10-27-2010, 04:00 PM

Security alert: New Trojan Horse apps said to attack the Mac

Security alert: New Trojan Horse apps said to attack the Mac

Quote:

Some security mavens have long theorized that as the Mac becomes more popular, we'd start to see malware that would start targeting the platform. Sure enough, this morning's crop of email blasts from PR firms included a few notices of trojans that are affecting Mac users.

First, from SecureMac, comes word of trojan.osx.boonana.a, which comes disguised as a link on social networking sites asking "Is this you in this video?" Clicking the link downloads and runs a Java applet that then installs further applications to modify system files and open the system to password-free access. The other malicious apps report back to command and control servers, as well as hijack user accounts to spread the trojan through email spam.

10-27-2010, 04:18 PM

Glad I don't belong to any social network sites.
But common sense will protect most users anyways.

Quote:

Intego reports that these trojans will give you fair warning, as the standard Mac OS X Java security alert (see below) will be displayed. If you're not expecting a Java applet to be running on your machine, click the Deny button and the applet will not run. If you want more information about what's happening, click the Show Details button, and you'll see that content with an untrusted root certificate wants to run on your computer. Clicking Deny will protect your machine from a possible malware infection. Allowing the Java applet to run will launch an installer that will be displayed on your machine. If you haven't launched an installer deliberately, then quit it immediately.

10-27-2010, 04:19 PM

Can't be said enough, kids: If you don't know what it is, then don't download it.

An ounce of prevention equals a pound of cure!

10-27-2010, 04:23 PM

Good thing Apple is getting rid of Java in 10.7.

10-27-2010, 05:27 PM

Many member ask the question about viruses and malware on the Mac and in addition to using the search function at the top of the forum, you'll find almost all your answers here:

Official Antivirus and Firewall FAQ

10-27-2010, 05:56 PM

Quote:

which comes disguised as a link on social networking sites asking "Is this you in this video?"

Glad I never go outside my house then, I totally just saved myself from that trojan.

10-27-2010, 06:39 PM

I'm familiar with how Facebook and Twitter run feature-wise. If there is a link that says that, ha, I am not clicking on it.

10-27-2010, 07:23 PM

Good heads up.

10-27-2010, 07:42 PM

Quote:

Intego reports that these trojans will give you fair warning, as the standard Mac OS X Java security alert (see below) will be displayed.

This is therefore not a security risk as the user has full control. This is the same level of threat as other malicious executables such as those packaged in .app packages.

In Windows you only have to open your web browser, click on a particular link and your whole computer is full of crap. You never get warned about anything.

This is the real threat - Drive-by download - Wikipedia, the free encyclopedia

Being sensible can't stop that happening.

10-27-2010, 08:09 PM

I do not have Java enabled on mine just script.

10-28-2010, 05:55 AM

god0fgod - What's the point in raising Windows issues here other than for petty point scoring?

The fact is that lots of malware is delivered in this method, and the users are the weak point in any system - once someone has decided to view a stupid video from an unknown source, they are unlikely to think twice about clicking 'Allow' when prompted.

I still think it is unlikely that many users will be bothered by this, but responding to a possible Mac threat by simply shouting 'Well Windows is worse!' doesn't achieve anything.

10-28-2010, 06:27 AM

Quote:

Originally Posted by zongamin

god0fgod - What's the point in raising Windows issues here other than for petty point scoring?

The fact is that lots of malware is delivered in this method, and the users are the weak point in any system - once someone has decided to view a stupid video from an unknown source, they are unlikely to think twice about clicking 'Allow' when prompted.

I still think it is unlikely that many users will be bothered by this, but responding to a possible Mac threat by simply shouting 'Well Windows is worse!' doesn't achieve anything.

Actually I agree. Sure Windows has a lot more issues with Virus's and Malware, but that is not the point of this thread at all.

There is an article on OS News that shows that this is maybe being blown out of proportion a bit though, but users should always be careful anyway just in case.

http://www.osnews.com/story/23954/Ja...Mac_OS_X_Fails

10-28-2010, 08:04 AM

Quote:

Originally Posted by god0fgod

This is therefore not a security risk as the user has full control. This is the same level of threat as other malicious executables such as those packaged in .app packages.

Huh? That's a ridiculous statement. Of course it's a threat because it's a phishing-type attack and most users are not smart enough unfortunately to not click on "accept" anytime a window pops up.

Quote:

In Windows you only have to open your web browser, click on a particular link and your whole computer is full of crap. You never get warned about anything.

This particular attack would also get a warning in Windows since it's java based and you'd need to approve the applet, but nice try.

Honestly, just an overall ignorant post filled with misinformation and poorly formed opinions.

10-28-2010, 09:38 AM

"This particular attack would also get a warning in Windows since it's java based and you'd need to approve the applet, but nice try."

No, you don't understand anything that I was talking about.

And everyone here is being awfully rude.

I was pointing out that drive-by downloads don't happen on Macs but they do on Windows and nobody can prevent those. Even security software is rather rubbish at dealing with those unless you pay for very expensive ones.

I know this because of experience. I've browsed the web before doing nothing but viewing websites and on Windows I'd get stupid malware pop out of nowhere.

10-28-2010, 09:51 AM

Quote:

Originally Posted by god0fgod

I was pointing out that drive-by downloads don't happen on Macs but they do on Windows and nobody can prevent those. Even security software is rather rubbish at dealing with those unless you pay for very expensive ones.

But that does't have anything to do with this particular threat or this thread. So if you want to discuss that, I suggest a new topic rather than causing confusion in this one.