New To Mac-Forums?

Welcome to our community! Join the discussion today by registering your FREE account. If you have any problems with the registration process, please contact us!

Get your questions answered by community gurus Advice and insight from world-class Apple enthusiasts Exclusive access to members-only contests, giveaways and deals

Join today!

 
Start a Discussion
 

Mac-Forums Brief

Subscribe to Mac-Forums Brief to receive special offers from Mac-Forums partners and sponsors

Join the conversation RSS
Apple Rumors and Reports Discuss what's going on with Apple in this forum

Security alert: New Trojan Horse apps said to attack the Mac


Post Reply New Thread Subscribe

 
Thread Tools
schweb

 
schweb's Avatar
 
Member Since: Oct 27, 2002
Location: Cleveland, Ohio
Posts: 13,198
schweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond repute
Mac Specs: MacBook Pro | LED Cinema Display | iPhone 4 | iPad 2

schweb is offline
Security alert: New Trojan Horse apps said to attack the Mac

Security alert: New Trojan Horse apps said to attack the Mac

Quote:
Some security mavens have long theorized that as the Mac becomes more popular, we'd start to see malware that would start targeting the platform. Sure enough, this morning's crop of email blasts from PR firms included a few notices of trojans that are affecting Mac users.

First, from SecureMac, comes word of trojan.osx.boonana.a, which comes disguised as a link on social networking sites asking "Is this you in this video?" Clicking the link downloads and runs a Java applet that then installs further applications to modify system files and open the system to password-free access. The other malicious apps report back to command and control servers, as well as hijack user accounts to spread the trojan through email spam.

schweb | community leader
flickr facebook twitter tumblr google+ about.me

Mac-Forums: On Twitter | On Facebook | On Flickr

QUOTE Thanks
MYmacROX

 
MYmacROX's Avatar
 
Member Since: Mar 17, 2009
Posts: 3,635
MYmacROX is a name known to allMYmacROX is a name known to allMYmacROX is a name known to allMYmacROX is a name known to allMYmacROX is a name known to allMYmacROX is a name known to allMYmacROX is a name known to all
Mac Specs: 2008 15" MBP ML, 2012 21.5" iMac ML

MYmacROX is offline
Glad I don't belong to any social network sites.
But common sense will protect most users anyways.

Quote:
Intego reports that these trojans will give you fair warning, as the standard Mac OS X Java security alert (see below) will be displayed. If you're not expecting a Java applet to be running on your machine, click the Deny button and the applet will not run. If you want more information about what's happening, click the Show Details button, and you'll see that content with an untrusted root certificate wants to run on your computer. Clicking Deny will protect your machine from a possible malware infection. Allowing the Java applet to run will launch an installer that will be displayed on your machine. If you haven't launched an installer deliberately, then quit it immediately.

16GB iPhone 5, 64GB Wi-Fi only iPad 1st Gen.

Reminder: Please include your Mac's specs. This will make it much easier for the other members to assist you.
QUOTE Thanks
SweetCosmicPope

 
SweetCosmicPope's Avatar
 
Member Since: Dec 16, 2009
Location: Baytown, Tx
Posts: 373
SweetCosmicPope has a spectacular aura about
Mac Specs: Late 2009 Macbook Pro 2.26, 160gb HD, 2gb RAM, OSX 10.6; Emac 1.42ghz 80gb HD 2gb RAM OSX 10.5

SweetCosmicPope is offline
Can't be said enough, kids: If you don't know what it is, then don't download it.

An ounce of prevention equals a pound of cure!

"That's Peter Graves scat! I'd know it anywhere!"
QUOTE Thanks
schweb

 
schweb's Avatar
 
Member Since: Oct 27, 2002
Location: Cleveland, Ohio
Posts: 13,198
schweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond repute
Mac Specs: MacBook Pro | LED Cinema Display | iPhone 4 | iPad 2

schweb is offline
Good thing Apple is getting rid of Java in 10.7.

schweb | community leader
flickr facebook twitter tumblr google+ about.me

Mac-Forums: On Twitter | On Facebook | On Flickr

QUOTE Thanks
schweb

 
schweb's Avatar
 
Member Since: Oct 27, 2002
Location: Cleveland, Ohio
Posts: 13,198
schweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond repute
Mac Specs: MacBook Pro | LED Cinema Display | iPhone 4 | iPad 2

schweb is offline
Many member ask the question about viruses and malware on the Mac and in addition to using the search function at the top of the forum, you'll find almost all your answers here:

Official Antivirus and Firewall FAQ

schweb | community leader
flickr facebook twitter tumblr google+ about.me

Mac-Forums: On Twitter | On Facebook | On Flickr

QUOTE Thanks
iWhat

 
iWhat's Avatar
 
Member Since: Nov 11, 2004
Location: Toledo, Ohio
Posts: 5,736
iWhat has a reputation beyond reputeiWhat has a reputation beyond reputeiWhat has a reputation beyond reputeiWhat has a reputation beyond reputeiWhat has a reputation beyond reputeiWhat has a reputation beyond reputeiWhat has a reputation beyond reputeiWhat has a reputation beyond reputeiWhat has a reputation beyond reputeiWhat has a reputation beyond reputeiWhat has a reputation beyond repute
Mac Specs: Macbook, iMac G5, iPad, iPhone 4, iPod (MANY)!

iWhat is offline
Quote:
which comes disguised as a link on social networking sites asking "Is this you in this video?"
Glad I never go outside my house then, I totally just saved myself from that trojan.
QUOTE Thanks
Chris H.

 
Chris H.'s Avatar
 
Member Since: Oct 03, 2009
Location: Rio Rancho, NM
Posts: 2,606
Chris H. is a jewel in the roughChris H. is a jewel in the rough
Mac Specs: mid 2011 Mac mini - 10.10.1

Chris H. is offline
I'm familiar with how Facebook and Twitter run feature-wise. If there is a link that says that, ha, I am not clicking on it.

 iPad mini 1st gen - iOS 8.1.2
 iPod touch 5th gen - iOS 8.1.2
 Mac mini Server M10 - OS X 10.10.1
 MacBook Uni L09 - OS X 10.10.1
QUOTE Thanks
bobtomay

 
bobtomay's Avatar
 
Member Since: Dec 22, 2006
Location: Texas, where else?
Posts: 25,191
bobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond reputebobtomay has a reputation beyond repute
Mac Specs: 15" MBP 2.33 C2D 256 4GB, MBA 13" i7 1.8, MB 2.0 2GB, Nano 4th, 3GS, iPad 1

bobtomay is offline
Good heads up.

I cannot be held responsible for the things that come out of my mouth.
In the Windows world, most everything folks don't understand is called a virus.
QUOTE Thanks
god0fgod

 
god0fgod's Avatar
 
Member Since: Jun 24, 2008
Posts: 196
god0fgod is an unknown at this point
Mac Specs: Macbook White 2.13Ghz 160GB 10.6.4 (Buggy Version :() Snow Leopard

god0fgod is offline
Quote:
Intego reports that these trojans will give you fair warning, as the standard Mac OS X Java security alert (see below) will be displayed.
This is therefore not a security risk as the user has full control. This is the same level of threat as other malicious executables such as those packaged in .app packages.

In Windows you only have to open your web browser, click on a particular link and your whole computer is full of crap. You never get warned about anything.

This is the real threat - Drive-by download - Wikipedia, the free encyclopedia

Being sensible can't stop that happening.
QUOTE Thanks
osxx

 
osxx's Avatar
 
Member Since: Jan 19, 2008
Location: houston texas
Posts: 4,680
osxx is a name known to allosxx is a name known to allosxx is a name known to allosxx is a name known to allosxx is a name known to allosxx is a name known to allosxx is a name known to all
Mac Specs: 09 MBP 8GB ram 500GB HD OS 10.9 32B iPad 4 32GB iPhone 5 iOs7 2TB TC Apple TV3

osxx is offline
I do not have Java enabled on mine just script.
QUOTE Thanks
zongamin

 
Member Since: Dec 17, 2007
Posts: 105
zongamin will become famous soon enough
Mac Specs: iMac 2.66 Ghz - 4Gig Ram - iPod 60gig Black - iPhone 3GS Black 32gig

zongamin is offline
god0fgod - What's the point in raising Windows issues here other than for petty point scoring?

The fact is that lots of malware is delivered in this method, and the users are the weak point in any system - once someone has decided to view a stupid video from an unknown source, they are unlikely to think twice about clicking 'Allow' when prompted.

I still think it is unlikely that many users will be bothered by this, but responding to a possible Mac threat by simply shouting 'Well Windows is worse!' doesn't achieve anything.

iMac 2.66 4GB Ram
iPod 5th Gen 60gig
iPhone 3GS 32gig
QUOTE Thanks
dtravis7

 
dtravis7's Avatar
 
Member Since: Jan 04, 2005
Location: Modesto, Ca.
Posts: 27,914
dtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond reputedtravis7 has a reputation beyond repute
Mac Specs: iMac 2.4 C2D 10.10.1, iMac 2.16 C2d 10.6.8, Macbook2007 10.8.4, Mac Mini 10.8.4, iPhone 3GS Note 8!!

dtravis7 is offline
Quote:
Originally Posted by zongamin View Post
god0fgod - What's the point in raising Windows issues here other than for petty point scoring?

The fact is that lots of malware is delivered in this method, and the users are the weak point in any system - once someone has decided to view a stupid video from an unknown source, they are unlikely to think twice about clicking 'Allow' when prompted.

I still think it is unlikely that many users will be bothered by this, but responding to a possible Mac threat by simply shouting 'Well Windows is worse!' doesn't achieve anything.
Actually I agree. Sure Windows has a lot more issues with Virus's and Malware, but that is not the point of this thread at all.

There is an article on OS News that shows that this is maybe being blown out of proportion a bit though, but users should always be careful anyway just in case.

http://www.osnews.com/story/23954/Ja...Mac_OS_X_Fails
QUOTE Thanks
schweb

 
schweb's Avatar
 
Member Since: Oct 27, 2002
Location: Cleveland, Ohio
Posts: 13,198
schweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond repute
Mac Specs: MacBook Pro | LED Cinema Display | iPhone 4 | iPad 2

schweb is offline
Quote:
Originally Posted by god0fgod View Post
This is therefore not a security risk as the user has full control. This is the same level of threat as other malicious executables such as those packaged in .app packages.
Huh? That's a ridiculous statement. Of course it's a threat because it's a phishing-type attack and most users are not smart enough unfortunately to not click on "accept" anytime a window pops up.

Quote:
In Windows you only have to open your web browser, click on a particular link and your whole computer is full of crap. You never get warned about anything.
This particular attack would also get a warning in Windows since it's java based and you'd need to approve the applet, but nice try.

Honestly, just an overall ignorant post filled with misinformation and poorly formed opinions.

schweb | community leader
flickr facebook twitter tumblr google+ about.me

Mac-Forums: On Twitter | On Facebook | On Flickr

QUOTE Thanks
god0fgod

 
god0fgod's Avatar
 
Member Since: Jun 24, 2008
Posts: 196
god0fgod is an unknown at this point
Mac Specs: Macbook White 2.13Ghz 160GB 10.6.4 (Buggy Version :() Snow Leopard

god0fgod is offline
"This particular attack would also get a warning in Windows since it's java based and you'd need to approve the applet, but nice try."

No, you don't understand anything that I was talking about.

And everyone here is being awfully rude.

I was pointing out that drive-by downloads don't happen on Macs but they do on Windows and nobody can prevent those. Even security software is rather rubbish at dealing with those unless you pay for very expensive ones.

I know this because of experience. I've browsed the web before doing nothing but viewing websites and on Windows I'd get stupid malware pop out of nowhere.
QUOTE Thanks
schweb

 
schweb's Avatar
 
Member Since: Oct 27, 2002
Location: Cleveland, Ohio
Posts: 13,198
schweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond reputeschweb has a reputation beyond repute
Mac Specs: MacBook Pro | LED Cinema Display | iPhone 4 | iPad 2

schweb is offline
Quote:
Originally Posted by god0fgod View Post
I was pointing out that drive-by downloads don't happen on Macs but they do on Windows and nobody can prevent those. Even security software is rather rubbish at dealing with those unless you pay for very expensive ones.
But that does't have anything to do with this particular threat or this thread. So if you want to discuss that, I suggest a new topic rather than causing confusion in this one.

schweb | community leader
flickr facebook twitter tumblr google+ about.me

Mac-Forums: On Twitter | On Facebook | On Flickr

QUOTE Thanks

Post Reply New Thread Subscribe


« Google founders wanted to hire Steve Jobs as company's first CEO | Microsoft rumored running iPad team »
Thread Tools

Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off
Forum Jump

Similar Threads
Thread
Thread Starter
Forum
Replies
Last Post
Usefull Mac Apps krondor83 OS X - Apps and Games 19 06-02-2009 02:32 PM
Running Windows on Mac rickmahmoud Running Windows (or anything else) on your Mac 7 02-17-2008 12:31 AM
Intego warns of first Mac OS X Trojan Horse Murlyn OS X - Operating System 38 04-15-2004 11:07 AM
Mac Users Get More ISP Choices schweb Apple Rumors and Reports 1 03-06-2003 11:57 AM

All times are GMT -4. The time now is 06:05 PM.

Powered by vBulletin
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
X

Welcome to Mac-Forums.com

Create your username to jump into the discussion!

New members like you have made this community the ultimate source for your Mac since 2003!


(4 digit year)

Already a member?