I would think Mark means that OS components (usually whitelisted by security applications) are frequently abused now, so "whitelisting is dead."
To me, whitelisting is not dead. You whitelist OS components (the system space), especially the critical ones. Then, protect them against non-whitelisted objects to preserve their integrity. Whitelisting has its purpose. One just needs to utilize this purpose for better security.
The word "initiated" is incorrect, to me. I don't think that's the right term for the origin of malware attacks.
Whitelisting plus monitoring of program actions = good security model.
Mark means you cannot implicitly trust (whitelist) what Microsoft ships with Windows. He is not saying anything that has not been known for the past few decades.
In the context of AppGuard, it blocks everything by default in User Space, so it doesn't much matter what is whitelisted in System Space. Also, AppGuard is SRP with the ability to disable processes - so if the user wants to harden their AppGuard install then they may do so - and AppGuard has Guarded programs that are run with restricted privileges.
The Granite AppGuard product line has been discontinued.
AppGuard Personal sales have been suspended for the foreseeable future. Notice that I did not say AppGuard Personal has been discontinued; I stated that the sale of the Personal version has been suspended.
For the consumer (non-commercial, home user) the available product is AppGuard Business.