Mac trojan hits the streets
It’s a sad day when a Mac virus starts making the rounds, but it just goes to show that no one is safe from the prying eyes the internet underbelly. The virus itself appears to be originating from several pornography sites. The sites in question feature a number of still photos that appear to link to downloadable videos. Once clicked, the user is led to a page with the following prompt:
Quicktime Player is unable to play movie file.
Please click here to download new version of codec.
Clicking the provided link begins DMG file download. Once the DMG file is executed the Trojan installs, allowing for external Root access. Yikes! To be fair, anyone frequenting such sites should know better than to download shady files, but if you’re a Mac user with a penchant for porn, use protection. Sorry.
So, what’s the safest operating system to download porn in? LOL!! And don’t say “…just don’t do it!” cos we know people are doing it.
Nothing to do with this story per say but this site has gotten so commercial! who are you writing for? the reader or AT&T? I am done with this site… Goodbye
Now see here.
http://dmiessler.com/blogarchive/new-os-x-trojan-in-the-wild
Once the DMG file is executed the Trojan installs, allowing for external Root access
The file doesn’t execute until the user enters his password, Its not automatic. The user has to do a few things to get this Trojan.
tell em why you mad james lol… and stop downloading trailers stingy bastards that’s what happens lol get the torrents or complete download from other places..
argonn your right that someone would have to put in their password to get root access, but their are people who would do it.
nothing is really secure so no surprise here.
james, why so angry? BG gets whatever devices he can and his minions merely troll the internet for stories. doubt there is an agenda.
Ok fine I’m back, but BG used to go much better stories. Wheres the Blackberry 9130 etc. We shouldve seen these items already!!!
C’mon, you’ve gotta appreciate the irony: Going to a porn site and getting a virus. Let’s face it, sex just isn’t safe anymore.
——-
BTW, James, your exit and re-entrance to BGR was a little melodramatic, no?
HA! So much for virusless. There ya go Stve, put that in your ass and bone it.
but…but…but it’s a Mac, they can’t get viruses like micro$oft… this must have been photoshoped
This is not a virus. Do you actually know the difference between a virus and a Trojan.
And for you dopes who say the Mac is the same as a PC now, how does 1 Trojan, which a user has to allow onto the system (yes, there are naive people on Macs too, so it has happened already) equate to an OS that has 144,000 viruses and trojans?
STD’s
Uh… It’s a trojan, not a virus. Here’s a good quote:
Unlike many Windows-based attacks, the Trojan doesn’t exploit a hole in Apple’s software, and it can’t install itself. Instead, it relies on social engineering, tricking users into downloading the codec, and requiring that they type in the administrator password to install it.
In other words, you have to be stupid to get it.
On the other hand, you have to be stupid to buy Windows, so maybe it IS the same as a Windows virus in a way.
I got news for you: I got this thing, or at least part of it, on my Mac. It did NOT require my permission to download–I just happened to see the download window pop up in the background–bypassing my browser’s asking my permission to download. It did NOT require my permission or password entry to install; although I clicked ‘cancel’ in the download window as soon as I saw it appear and interrupted the download, we think it’s been using my computer as a bot for months now. It was identified as a PC virus a few months ago by Norton and falsely believed taken care of, but power issues continued and it won’t even let you force quit the Finder or Office while it’s doing its business. Maybe it’s a different version–I don’t believe I’ve been commandeered to malicious sites, but then I don’t visit eBay or paypal. Even a clean doc offload and wipe of my hard drive and reinstall of the OS software and updates revealed that something was still buried in my docs when we tried to load them back on. Still not sure we’re on top of it. But whatever it is, it’s one nasty piece of malware.