+- MacResource (https://forums.macresource.com)
+-- Forum: My Category (https://forums.macresource.com/forumdisplay.php?fid=1)
+--- Forum: Tips and Deals (https://forums.macresource.com/forumdisplay.php?fid=3)
+--- Thread: Oh No!!!!!!! New Mac Trojan/ OSX Crisis discovered! (/showthread.php?tid=139311)
Pages:
1
2
Oh No!!!!!!! New Mac Trojan/ OSX Crisis discovered! - Black - 07-26-2012
http://www.washingtonpost.com/business/technology/osx-crisis-new-mac-trojan-discovered-in-the-wild/2012/07/25/gJQAxnqu8W_story.html?wpisrc=nl_tech
Re: Oh No!!!!!!! New Mac Trojan/ OSX Crisis discovered! - C(-)ris - 07-26-2012
They are a little vague on the details. They say it pretends to be a game file and then go on to say what happens if the user is logged in as an admin user and a standard user. What they don't say, is if the person has to enter their password or not to become infected.
If they do not have to enter a password, if all they have to do is launch the program as an admin user and it infects the machine, this is huge news. My guess, since the detail was completely left out, is yes they do have to enter the password.
Re: Oh No!!!!!!! New Mac Trojan/ OSX Crisis discovered! - hal - 07-26-2012
more details here: seems that it works without a password being entered, but has not been detected 'in the wild' yet...
Re: Oh No!!!!!!! New Mac Trojan/ OSX Crisis discovered! - decay - 07-26-2012
so a music file can infect a Mac now?
i'd like to see how that works...
Re: Oh No!!!!!!! New Mac Trojan/ OSX Crisis discovered! - C(-)ris - 07-26-2012
"We have not yet seen if or how this threat is installed on a user’s system; it may be that an installer component will try to establish Admin permissions,” says Myers in a post on the official blog of Intego."
They have no idea how it gets on a machine? The only way to establish admin permissions is with a password....unless there is a HUGE security hole in the kernel that no one has noticed in 20 years. If there is a way to edit files without permissions being given, that is a BIG deal.
Re: Oh No!!!!!!! New Mac Trojan/ OSX Crisis discovered! - Speedy - 07-26-2012
Another application that doesn't run on my G5.
Re: Oh No!!!!!!! New Mac Trojan/ OSX Crisis discovered! - Forrest - 07-26-2012
The title of that web page is 'osx-crisis-new-mac-trojan-discovered-in-the-wild', yet according to the contents of the article, the trojan does NOT exist in the wild. Looks like a ploy to increase web clicks.
Re: Oh No!!!!!!! New Mac Trojan/ OSX Crisis discovered! - Speedy - 07-26-2012
Forrest wrote:
The title of that web page is 'osx-crisis-new-mac-trojan-discovered-in-the-wild', yet according to the contents of the article, the trojan does NOT exist in the wild. Looks like a ploy to increase web clicks.
:agree: and it worked.
Re: Oh No!!!!!!! New Mac Trojan/ OSX Crisis discovered! - Black - 07-26-2012
Speedy wrote:
[quote=Forrest]
The title of that web page is 'osx-crisis-new-mac-trojan-discovered-in-the-wild', yet according to the contents of the article, the trojan does NOT exist in the wild. Looks like a ploy to increase web clicks.
:agree: and it worked.
Yes, I only posted this article here because of that inclusion in he URL-- that's how I satisfy my insatiable appetite for low-quality online news, I crawl URLs for hours every night like a bot. If not for that part of the URL I would have skipped it. Good catch!
Re: Oh No!!!!!!! New Mac Trojan/ OSX Crisis discovered! - michaelb - 07-26-2012
didn't the flashback trojan install without user authentication or interaction too? At least in part. I was thinking the idea that we were safe because we would have to type a password is no longer true or anything we can depend on.