Mac Malware Spreads on Pirated Copies of iWork 09
source: http://news.yahoo.com/s/nf/20090123/bs_nf/64230;_ylt=AokPV1aMTQa86w8trkm6XxaDzdAF
-
-
- brad62
- added this
Who said Macs are immune to viruses? Some malware makers aim to bust that myth with a Trojan horse that's being downloaded across the Internet.
Mac security software firm Intego identified a Trojan on Wednesday that affects computers running Mac OS X. The malware was found on some pirated copies of Apple's new iWork 09 productivity suite on peer-to-peer sites. iWork is Apple's answer to Microsoft Office.
"The installer for the Trojan horse is launched as soon as a user begins the installation of iWork, following the installer's request of an administrator password," Intego said. "This software is installed as a start-up item (in /System/Library/StartupItems/iWorkServices, a location reserved normally for Apple start-up items), where it has read-write-execute permissions for root." In Mac OS X 10.5.1 or earlier, there will be no password request.
Foolish Behavior
Once installed, the virus, called OSX.Trojan.iServices.A, connects to a remote server, where a cybercriminal is alerted that the virus is installed. At that point, criminals can begin connecting to the infected Mac to perform various actions. The virus may also download additional data to an infected Mac.
Mac security software firm Intego identified a Trojan on Wednesday that affects computers running Mac OS X. The malware was found on some pirated copies of Apple's new iWork 09 productivity suite on peer-to-peer sites. iWork is Apple's answer to Microsoft Office.
"The installer for the Trojan horse is launched as soon as a user begins the installation of iWork, following the installer's request of an administrator password," Intego said. "This software is installed as a start-up item (in /System/Library/StartupItems/iWorkServices, a location reserved normally for Apple start-up items), where it has read-write-execute permissions for root." In Mac OS X 10.5.1 or earlier, there will be no password request.
Foolish Behavior
Once installed, the virus, called OSX.Trojan.iServices.A, connects to a remote server, where a cybercriminal is alerted that the virus is installed. At that point, criminals can begin connecting to the infected Mac to perform various actions. The virus may also download additional data to an infected Mac.
-
-
ejasun
-
-
No not mac`
- 3 years ago
-
ejasun
-
-
brad62
-
Noteworthy is the fact that although Apple is known for a virus-resistant platform today, in the 1980s and early 1990s the Mac was among the top platforms for spreading malicious code. That changed with the introduction of Windows 95 and the Internet. Security researchers recommend Mac users stay protected with security software.
- 3 years ago
-
brad62
