New Mac Virus is a Worm, But Can't Pose Threat Due to Amateur Mistake
May 7, 2009 9:06 AM
comment(s) - last by
The recent worm/trojan attacking Apple's Macs is relatively harmless due to its inability to complete its email attack. However, its a sign that Apple users may have to stock up for some future de-worming.
Virus proves insignificant, but may be a sign of things to come
A trojan virus
attacking Apple computers
, transmitted via pirated iWork software, gained significant attention as it was one of the first viruses to strike the OS X platform. OS X, the operating system of choice for Mac computers, has enjoyed relative safety from OS-tailored attacks thanks to its small market share, though it has become increasingly vulnerable to
cross-platform application-level exploits
The new virus, written in RealBasic, is an
ambitious, but decidedly amateurish
effort. Comments in the code state that the virus's goal is to create the "First Mac OS X Botnet." The virus also tries to steal email addresses, record keystrokes, and transmit itself via attach hard drives.
Some news outlets reported the virus, dubbed Tored, was a worm; others reported it was a trojan. It turns out it's both -- or at least tries to be. Both the email theft and replication to attached drives mimic viral worms like the
. However, the SMTP server that the virus tries to forward itself via is currently inactive. Thus it is currently limited to trojan-style attacks, via the malware-bundled software.
A trojan typically refers to a virus that users unwittingly download and install. A worm, on the other hand, can transmit itself over a network, via email or remote login. Transmission via infected USB is a gray area -- some refer to such viruses as worms, others, trojans.
The virus is perhaps the first "e-mail aware" trojan to attack Macs. While there have been several Apple-specific trojans over the last few years, this appears to be the first virus to
to behave as a worm as well. This behavior represents a new kind of attack to the Mac platform, even if this particular attack was poorly executed.
States Graham Cluley, senior technology consultant at Sophos, "A lot of Mac fans think that for something to be a worm then it requires no user interaction to spread. Although there are some Windows worms like that (for instance, Sasser and Code Red), many of the pieces of malware that we consider to be worms (for instance, The Love Bug, Anna Kournikova, etc.) did require user interaction and spread quite successfully."
Perhaps the most amusing aspect of the new virus was that its would-be emails featured this message, in hopes of targeting Macs -- "For Mac OS X ! :(If you are not on Mac please transfer this mail to a Mac and sorry for our fault :)"
Mr. Cluley states, "The good news is that Tored doesn't appear to be a very serious threat, and no-one is likely to encounter it. A much more serious threat for Mac users are the Trojans that are being planted on Websites posing as an attractive download.”
In January, trojans aboard pirated copies of iWork ‘09 and the Mac version of Adobe Photoshop CS4 infected over 5,000 computers. While lacking the ability to spread autonomously, they formed what is believed to be the first Mac botnet.
This article is over a month old, voting and posting comments is disabled
To kill any of the Mac vs. PC which is better....
5/7/2009 5:20:42 PM
Simply look at the marketshare and look at all the hacking conventions...OS X got hacked faster than Vista...Safari faster than IE and Chrome...oh and lets not forget the mobile phone market that someone evidently had a 0day exploit at pwn2own and wouldnt give it up for the few thousand they were going to give him to...crosshairs have shifted as the economy has changed...the coders are now realizing those with Macs have more money than most of the M$ crowd...just give it a few months and there will be a nice infectious worm out there that nobody will notice until it's way too late...
RE: To kill any of the Mac vs. PC which is better....
5/7/2009 5:33:43 PM
Let's also not forget that the majority of new Apple users are the ones who got fed up with viruses in the first place. This is a prime target. The same idiots who couldn't figure out how to avoid clicking on pop-ups and banner ads that said "FREE!!!" went to Apple. But they still never learned how to stop clicking on banner ads and pop-ups. I give Apples theoretical security lead 2 years tops.
"So if you want to save the planet, feel free to drive your Hummer. Just avoid the drive thru line at McDonalds." -- Michael Asher
Apple Gets Its Own Trojan Viruses for the First Time
April 23, 2009, 9:54 AM
Ten Million+ Infections Strong, Conficker Worm Prepares for April 1 Update
March 27, 2009, 9:25 AM
MacBooks Get Hacked Within 60 Seconds
August 4, 2006, 12:46 PM
Breaking Bad: How to Crash Google's Chrome Browser With Just 8 Characters
September 23, 2015, 11:08 AM
Quick Note: Amazon UK Offers £10 Back on Any Order £50 or Over
August 3, 2015, 12:05 PM
Editorial: Reddit Allows Itself to be Hijacked as a Hate Platform For Racist Bigots
July 21, 2015, 6:32 PM
Mozilla and Facebook to Adobe: It's Time to Kill Flash
July 20, 2015, 6:30 PM
Instagram Bans "Curvy" From Hashtag Searches, Provokes "Plus Sized" Outrage
July 16, 2015, 1:20 PM
Mozilla Promise Punctual Windows 10 Firefox Release, Teases at iOS Arrival
July 7, 2015, 3:08 PM
Most Popular Articles
Why the U.S. Won't be Able to Ban Google's New Huawei Marshmallow Flagship Phone
October 3, 2015, 5:27 PM
Microsoft Band 2 Stays Focused on Fitness, Debuts Oct. 30, Priced at $249
October 6, 2015, 9:16 PM
Microsoft's HD-500 ("Display Dock"), the Magic Sauce Behind Continuum
October 6, 2015, 5:30 PM
Apple's First Fixes to iOS 9 Land w/ iOS 9.0.1 Release
September 23, 2015, 6:11 PM
Microsoft Lumia 950 and 950 XL Finally Launch, w/ Windows 10, Liquid Cooling
October 6, 2015, 3:35 PM
Latest Blog Posts
Sceptre Airs 27", 120 Hz. 1080p Monitor/HDTV w/ 5 ms Response Time for $220
Dec 3, 2014, 10:32 PM
Costco Gives Employees Thanksgiving Off; Wal-Mart Leads "Black Thursday" Charge
Oct 29, 2014, 9:57 PM
"Bear Selfies" Fad Could Turn Deadly, Warn Nevada Wildlife Officials
Oct 28, 2014, 12:00 PM
The Surface Mini That Was Never Released Gets "Hands On" Treatment
Sep 26, 2014, 8:22 AM
ISIS Imposes Ban on Teaching Evolution in Iraq
Sep 17, 2014, 5:22 PM
More Blog Posts
Copyright 2015 DailyTech LLC. -
Terms, Conditions & Privacy Information