[ insider_reports_insider ]
Macs Victimized By Naughty Video Trojan
David Utter
Staff Writer
2007-11-01
 Insider Reports RSS Feed
The Mac platform received unwanted attention from a group of professional malware writers, who crafted a Trojan and placed it on several pornography sites.
 | | Macs Victimized By Naughty Video Trojan |  |
The unwary web surfer, in search of a vicarious sexual thrill, may end up getting his Mac an unwanted dose of a computer disease.
Security firm Intego discovered the Trojan on several sites. It purportedly offers the victim a video codec to play a video that QuickTime cannot handle.
Installing the fake codec places the Trojan on the Mac. Intego said the installation requires the Mac's admin password. Providing that gives the Trojan root access on the computer.
Financial gain has driven the creation of this malware. Intego described what happens on a Mac infected by the attack:
This Trojan horse, a form of DNSChanger, uses a sophisticated method, via the scutil command, to change the Mac's DNS server (the server that is used to look up the correspondences between domain names and IP addresses for web sites and other Internet services).
When this new, malicious, DNS server is active, it hijacks some web requests, leading users to phishing web sites (for sites such as Ebay, PayPal and some banks), or simply to web pages displaying ads for other pornographic web sites.
In the first case, users may think they are on legitimate sites and enter a user name and password, a credit card, or an account number, which will then be hijacked. In the latter case, it seems that this is being done solely to generate ad revenue.
Alex Eckelberry of Sunbelt Software has no problem scolding the Mac faithful over their long-time disdain of the Windows world due to malware problems that haven't been seen on the Mac side:
Is this just childlike schadenfreude on my part? You tell me. For years, we've heard snorts of derision from Mac users about the poor security of PCs.
Yet that supercilious attitude (as we know from our history books) is patently dangerous, because it creates a false sense of security. Now, Mac users will need to be a bit more careful out there (‘cause when Joey wants his pr0n, he wants it now!).
On the heels of the poorly-secured release of Leopard, we now find that there is no perfect protection against human stupidity social engineering, even for a Mac user.
The lesson of this attack for Mac users will be one Windows users have known for a while: don't engage in risky behavior, and use protection.
Apple, Mac, Trojan, Intego, Video, Malware
About the Author:
David Utter is a business and technology writer for SecurityProNews and WebProNews.
More insider_reports_insider Articles
Insider Reports RSS Feed
|
|
iEntry 10th Anniversary
RSS
Archive
