feb 2024 17:03:28 -0500 :
>
>> Because LastPass protested over the imposter ware attempting to pass it
>> off as a LastPass product.
>
> So it never happened?

It was never malware...

....which is what you claimed...

....Arlen.

On 2024-02-10 21:29, Hank Rogers wrote:
> Alan Browne wrote:
>> On 2024-02-10 14:54, david wrote:
>>> Using <news:kqLxN.280713$Ama9.98273@fx12.iad>, Alan Browne wrote:
>>>
>>>>> Nobody could deny this app easily slipped through Apple's checks
>>>>> and nobody could deny it took Apple too long to react (at least if
>>>>> you ask
>>>>
>>>> Again you don't understand what happened.  No surprise.
>>>
>>> What do you disagree with of my understanding based on the reports?
>>>
>>> 1. *Apple pulled it* after LastPass asked them to remove it.
>>> 2. Apple took a few days and then fully *agreed* with LastPass.
>>> 2. LastPass clearly publicly says it's *fraudulent malware*.
>>>
>>> Which do you dispute and what is your basis for that dispute?
>>
>> You said it passed through Apple's checks.  Quite right.  Of course it
>> did, because it was not malware per se.  It is imposter ware, perhaps,
>> and there is no way Apple could control for that.
>>
>> Lastpass did __not__ say the imposter was malware, by the way.
>>
>> As explained elsewhere, when one trusts Lastpass or 1Password to be a
>> password locker manager, one is putting full faith in their
>> reputations - fact is, if they wanted, they could be sucking all the
>> data out of your "locker" along with the decrypt key and use it
>> maliciously.
>>
>> Fortunately they have instead earned the trust of millions of users to
>> use their products as reliable purpose made apps.
>>
>> As to the imposter ware, it is malware free as far as anyone knows,
>> but nobody has tested it sufficiently to see if it is trustworthy.
>>
>> Now I expect the above is confusing to you, because you are what you are.
>>
>>
>
> Apple is always treated unfairly.

Not at all. When it deserved its lumps, it gets them.

This is not such a case. But the trolls will take any event and recast
it as something dear to their shriveled little hearts.

And you of course have to come up with your weak ripostes.

--
“Markets can remain irrational longer than your can remain solvent.”
- John Maynard Keynes.

On 2024-02-11 01:02, david wrote:
> Using <news:uq91ea$35tc$1@dont-email.me>, Alan wrote:
>
>>> What do you disagree with of my understanding based on the reports?
>>
>> The part where you called it "malware"?
>
> That doesn't matter.
>
> It was fraudulent. It stole credit card and personal information.
> It wasn't LastPass but it pretended in look & feel to be LastPass.
>
> The chance of it not being malware is zero - but you can believe it was
> just trying to give people an alternative way to access LastPass.
>
> Whether it exercised its payload yet or not, it was in the App Store.
> That Apple booted it means it didn't pass Apple's stated requirements.
>
> That it was in the App Store means Apple doesn't test for fraudulent apps.
> Why did Apple allow it into the App Store if they never tested it first?

Again you're miscasting what Apple look for. With millions of apps they
can't possibly look at what every app is purporting to do. What Apple
does do is scan the app (using automated tools) looking for code that is
common to malware. This imposter app had no such code.

The legitimate LastPass passes these tests. And if it were designed to
fraudulently transfer people's personal data to LastPass ... it STILL
would pass these tests.

LastPass and 1Password (and others) operate on trust they have earned
over many years.

--
“Markets can remain irrational longer than your can remain solvent.”
- John Maynard Keynes.

On 2024-02-11, Andrew <andrew@spam.net> wrote:
> Jolly Roger wrote on 11 Feb 2024 01:10:07 GMT :
>
>>>>> It's about Apple boasting that they check for malware when it's
>>>>> clear that
>>>>
>>>> This app isn't malware.
>>>
>>> LastPass called it "Fraudulent Malware"
>>
>> That's a lie, as anyone who reads your article can see:
>>
>> <https://arstechnica.com/security/2024/02/a-password-manager-lastpass-calls-fraudulent-booted-from-app-store/>
>>
>> Weak troll, as usual.
>
> So the fraudulent app had never made it into the Apple App Store then?

You think adults don't notice you trying to deflect from the fact that
it's not malware? How old are you, 10?

--
E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

JR

On 2024-02-11, Andrew <andrew@spam.net> wrote:
> Alan Browne wrote on Sat, 10 Feb 2024 17:03:28 -0500 :
>
>> Because LastPass protested over the imposter ware attempting to pass
>> it off as a LastPass product.
>
> So it never happened?

Like a child, you claimed it's supposedly malware, with zero evidence
that it is, and like a child you are desperately trying to deflect.

--
E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

JR

On 2024-02-11, david <this@is.invalid> wrote:
> Using <news:uq91ea$35tc$1@dont-email.me>, Alan wrote:
>
>>> What do you disagree with of my understanding based on the reports?
>>
>> The part where you called it "malware"?
>
> That doesn't matter.

Lies don't matter, eh? What a childish position to take.

--
E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

JR

On 2024-02-11, david <this@is.invalid> wrote:
> Using <news:l2ql1jFsfhcU1@mid.individual.net>, Jolly Roger wrote:
>
>> Liar. Your own article disputes your obvious lie:
>>
>> <https://arstechnica.com/security/2024/02/a-password-manager-lastpass-calls-fraudulent-booted-from-app-store/>
>>
>> All you trolls have are weak lies. Pathetic.
>
> That doesn't matter.i

It absolutely does matter. You're just desperate to deflect from your
outright lie.

--
E-mail sent to this address may be devoured by my ravenous SPAM filter.
I often ignore posts from Google. Use a real news client instead.

JR

Alan Browne <bitbucket@blackhole.com> wrote:
>> Apple is always treated unfairly.
>
> Not at all. When it deserved its lumps, it gets them.

Apple brags so much about safety but Apple actually checks nothing.

For a company that boasts as much as Apple does, they deserve to be
lambasted when it's clear they don't have a single check for fraudulent
apps which steal your data because people think they're the real thing.

Given Apple removed the app, it's likely Apple didn't check it even once.

Jolly Roger <jollyroger@pobox.com> wrote:
> What a childish position to take.

For a company that brags as much as Apple does about how much they check
apps for safety, Apple deserves to be publicly lambasted when it's clear
Apple didn't run a single basic check for fraudulent apps which steal your
data because people think fraudulent apps are actually the real thing.

Jolly Roger <jollyroger@pobox.com> wrote:
> and like a child you are desperately trying to deflect.

What matters is Apple brags that they check apps before they go into the
App Store and yet this proved Apple doesn't run even a single basic obvious
check for fraudulent activity - which this LastPass fraudulent app did.

Jolly Roger <jollyroger@pobox.com> wrote:
> It absolutely does matter.

Two things matter.

Apple brags that they vet apps for fraudulent activity.
Yet this proved that Apple does not vet apps for fraudulent activity.

That this fraudulent app stole people's data under the ruse of being the
real thing doesn't really matter as much as the knowledge that Apple brags
they check for fraudulent activity that Apple clearly does not check for.

On 2024-02-11 12:50, Peter wrote:
> Alan Browne <bitbucket@blackhole.com> wrote:
>>> Apple is always treated unfairly.
>>
>> Not at all. When it deserved its lumps, it gets them.
>
> Apple brags so much about safety but Apple actually checks nothing.

This thread presented no evidence that Apple neglected anything related
to safety.

>
> For a company that boasts as much as Apple does, they deserve to be
> lambasted when it's clear they don't have a single check for fraudulent
> apps which steal your data because people think they're the real thing.
>
> Given Apple removed the app, it's likely Apple didn't check it even once.
Apple didn't check its NAME, doofus.

On 2024-02-11 13:05, Peter wrote:
> Jolly Roger <jollyroger@pobox.com> wrote:
>> It absolutely does matter.
>
> Two things matter.
>
> Apple brags that they vet apps for fraudulent activity.
> Yet this proved that Apple does not vet apps for fraudulent activity.
>
> That this fraudulent app stole people's data under the ruse of being the
> real thing doesn't really matter as much as the knowledge that Apple brags
> they check for fraudulent activity that Apple clearly does not check for.
>

You're switching nyms a lot this week...

....Arlen.