backtop


Print 117 comment(s) - last by JKflipflop98.. on Nov 6 at 8:52 PM


Mac users are now at risky of getting a nasty virus.  (Source: Listmania)

If it you approve, you are a sad noob, and your Mac is infected.  (Source: Intego)
Mac: Hi PC, I'm not feeling so hot today... PC: Oh, I know ALL about that. I think you have a virus!

Security experts by and large agree that security via obscurity is not a wise model for protecting customers over the long term.  That's exactly the model Apple has employed successfully for some time now.  However, its luck finally appears to be running short.

Hot on the heels of a newly discovered iOS exploit that allows access to locked iPhones, new reports [1] [2] from security research firms 
SecureFirm and Intego reveals that a new trojan is targeting Mac users using a vulnerability in OS X's Java player.

According to the 
Intego report the new malware, trojan.osx.boonana.a, is really a reworked version of the Koobface malware, which has attacked Windows in the past.  The malware acts as a worm when it spreads and as a trojan when it is infecting your computer.

Users may encounter the worm via links posted on Facebook, MySpace, Twitter, and other websites.  When clicking the link, the applet attempts to run.  Users can stop the infection before it starts by denying the applet permission to run when OS X's Java player pops up a dialogue.

If they allow the applet to run, they may get another warning if they have a Mac antispyware program like VirusBarrier X6’s Anti-Spyware installed.  If they don't get the warning, or choose to disregard it, the applet will attempt to make a connection with a remote server and installs a rootkit, backdoor, command and control, and other elements.  These files are copied to an invisible folder -- .jnana -- in the user's home directory.

If the virus is allowed to carry out its infection process, the unsuspecting Mac user may find themselves part of a botnet.  When they log on social networks, the virus will post links to spread the infection.  It may also send spam e-mail via their logged-in accounts

Other variants of this virus target Windows and Linux, making it a rare true cross-platform virus.  All these viruses share the fact that they use the Java player as a route of attack.  According to 
Intego, other OS X-specific versions of the virus have shown up, but most are broken or try to connect to offline servers.

The malware could become potentially more dangerous in the future if it is able to eliminate the warnings from the Java player and/or change the name/location of the infection directory, making it hard for virus removal software to find it.

While it does not appear that this virus takes advantage of any unique flaws in Apple's version of Java, some security experts say that Apple's Java player may have more vulnerabilities than Window's.  That's because Apple makes its own Java player, which according to an e-mailreportedly attributed to Apple Chief Executive Steve Jobs, is always a version behind the official Linux/Windows builds from Sun and Oracle.

Apple is reportedly considering ditching its Java player in future versions of OS X, such as OS X 10.7 "Lion".  Similarly it's considering rejecting Flash, another multimedia web technology.  Ultimately these efforts may eliminate some routes of attack, but now that Apple is being targeted it must realize -- there is 
always a back door.

 



Comments     Threshold


This article is over a month old, voting and posting comments is disabled

RE: More pleasing fantasies for the truly insecure
By Luticus on 11/1/2010 8:29:58 AM , Rating: 2
quote:
Actually, it's a user exploit. In fact, it doesn't even work correctly on many Macs. It doesn't do anything unless the user allows it and enters an administrator password so it can install. It's classic social engineering. A trojan that tries to trick the user into installing it. Nothing more, nothing less.
I'm not arguing that this isn't a "user exploit", my point is that these types of viruses will only get worse from here on... if you want to stay in a sugar coated bubble, or frolic in a meadow of denial... fine.

quote:
Jobs isn't choosing for you, they're just choosing not to install it for you. You're free to install Flash and Java yourself if you choose. No one is blocking you from installing it. Pure FUD.
See ipod, iphone, ipad... now there's talk of a mac store opening up for the mac computers. If they go completely to a mac store for software distribution on the mac then how long until you "can't" install it. As i stated above, this is a growing trend with apple and while this might not ever become a reality i certainly wouldn't put it passed them.

quote:
MS Windows doesn't install either one for you, you have to go install it yourself. Linux doesn't install flash for you, and may or may not install Java.
i know...

quote:
You're welcome to hate Apple/Jobs, just quit spouting inaccurate info and FUD.
i do not hate Apple or Jobs. I don't like the way that apple does business sometimes and i don't particularly care for the amount of control i feel apple/jobs have over what i can and can't do with the computer/devices i paid for. seeing as this exact thing has been a reoccurring theme in just about every apple/mac article I've read in the last year or two i really don't think this statement is too far off. None of my "information" is inaccurate. Sure sometimes i say some sarcastic things just to get a laugh or make a point (and usually i'll note when i'm doing it), but my information is always accurate. I'm working on a mac right now. I know mac pretty well so you cannot use the "you're uninformed and just a hater" argument against me. I use apple and i still prefer windows/linux, if this bothers you... examine your life and why you care. I'm just poking a little bit of fun at all the smug mac people who think macs are protected by the force and that all windows users are stupid for using windows. 'nuff said!


By gstrickler on 11/1/2010 12:52:40 PM , Rating: 2
quote:
See ipod, iphone, ipad... now there's talk of a mac store opening up for the mac computers. If they go completely to a mac store for software distribution on the mac then how long until you "can't" install it. As i stated above, this is a growing trend with apple and while this might not ever become a reality i certainly wouldn't put it passed them.
Different market, different context. They won't lock down the Mac the way they have iOS devices. They're just adding an app store that makes it easier to purchase, install, and upgrade software that is available via that app store. I certainly don't have any inside info, but locking down the Mac would kill that market, and I'm sure Jobs knows that.
quote:
my point is that these types of viruses will only get worse from here on...
Agreed.
quote:
if you want to stay in a sugar coated bubble, or frolic in a meadow of denial... fine.
Not me, I've found and reporte a number of security issues for Mac, Windows, and various other products over the years.
quote:
I don't like the way that apple does business sometimes and i don't particularly care for the amount of control i feel apple/jobs have over what i can and can't do with the computer/devices i paid for. seeing as this exact thing has been a reoccurring theme in just about every apple/mac article I've read in the last year or two i really don't think this statement is too far off.
I use Macs, Windows, and Linux/Unix also, been using and supporting all of those since the mid 80's. I didn't like the way SCO did business (good riddance), I don't like some of Oracle's practices, I don't like some of Apple's practices, but I dislike MS business practices even more. It's personal preference, nothing objectively significantly better or worse as far as business practices go. Still, I choose the best tool for the job, sometimes that's an Oracle database, often it's an MS product, but for me personally, it's usually a Mac. For some things I prefer Windows, but since my goal is to accomplish work, I prefer the system that requires the least time supporting the system and helps me get my work done faster with the least hassle. For me, that is generally a Mac, so I prefer a Mac. Everyone has different preferences and different tasks to accomplish, so not everyone will be best served by any one system.

I'm glad Apple switch to x86 based systems 4 years ago, it makes it much easier to run a Mac with Windows in a VM, so I have both handy in one machine. For some things, I use both at once tanking advantage of the strengths of each OS and the software for each to accomplish a task more easily than I could on either system separately.

BTW, Apple recommends AV software for Mac OS X, and they have for quite a few years. In fact, they ship ClamAV on OS X Server. They don't "push" or promote it in "ovbious" ways, but it's on their web site. The choice to not prominently promote using AV software is a marketing decision, after all, it might be tough to promote the use of AV software while you are also (accurately for now) pointing out that Mac users don't have to deal with as many AV/malware issues that Windows users do. Yes, most of the difference is due to market share differences, but it doesn't change that fact that in practice, Windows users will be attacked at least 10x more, which means that a Mac user will have much less of that to deal with. Not an inherent advantage of the OS (at least not since Vista shipped using UAC), just an inherent advantage of having a much smaller installed base.


RE: More pleasing fantasies for the truly insecure
By Luticus on 11/2/2010 8:50:14 AM , Rating: 2
For the most part i completely agree with everything you've said here.

quote:
They won't lock down the Mac the way they have iOS devices.
This could be true and i certainly hope this is the case.

quote:
nothing objectively significantly better or worse as far as business practices go.
I agree this is all preference, for me i feel that ms is the winner here because ms attacked other business while apple deceives customers, and limits customers use of their computers. i want a machine that will let me do whatever i want with it, anything less than that is no good to me. For the most part windows lets me do this, so 99.9% of the time I'll use windows and the rest of the time I'll use Linux/Mac.

quote:
I'm glad Apple switch to x86 based systems 4 years ago
As am i, best move ever!

quote:
Apple recommends AV software for Mac OS X
I know, this is something else i don't like about apple. They recommend anti-virus but they do so quietly so that they save face. They don't care if their customers get viruses as long as they are still seen as the clean "cool" sterile environment. Yet if customers do get viruses they can point out "see we've recommended anti-virus for years!" Making users sign agreements not to talk about problems they've had with their platform.... yea I'm not buying into that. If you use mac then great, i hope you enjoy it and never have a problem. If you understand that windows has it's place and that people are morons for choosing it then ever better! When it comes down to it, that's really all i want. I don't get why people have to be smug about what operating system their using... i just don't get it.


RE: More pleasing fantasies for the truly insecure
By Luticus on 11/2/2010 8:55:12 AM , Rating: 2
quote:
If you understand that windows has it's place and that people are morons for choosing it then ever better!

This should read: If you understand that windows has it's place and that people are NOT morons for choosing it then ever better! :-)


By gstrickler on 11/3/2010 11:08:35 PM , Rating: 2
quote:
This should read: If you understand that windows has it's place and that people are NOT morons for choosing it then ever better! :-)
I liked the typo better. :)


“So far we have not seen a single Android device that does not infringe on our patents." -- Microsoft General Counsel Brad Smith














botimage
Copyright 2014 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki