Posted on 03/25/2009 9:41:58 AM PDT by Swordmaker
Mac owners have been urged to be wary of a new threat that targets the Apple computer as well as Windows-based PCs.
Researchers at security firm Sophos have discovered the OSX/RSPlug Trojan horse, which is being distributed on websites offering fake HDTV software.
"Mac users are no different to Windows users when it comes to falling for social-engineering tricks like this - they are just as likely to install and run this program on their computer if they believe it will help them watch high-definition TV," said Graham Cluley of Sophos.
Apple Mac malware: Caught on camera from Sophos Labs on Vimeo
Trojans specifically targeted at the Mac OS may be uncommon, but this particular attack is even more unusual as it can also infect Windows-based PCs.
"Windows users shouldn't be feeling smug about this attack against Mac users. If you visit the website from a Windows computer, it will serve up a malicious Windows executable from the Zlob family of malware rather than the RSPlug-F Mac OS X Trojan horse," Cluley said.
Another Mac Trojan was spotted back in January, to add to several instances of Mac malware spotted in 2008.
Web User examined the issue of Mac malware in Issue 209. You can buy digital editions of Web User back issues or call 01733 385 170 to order a copy.
The real threat here is that it is on what appears to be a very professional, commercial web-page that invites you to download the Trojan as a HDTV viewer. The web-site is platform agnostic and will offer either the OS X trojan or a Windows Trojan for those who visit the site using a Windows computer. Be warned. It is a WELL DESIGNED SOCIAL ENGINEERING TRAP.
If you want on or off the Mac Ping List, Freepmail me.
bookmark
Thank you for the warning, Swordmaker.
If it looks too good to be true.....
This is impossible because everyone knows MACs are virus proof.
Candy-gram / Land-shark ping!
Whats the matter. Jealous?
You apparently are unaware that there is a difference between a trojan horse and a virus.
A BIG difference. A “virus-prof” computer is no protection against a trojan, and you ought to know that.
Can someone please tell me the difference between a virus and a trojan horse, because I may know my tech stuff, but I am not perfect. Thanks.
Has the threat of computer attacks with Mac has gone up because the newer Macs are intel-based? Thanks for the response.
When you see ‘trojan’ think Trojan horse - you let the bad guys inside usually by falling for a trick.
When you see ‘virus’ think cold. It self-replicates and spreads by contact (the network).
Okay, so tragan horse means you must let the attacker in. Virus gets in on its own. :)
I’ll take a stab at that one.
Intel would make it easier for developing software for Mac/PC, but the OS and GUI have much more say in strength of defense.
So making it would be a bit easier, but making it is not your primary obstacle.
There are still no viruses in the wild for Macs.
That’s it in a nutshell, without a few dozen if, ands and buts.
Thanks!
Thanks in advance for any replies.
Re: virus proof
This is not a virus. It’s a Trojan horse application; a program that is masquerading as something other than what it is. It requires the user to install it.
Re: threat up because of intel switch.
Nope. OSX is still built on UNIX whether it’s on PowerPC or Intel.
Short answer: none that do more good than harm.
Use the internal firewall (external firewall is always a good idea too).
Use strong password for your admin account. If possible, have other users run not at full admin. (If it’s a teens machine, this may not be feasible).
Here’s some basic measures to take for security:
http://www.maclife.com/article/howtos/unlock_truth_about_mac_security_risks?page=0%2C2
If they practice safe computing they’ll be safe.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.