M
MacHeadCase
Guest
I just saw this article, A Worm for Your Apple which describes a worm being developed for Intel-based Macs and that will make it on the PowerPC chip-based Macs after it is tested.
-
This forum is for posting news stories or links from rumor sites. When you start a thread, please include a link to the site you're referencing.
THIS IS NOT A FORUM TO ASK "WHAT IF?" TYPE QUESTIONS.
THIS IS NOT A FORUM FOR ASKING QUESTIONS ABOUT HOW TO USE YOUR MAC OR SOFTWARE.
This is a NEWS and RUMORS forum as the name implies. If your thread is neither of those things, then please find the appropriate forum to ask your question.
If you don't have a link to a news story, do not post the thread here.
If you don't follow these rules, then your post may be deleted.
- Joined
- Jan 5, 2007
- Messages
- 1,480
- Reaction score
- 124
- Points
- 63
- Location
- Where the old Baker farm used to be.
- Your Mac's Specs
- Apple Black MacBook 2 GB RAM, 2.0 GHZ Intel Core 2 Duo Proecessor, 120 GB HD. 30 GB Black iPod Video
I'm a bit skeptical about the claim. It just seems too vague. It attacks an undisclosed vulnerability, that sounds a bit more like a rumor than a threat. I PRAY that it isn't true. The fact that it isn't coming from Mac-Rumors makes it a little more believable though.
OP
MacHeadCase
Guest
Yeah the article says that the cracker is waiting to get some money from an undisclosed source before he lets Apple know about it. Jeez! Ain't some people grand or what! 
- Joined
- Jan 5, 2007
- Messages
- 1,480
- Reaction score
- 124
- Points
- 63
- Location
- Where the old Baker farm used to be.
- Your Mac's Specs
- Apple Black MacBook 2 GB RAM, 2.0 GHZ Intel Core 2 Duo Proecessor, 120 GB HD. 30 GB Black iPod Video
I wish beskerming.com would have waited until the claim was more elaborated. I mean, I could say that there's an "undisclosed" virus, that will exploit an "undisclosed vulnerability" in Mac OSX, that will be able to find "certain" aspects of the user's personal information, and will present a "possible" threat to both Intel and PPC Macs. It's so vague that the claim can't be proven or disproven.
- Joined
- Dec 24, 2002
- Messages
- 12,637
- Reaction score
- 168
- Points
- 63
- Location
- Los Angeles, California
- Your Mac's Specs
- 14in MacBook Pro M1 Max 32GB 2TB
The thing i find interesting, is that if it works on OS X, then it should work on any flavor of Unix.
The other thing is what company would have 1500 OS X systems, other than a school?
The other thing is what company would have 1500 OS X systems, other than a school?
- Joined
- Mar 22, 2007
- Messages
- 1,463
- Reaction score
- 67
- Points
- 48
- Location
- UK
- Your Mac's Specs
- Lenovo Z560 Hackintosh -:- '06 iMac -:- iPod Touch 2ndGen
Presumably this pillar of human society will compile a Universal Binary, then...? Perhaps we should have a whip-round and get him a hobby.
OP
MacHeadCase
Guest
Yes that's another thing I found odd, that the programmer was testing it on 1500 Macs. Looks like the author wanted to give some details to show he/she knows who this terrific individual is but not enough to let on who the cracker is.
- Joined
- Apr 20, 2006
- Messages
- 2,255
- Reaction score
- 47
- Points
- 48
- Your Mac's Specs
- Al iMac 20" 2.4Ghz Intel Core 2 Duo
To be destructive a virus/worm needs to gain access to the computer preferably without the user's knowledge, then cause some sort of effect, become active on startup so rebooting doesn't eliminate it and then be able to spread and multiply to other machines, again preferably without the user's knowledge. And it must also be difficult for the OS manufacturer to patch against, or take a long period of time for them to plug the hole.
If someone can create an OS X worm, it needs to fulfill as much of this criteria as possible. Of course, it is a lot easier to spread propaganda about what you may or may not have produced than actually have created a worm.
I'm not in the slightest bit worried.
If someone can create an OS X worm, it needs to fulfill as much of this criteria as possible. Of course, it is a lot easier to spread propaganda about what you may or may not have produced than actually have created a worm.
I'm not in the slightest bit worried.
- Joined
- Oct 27, 2006
- Messages
- 897
- Reaction score
- 31
- Points
- 28
Sounds as lame as the Airport exploit earlier this year. The only way to get the worm is to deliberately install the worm.
- Joined
- Jun 21, 2007
- Messages
- 83
- Reaction score
- 2
- Points
- 8
One thing I find interesting is that this exploit is supposed to be able to get root access, but, the question here is whether it can do this only after asking for permission (and relying on the user blindly saying OK) or if it can get root access without asking for validation.
I feel that Apple, in addition to patching this specific problem, needs to go through the OS X code to make sure that a privilege escalation (whether it is standard user-to-administrator or non-root-to-root) can never occur without asking the user for permission. This way, stuff like this worm would be shut down for those users who are savvy enough to look at what they are being asked to approve; unfortunately, those who enter their password without understanding what is being requested will always be vulnerable to something. Only better education will help the latter group.
I feel that Apple, in addition to patching this specific problem, needs to go through the OS X code to make sure that a privilege escalation (whether it is standard user-to-administrator or non-root-to-root) can never occur without asking the user for permission. This way, stuff like this worm would be shut down for those users who are savvy enough to look at what they are being asked to approve; unfortunately, those who enter their password without understanding what is being requested will always be vulnerable to something. Only better education will help the latter group.
- Joined
- Mar 22, 2007
- Messages
- 1,463
- Reaction score
- 67
- Points
- 48
- Location
- UK
- Your Mac's Specs
- Lenovo Z560 Hackintosh -:- '06 iMac -:- iPod Touch 2ndGen
I agree, even if one of those prerequisites happens, I doubt all of them can in one go. I'll play my BS card.
- Joined
- Dec 5, 2005
- Messages
- 116
- Reaction score
- 5
- Points
- 18
- Location
- New York City
- Your Mac's Specs
- 17 " iMac Core2Duo, 2GHz Processor, 1 Gig of RAM, Mac OS X 10.5.3
OP
MacHeadCase
Guest
Yeah right before dinner, I was going to post that stupendous turn of events and then my ISP went kaput for the rest of the night.
Looks like he/she couldn't take the pressure of being unpopular. What a bloody moron...
Looks like he/she couldn't take the pressure of being unpopular. What a bloody moron...
- Joined
- Jan 4, 2005
- Messages
- 30,133
- Reaction score
- 703
- Points
- 113
- Location
- Modesto, Ca.
- Your Mac's Specs
- MacMini M-1 MacOS Monterey, iMac 2010 27"Quad I7 , MBPLate2011, iPad Pro10.5", iPhoneSE
- Joined
- Jun 30, 2007
- Messages
- 9
- Reaction score
- 0
- Points
- 1
- Location
- ohio,cleveland
If that is a real worm that gonna suck because the reason why i switched from windows is ,as u all guessed , thats right SECURITY.
- Joined
- May 31, 2007
- Messages
- 926
- Reaction score
- 37
- Points
- 28
- Location
- Ontario, Canada.
- Your Mac's Specs
- Macbook(W) 2GHz, 80GB HD, 1G RAM, Windows XP
even if someone makes a worm, that's one to one billion, thereby making mac's still much more secure. it's only due time until someone succeeds in making a mac virus.
- Joined
- Dec 20, 2006
- Messages
- 27,042
- Reaction score
- 812
- Points
- 113
- Location
- Lake Mary, Florida
- Your Mac's Specs
- 14" MacBook Pro M1 Pro, 16GB RAM, 1TB SSD
I don't know about that. I thought the vulnerability was supposedly found within mDNSresponder which is part of Bonjour. Does Apple have a Bonjour service for other UNIX variants?
Either way, I think these claims are total bunk. So, any anonymous person claims to have discovered an exploit and designed a worm in a "lab" environment. He or she won't detail the nature of the exploit, nor will they disclose their identity (and if it's just to prove that the hole exists and not to write or release malicious code, what do they have to worry about?). Then, when called on the carpet, they rip their page down and go silent. Does anyone else find this fishy?
- Joined
- Jul 18, 2006
- Messages
- 238
- Reaction score
- 6
- Points
- 18
- Your Mac's Specs
- iMac 17" Intel Core Duo, 2 GB RAM + 20" ACD
Yes. I don't believe it for a second.
Shop Amazon
We are a participant in the Amazon Services LLC Associates Program, an affiliate program designed to provide a means for us to earn fees by linking to Amazon and affiliated sites.