Print 88 comment(s) - last by overzealot.. on Mar 6 at 1:06 AM

The new Apple Trojan "BlackHoleRat" sneaks itself in through OS X users' open back doors. It is currently in "beta" and its capabilities are being expanded.  (Source: Sophos Labs)

One of its capabilities is to pop up fake administrator password request windows as a phishing attempt  (Source: Sophos Labs)

The trojan even delivers humorous messages to users in current form.  (Source: Sophos Labs)

  (Source: Chris Moncus)
Malicious program still appears to be in "beta" form, unlike its Windows counterpart

Security researchers at Sophos Labs have discovered a naughty new trojan that's in the process of beta testing attack capabilities against the growing population of Mac users.

The trojan exploits open back doors in OS X to gain a good deal of access to the system.  It can be transmitted through a variety of vectors, including torrent files or seemingly legitimate download programs.  It could also be, in the future, delivered via the exploitation of browser flaws to perform "drive by downloads".

Once inside, the Trojan gets down to business, allowing the attacker to have their way with their Apple victim.  The attacker can plant text files on the desktop, force URLs to open, run shell commands, and pop up fake password windows in a phishing attempt.

They can also force the users machine shutdown or reboot. When a reboot is forced an amusing message pops up, informing:

I am a Trojan Horse, so i have infected your Mac Computer. I know, most people think Macs can't be infected, but look, you ARE Infected! I have full controll over your Computer and i can do everything I want, and you can do nothing to prevent it.

So, Im a very new Virus, under Development, so there will be much more functions when im finished.

The virus is a port of darkComent, a remote access trojan for Windows.  The new OS X versions has been dubbed "OSX/MusMinim-A", or "MusMinim" for short, by Sophos.  Its creators, however, call it BlackHoleRat.

Sophos believes its creators will likely expand its functionality now that the concept has been proven.  It will likely be loaded with far nastier tricks in the future.

Despite its obscurity, Apple's poor security track record virtually ensures that Apple OS X users back doors will be open in years to come.  And increasingly they may find malicious individuals looking to poke and prod their way inside.

Still Apple has been quite quiet in its direction to users to get an anti-virus program.  To this day it still tries to portray Windows as "virus-laden" and OS X as virus-free.  As a result of this ostrich-in-the-sand attitude, some users may fall victim of unwanted backdoor intrusion.

Apple has yet to comment on its users' latest infection or hint at how widespread it might be.

Comments     Threshold

This article is over a month old, voting and posting comments is disabled

RE: Awaken the Blissfully Ignorant
By Tony Swash on 2/28/2011 7:39:12 PM , Rating: -1
Seriously, it gets to the point where Macolytes are religiously opposed to antivirus, because using antivirus is like publicly admitting that the Mac propaganda is wrong. And like religious groups, it'll probably take Apple a couple of centuries to admit their mistakes. Meanwhile, people will continue to ignore the problem even if they themselves fall victim to the vicious problem that they've steadfastly pretended didn't exist.

Sigh - this same old tired shite. Security companies whipping up FUD to try to to expand their market, understandable especially given that the mac segment is outgrowing the PC market by a healthy margin.

I repeat what I always say to to this sort of guff.

Show-me-a-real-world-example-of-a-Mac-actually-gett ing-infected.

I know this sort of non-news reports gets you Windows fanboys (or as Mac users like to think of you 'Windows Stockholm Syndrome' sufferers) in heat but it doesn't change the sad, unavoidable, dreary truth: 99.99% of infections happens to Windows PCs. That's the undeniable truth and no amount of puff and splutter will change it. That's the truth for good reasons. Check it out.,00.shtml

RE: Awaken the Blissfully Ignorant
By sprockkets on 2/28/2011 7:58:57 PM , Rating: 5


where is that wide scale infection of vista or win7 devices?

RE: Awaken the Blissfully Ignorant
By themaster08 on 3/1/2011 3:51:41 AM , Rating: 4
Expect no response from Mr. Swash as he completely disregards the link you have posted, as he turns away stroking the back of his Mac, assuring it won't get any viruses.

I'm actually surprised that Apple have kept it on their support forums.

By struzzin20 on 3/1/2011 4:06:33 AM , Rating: 2

I just wish they would open up and tell us how much Apple is paying them to post on here!

Well Tony ?

*This message sent from a secure Windows 7 PC*

RE: Awaken the Blissfully Ignorant
By Tony Swash on 3/1/11, Rating: -1
RE: Awaken the Blissfully Ignorant
By chick0n on 3/1/11, Rating: -1
RE: Awaken the Blissfully Ignorant
By Tony Swash on 3/1/11, Rating: -1
RE: Awaken the Blissfully Ignorant
By ClownPuncher on 3/1/2011 3:33:22 PM , Rating: 2
Do you have some form of retardation or something?

RE: Awaken the Blissfully Ignorant
By Tony Swash on 3/1/11, Rating: -1
RE: Awaken the Blissfully Ignorant
By ClownPuncher on 3/1/2011 7:23:48 PM , Rating: 2
Because most malware was created for Windows. I think that is pretty clear.

If the amount of malware is what you hinge your OS purchase on, then go for it. People who run windows can just use MSE and not open links in spam email. It's pretty simple to keep your computer clean, and you no longer need to be a "guru".

RE: Awaken the Blissfully Ignorant
By Alexstarfire on 3/1/2011 7:51:27 PM , Rating: 2
I'd agree, but people in general seem to be stupid when it comes to the unfamiliar. That might seem odd to say considering computers have been around for so long, but to the vast majority of people they are still very unfamiliar with most things on a computer.

I've literally told people to their face to NOT do something just to watch them do it like 30 seconds later. I can't get more clear/direct than that. When most people use a computer it's like them having unprotected sex with a stranger even when a condom is sitting on the night stand. Sure, some of the time you might be ok, but just that one bad sex partner and it's all over.

By ClownPuncher on 3/2/2011 7:53:55 PM , Rating: 2
That is actually a good thing. People will either learn from their mistakes, or be doomed to fail. Life.

RE: Awaken the Blissfully Ignorant
By sprockkets on 3/1/2011 8:06:24 PM , Rating: 2
You asked:

Show-me-a-real-world-example-of-a-Mac-actually-gett ing-infected.

And I provided. So instead of changing the goal posts or some other bull sh it, admit you were wrong then shut the fu ck up.

RE: Awaken the Blissfully Ignorant
By Tony Swash on 3/2/11, Rating: -1
By sprockkets on 3/2/2011 4:47:47 PM , Rating: 2
You offer up a two year old forum thread containing exactly six comments. The only comment of substance in the thread is the opening one that says 'I clicked on a Goggle link and it didn't go where I expected'. There then follows five comments offering advice and some speculation about whether this might be Trojan related. And that's it!!!

Reading comprehension fail. And no, I won't tell you why you are wrong; you can figure that out for yourself.

RE: Awaken the Blissfully Ignorant
By leuNam on 3/3/2011 12:17:30 PM , Rating: 1
mark you in time, when OS X will be full of viruses it be named Tony...

“And I don't know why [Apple is] acting like it’s superior. I don't even get it. What are they trying to say?” -- Bill Gates on the Mac ads

Most Popular Articles5 Cases for iPhone 7 and 7 iPhone Plus
September 18, 2016, 10:08 AM
Laptop or Tablet - Which Do You Prefer?
September 20, 2016, 6:32 AM
Update: Samsung Exchange Program Now in Progress
September 20, 2016, 5:30 AM
Smartphone Screen Protectors – What To Look For
September 21, 2016, 9:33 AM
Walmart may get "Robot Shopping Carts?"
September 17, 2016, 6:01 AM

Copyright 2016 DailyTech LLC. - RSS Feed | Advertise | About Us | Ethics | FAQ | Terms, Conditions & Privacy Information | Kristopher Kubicki