According to the FT, Google is dropping Windows internally. The article quotes anonymous sources at Google:
“We’re not doing any more Windows. It is a security effort,” said one Google employee.
“Many people have been moved away from [Windows] PCs, mostly towards Mac OS, following the China hacking attacks,” said another.
Given that Google employees many of the smartest security people around, I wonder at this. Moving to Apple as a defence against targeted attacks is a bad idea - OS X is a softer target than Windows 7. It’s a win against un-targeted attacks as (for now) OS X has less malware written for it, but that doesn’t seem to be the quoted threat.
Against targetted attacks, OS X runs many of the same attack vectors as Windows (Flash, pdf, web browsers) while Apple’s continuing embrace of minimal disclosure of security threats makes the platform less secure. It’s telling that OS X falls first in the annual pwn2own contest.
Moving to Linux is different. Not only would a desktop running a suitably hardened Linux be a hard target Google has the expertise to fix any problems they see themselves. It seems however that even many Googlers prefer the “it just works” appeal of OS X.
So is it true? Who knows. It could be: Google obviously needs Windows for testing its products, but that need could be meet via VMs running on either Apple or Linux. Given its Linux backend and engineering culture they undoubtedly have many, many fewer Windows users than other companies their size. Probably not that many at all.
I just don’t see such a big win. Maybe they take the view that the people running Windows are the least technical members of staff and so need the most help :)
This leaves the only plausible reasons I can think of as being related to China:
- For their staff there, mandating no Windows ensures no dodgy pirated versions get in (as seems to happen to everyone else running IT in China) and
- It’s probably reasonable to assume that most (even state sponsored) attackers running out of China are better at Windows than Linux/OS X. The reverse is probably true within Google so doing this improves the odds in Google’s favour.
hm. Maybe it does make sense after all.
