+- MacResource (https://forums.macresource.com)
+-- Forum: My Category (https://forums.macresource.com/forumdisplay.php?fid=1)
+--- Forum: Tips and Deals (https://forums.macresource.com/forumdisplay.php?fid=3)
+--- Thread: The only cure for new Apple malware is to trash your Mac (/showthread.php?tid=181735)
Re: The only cure for new Apple malware is to trash your Mac - silvarios - 08-04-2015
Onamuji wrote:
[quote=Bill in NC]
requires physical access for the initial infection.
only can spread via "smart" peripherals with option ROM - which wouldn't include "dumb" USB common peripherals (e.g., printers, hard drives).
Err... Not printers, sure.
But USB drives do have option ROMs for BIOS/EFI updates.
Well then. That's certainly interesting.
Re: The only cure for new Apple malware is to trash your Mac - Onamuji - 08-04-2015
silvarios wrote:
That's not what either article states. It specifically mentions an email vector. Are the researchers mistaken?
Yes and no.
It'd have to be in the form of an executable attachment or a link to a maliciously crafted website. Not just an attachment, but one that you'd download and run, perhaps because the email appears to be coming from a Nigerian prince who desperately needs you to escrow some money for him. (Might even need admin priv's to run.)
...Unless there's also a zero-day exploit for Apple Mail to auto-execute attachments like Windows mail clients do. Then we're all screwed.
Re: The only cure for new Apple malware is to trash your Mac - vision63 - 08-05-2015
Well thank the Gods that it ain't Ebola.
Re: The only cure for new Apple malware is to trash your Mac - jdc - 08-05-2015
GeneL wrote:
My head is about to explode!
Stop reading this thread and forget you ever saw it. Seriously.
This will never effect you, ever. Or anyone else here.
I dunno if you are an ex PC user or what, and duck and cover every time you hear the words "malware" like you would if there was a nuke going off -- but these silly "proof of concept" things come and go every year this time.
Black hat hacker conference is going on right now in Vegas, all these things get hyped. On monday, google this same thing and limit your search to "the last 24 hours". Bet you get 5 hits.
Fuggetaboutit.
Go back to the Bum 2015 thread instead.
Re: The only cure for new Apple malware is to trash your Mac - Onamuji - 08-05-2015
jdc wrote:
[quote=GeneL]
My head is about to explode!
Stop reading this thread and forget you ever saw it. Seriously.
This will never effect you, ever. Or anyone else here.
I dunno if you are an ex PC user or what, and duck and cover every time you hear the words "malware" like you would if there was a nuke going off -- but these silly "proof of concept" things come and go every year this time.
Black hat hacker conference is going on right now in Vegas, all these things get hyped. On monday, google this same thing and limit your search to "the last 24 hours". Bet you get 5 hits.
Fuggetaboutit.
Go back to the Bum 2015 thread instead.
Yeah. It's just proof-of-concept.
Don't worry about it.
Better to worry about the auto-escalation malware that roots your Mac and installs adware with no user-input.
That one's out in the real world.
Re: The only cure for new Apple malware is to trash your Mac - jdc - 08-05-2015
Onamuji wrote:
Better to worry about the auto-escalation malware that roots your Mac and installs adware with no user-input.
That one's out in the real world.
Since that only effects the latest, 10.10.4, good news:
Update: Esser has since said the vulnerability has been fixed in a later beta version of 10.10.5.
Id expect 10.10.5 any time now....
Re: The only cure for new Apple malware is to trash your Mac - Onamuji - 08-05-2015
jdc wrote:
Id expect 10.10.5 any time now....
So... Meantime, I guess we all stay off the 'net?
Re: The only cure for new Apple malware is to trash your Mac - jdc - 08-05-2015
Onamuji wrote:
[quote=jdc]
Id expect 10.10.5 any time now....
So... Meantime, I guess we all stay off the 'net?
Exactly. And get off my lawn too. =)
When I was your age we didnt have no "interwebs" nor that fancy color TV thingy and we got along just fine... :oldfogey:
Sorry, 10.9 here.
Re: The only cure for new Apple malware is to trash your Mac - silvarios - 08-05-2015
Onamuji wrote:
Yes and no.
It'd have to be in the form of an executable attachment or a link to a maliciously crafted website. Not just an attachment, but one that you'd download and run, perhaps because the email appears to be coming from a Nigerian prince who desperately needs you to escrow some money for him. (Might even need admin priv's to run.)
...Unless there's also a zero-day exploit for Apple Mail to auto-execute attachments like Windows mail clients do. Then we're all screwed.
That's a fair point, but if you combine it with the privilege escalation bug you just mentioned, wouldn't that work without requiring a password?
Re: The only cure for new Apple malware is to trash your Mac - Bill in NC - 08-05-2015
I'm a little skeptical that the cheap (e.g. 2TB for $89) 2.5" external drives I'm buying for backup have up-dateable anything.
Maybe a NAS does.
Onamuji wrote:
[quote=Bill in NC]
requires physical access for the initial infection.
only can spread via "smart" peripherals with option ROM - which wouldn't include "dumb" USB common peripherals (e.g., printers, hard drives).
Err... Not printers, sure.
But USB drives do have option ROMs for BIOS/EFI updates.