New Porn Trojan targets OS X -- BUT...

[theblue1]

Porn loving Mac users will have to consciously jump through a series of hoops in order to get infected with it -- but a new trojan horse malware is targeting users of OS X.

Quote:

Mac OS malware targets porn surfers

Posted by Tom Krazit


There's a new piece of malware out there targeting Mac users that takes advantage of the inclination to watch porn.


Intego, a Mac security software company, issued an alert Wednesday warning Mac users of the OSX.RSPlug.A malware, which it describes as a Trojan horse. Those of you familiar with mythology recognize the reference, and OSX.RSPlug.A disguises itself as a video codec that would ensure whatever porn video you just stumbled upon will play on your Mac.

But to get infected with the malware, you have to accept the invitation to download "new version of codec," open up the .dmg (disk image) file, click the installer.pkg file, and enter your administrator's password, according to Intego. Once infected, the malware changes your DNS settings to hijack Web traffic and redirect it to phishing sites or ads for porn. And you still won't get to watch the video.


If you're running Tiger, you might never realize how you were infected, but Leopard's Advanced Network preferences will at least let you recognize that the DNS servers have been changed. You'll be unable to change them back without going through a lengthy process detailed by Macworld's Rob Griffiths.

MORE: Mac OS malware targets porn surfers | One More Thing - CNET News.com


[cross posted at Harmony Central]

[s.d.finley]

Quote:

Originally Posted by theblue1

Porn loving Mac users will have to consciously jump through a series of hoops in order to get infected with it -- but a new trojan horse malware is targeting users of OS X.
MORE: Mac OS malware targets porn surfers | One More Thing - CNET News.com


[cross posted at Harmony Central]

Well, I only look at pictures, so I guess I'm in the clear!!

[Jbrax]

Theres also one just like that for Pc

[stag]

You both could disguise your happiness a little, could ya?

[Bryan Talbot]

Quote:

But to get infected with the malware, you have to accept the invitation to download "new version of codec," open up the .dmg (disk image) file, click the installer.pkg file, and enter your administrator's password

And who would be STUPID enough to do that???

Jesus, go rent something.

[severe]

I'm shaking in my boots.

Almost 10 years in Macintosh and I've never come across malware trouble of any kind. And I've seen more porn than you could shake a stick at.

...so to speak.

[Daniel Antix]

Quote:

Originally Posted by Jbrax

Theres also one just like that for Pc

there are probably a million for pc


i was going to say "that's what you get for using a mac" ... but you ruined it for me

[stag]

Quote:

Originally Posted by Bryan Talbot

And who would be STUPID enough to do that???

Jesus, go rent something.

A PC user?

[wildpark]

dude i watch yesterday this new video from a ssl studio

damn my mac seems too work slower since i got my hand on

[theblue1]

Quote:

Originally Posted by Bryan Talbot

And who would be STUPID enough to do that???

Jesus, go rent something.

No one -- you'd like to think.

But lots of PC users -- the overwhelming majority of whom not only know there are thousands of malwares, viruses, and trojans out there ready to infect them and that a very common infection vector is porn -- go ahead and succumb to these "socially engineered" trojans, anyway, downloading them straight onto their machines.

And a lot of Mac users have heretofore had the firm conviction that they were immune to malware and trojans -- immune being a word I've read used over and over again.


Now -- while this trojan uses social engineering and not an exploitable flaw in the Mac's defenses and the user has to go through a number of extra steps in order to infect himself -- the speed with which Apple's new baby the iPhone was hacked should serve as a wake up call that increasing market share will likely be sending more black hat bad guys gunning for the Mac.

[theblotted]

this is hilarious:

"And you still won't get to watch the video."

[gsilbers]

but at least it asks you if u want to install it. in pc i nevered agree to anything and found 34 viruses dunno how. they filter in or somehting while on the web.

from my understanding it has something to do with the OSX structure that there is a home and user folder so that way nothing is install without your permision.

if my "superstition" is wrong , anyone who know care explain why osx doesnt get viruses?

[stag]

Quote:

Originally Posted by gsilbers

but at least it asks you if u want to install it. in pc i nevered agree to anything and found 34 viruses dunno how. they filter in or somehting while on the web.

from my understanding it has something to do with the OSX structure that there is a home and user folder so that way nothing is install without your permision.

if my "superstition" is wrong , anyone who know care explain why osx doesnt get viruses?

In Vista x64 it´s asking always for f permissions, it drives me nuts, For that i would be using OSX. Just wait until i learn to yurn off the Dashboard and the rest of the bloat.

Them the finder would have to make sense to me vs Explorer is getting better and better,

I don´t know, I want to install a driver or a program, "I", the owner. So i have to allow myself to do that. It wasn´t enough i had to click start to shutdown, now they went on and snatched the stoopid bits from apple too. :sigh:

[island-dave]

Quote:

Originally Posted by stag

In Vista x64 it´s asking always for f permissions, it drives me nuts, For that i would be using OSX. Just wait until i learn to yurn off the Dashboard and the rest of the bloat.

Just thought I'd chime in about Main Menu if you haven't already heard about it. It's a nifty little app that lives up in the top menu bar and allows you to do some of the routine maintenance that you should normally do...

and as an added bonus - look under the "other tasks" menu and you'll see a setting to "DISABLE DASHBOARD" oh yeah, that's right! you wouldn't believe how many items disappear from the activity monitor when you select that option... and the best part is that it runs using VERY little resources.

Santa Software | MainMenu

Best of all, it's FREE!

[T_R_S]

Leopard has a cool new feature when you run a downloaded application for the first time

[Lee]

Is this all macs or just the new intel macs or the old style mac?

[stag]

Quote:

Originally Posted by T_R_S

Leopard has a cool new feature when you run a downloaded application for the first time

That´s about the same routine in Windows OS´s from a long time. On Win 98 it was nothing one could do but on XP one can access the web with a guest account, therefore less to null harm will be done.

However Viri once on a PC and opened can mean a lot of trouble. One nice trick is to have sensitive info password protected with RAR archiver or something similar. Windows encryption could be too much, after all we´re not NSA agents or something.



BTW thanks to island-dave. There is hope

[Reptil]

here's more
Killing the Undead

and another tiny little app to kill dashboard:
DashboardKiller 2.1 mac free download. DashboardKiller is a simple utility to switch the dashboard on and off.

btw, anyone who installs random stuff they got from some doubtfull porn site and types their password is pretty dumb, but that's obvious LOL

[severe]

quoted from another BB:


"It is so crafty how it installs.
1. You go to a website
2. The dmg file downloads
3. You Mac says "Hey do you want to open this file?" (unless you turned this off)
4. The dmg file mounts, and a finder window opens
5. You manually launch the installer
6. You type in an admin name and password so the Trojan can install / load.

Look out all the Macs on the planet are doomed.

Same Trojan on Windows

1. You go to a website
2. You get blasted by the driveby download
3. You go buy a new computer because it runs really slow and the guy at the store tells you you need faster hardware."