Overclock.net › Forums › Industry News › Software News › [El Reg] New password-snatching Mac Trojan spreading in the wild
New Posts  All Forums:Forum Nav:

[El Reg] New password-snatching Mac Trojan spreading in the wild

post #1 of 122
2/25/12 at 4:04pm
Thread Starter 
Quote:
Originally Posted by The Register .co .uk 
Security watchers warned on Friday that a new variant of a Mac-specific password-snatching Trojan horse is spreading in the wild.


Flashback-G initially attempts to install itself via one of two Java vulnerabilities. Failing that, the malicious applet displays a self-signed certificate (claiming to be from Apple) in the hope users just install the malware.


Once snugly in place, the malware attempts to capture the login credentials users enter on bank websites, PayPal, and many others.


To read the full article, click here.
Main Rig.
(14 items)
 
Battlefield 2 review.
Battlefield 2 PC Game EA
 
CPUMotherboardGraphicsRAM
Bulldozer FX4100 Gigabyte GA-M68MT-S2 MSI 7770 Kingston Hyper X | 2 x 2 GB 
Hard DriveOptical DriveCoolingOS
WD 2 TB  LiteON DVD/CD R-W Drive AMD Standard cooler Windows 7 Ultimate 
MonitorKeyboardPowerCase
32' Luxor Full HD TV Microsoft comfort curce Antec 450 Watt OcUK Value case 
MouseAudio
Microsoft wireless mouse Logitech speakers & Bass 
View all
  hide details  
Reply
Main Rig.
(14 items)
 
Battlefield 2 review.
Battlefield 2 PC Game EA
 
CPUMotherboardGraphicsRAM
Bulldozer FX4100 Gigabyte GA-M68MT-S2 MSI 7770 Kingston Hyper X | 2 x 2 GB 
Hard DriveOptical DriveCoolingOS
WD 2 TB  LiteON DVD/CD R-W Drive AMD Standard cooler Windows 7 Ultimate 
MonitorKeyboardPowerCase
32' Luxor Full HD TV Microsoft comfort curce Antec 450 Watt OcUK Value case 
MouseAudio
Microsoft wireless mouse Logitech speakers & Bass 
View all
  hide details  
Reply
post #2 of 122
2/25/12 at 4:12pm
but... but... the guy at the apple store told me that macs don't get viruses
Reply
Reply
post #3 of 122
2/25/12 at 4:14pm
looks like I will be working on a few MACs soon...oh well....goes straight to my Ivy/Kepler fund biggrin.gif
Ov3RK11L
(15 items)
 
Project Toaster
(15 items)
  		 
CPUMotherboardGraphicsRAM
Intel 3770K @ 4.5Ghz @ 1.20V Asus Maximus V Formula Sapphire 7950 OC Edition Gskill Trident X 2400Mhz 8GB 
Hard DriveHard DriveCoolingOS
Samsung 840 250GB WD 1TB Black Hyper 212+ Win 7 Ultimate 64bit  
MonitorKeyboardPowerCase
Asus 1920X1080 Corsair K70  XFX Black Edition 750W Corsair 650D 
MouseMouse PadAudio
RAT 7 Razer Vespula ((control)) Supreme FX 
View all
CPUMotherboardGraphicsRAM
i5-661 4.2Ghz 24/7 Gigabyte H55N-USB3 Sapphire HD7950 950mhz OC Gskill Ripjaws DDR3 1333 4GB 
Hard DriveOptical DriveCoolingOS
Corsair F60 SSD + WD 500GB black LG burner Antech Kuhler 620 w/ NoiseBlocker fan Win 7 Ult. 64bit 
MonitorKeyboardPowerCase
Asus 24" LED LCD 1920X1080 Logitech G510 600W 80+ Lian Li PC-Q08B 
MouseMouse PadAudio
R.A.T 7  Frys?? lol onboard..ohh yahhhhhhh  
View all
  hide details  
Reply
Ov3RK11L
(15 items)
 
Project Toaster
(15 items)
  		 
CPUMotherboardGraphicsRAM
Intel 3770K @ 4.5Ghz @ 1.20V Asus Maximus V Formula Sapphire 7950 OC Edition Gskill Trident X 2400Mhz 8GB 
Hard DriveHard DriveCoolingOS
Samsung 840 250GB WD 1TB Black Hyper 212+ Win 7 Ultimate 64bit  
MonitorKeyboardPowerCase
Asus 1920X1080 Corsair K70  XFX Black Edition 750W Corsair 650D 
MouseMouse PadAudio
RAT 7 Razer Vespula ((control)) Supreme FX 
View all
CPUMotherboardGraphicsRAM
i5-661 4.2Ghz 24/7 Gigabyte H55N-USB3 Sapphire HD7950 950mhz OC Gskill Ripjaws DDR3 1333 4GB 
Hard DriveOptical DriveCoolingOS
Corsair F60 SSD + WD 500GB black LG burner Antech Kuhler 620 w/ NoiseBlocker fan Win 7 Ult. 64bit 
MonitorKeyboardPowerCase
Asus 24" LED LCD 1920X1080 Logitech G510 600W 80+ Lian Li PC-Q08B 
MouseMouse PadAudio
R.A.T 7  Frys?? lol onboard..ohh yahhhhhhh  
View all
  hide details  
Reply
post #4 of 122
2/25/12 at 4:27pm
Quote:
Originally Posted by ComradeNF View Post

but... but... the guy at the apple store told me that macs don't get viruses

They don't. There is ZERO Viruses for OSX in the past 12 years, even with over 50 Million users now. So much for that "marketshare" argument.

This Trojan, only works on outdated Java 10.6 systems that haven't run a system update in awhile. Lion, 10.7, isn't vulnerable as it obviously has the updates already installed. Oh gee, another Java exploit...

Oh, and the built in Anti-malware on Lion, which automatically updates every day, has already blocked this file.
Edited by PoopaScoopa - 2/25/12 at 4:35pm
IVY bench warmer
(14 items)
  		  
CPUMotherboardGraphicsRAM
Intel 2500K @ 5.0 1.44V Asus P8Z68-V Pro 2X MSI 6950->6970 Unlocked SP @ 950Mhz 1.2V 2X 4GB G.Skill Ripjaws-X 1600 7-8-7-24 1.6V 
Hard DriveCoolingOSMonitor
Raid 0 120GB Kingston HyperX Noctua NH-D14 Vista SP7 x64 HP ZR30w 30" + 2x 2001FP 
KeyboardPowerCaseMouse
Steel Seried 6Gv2 Antec HCP-1200 Corsair Obsidian 800D Razer Naga Epic 
View all
  hide details  
Reply
IVY bench warmer
(14 items)
  		  
CPUMotherboardGraphicsRAM
Intel 2500K @ 5.0 1.44V Asus P8Z68-V Pro 2X MSI 6950->6970 Unlocked SP @ 950Mhz 1.2V 2X 4GB G.Skill Ripjaws-X 1600 7-8-7-24 1.6V 
Hard DriveCoolingOSMonitor
Raid 0 120GB Kingston HyperX Noctua NH-D14 Vista SP7 x64 HP ZR30w 30" + 2x 2001FP 
KeyboardPowerCaseMouse
Steel Seried 6Gv2 Antec HCP-1200 Corsair Obsidian 800D Razer Naga Epic 
View all
  hide details  
Reply
post #5 of 122
2/25/12 at 4:29pm
I don't remember viruses on the pc being this thorough. At most you'd get infected with a key Logger and that's it
Karthe-TransAM
(15 items)
  		  
CPUMotherboardGraphicsRAM
i5-2500k Costa Rica @ Stock for now P8P67 PRO 3.0 Inno3d GTX 660 (Nvidia Reference design) 4x2GB G-Skill Ripjaws X @ 1600Mhz CAS7 
Hard DriveHard DriveHard DriveOS
WD5000AAKX (OS) WD5000AAKS Barracuda 1TB 7200.12 Windows 7 Ultimate 
MonitorKeyboardPowerCase
Dell U2312HM Ducky DK1008 Cherry Blue Corsair AX650 NZXT Phantom White 
MouseMouse Pad
X-710BH QCK 
View all
  hide details  
Reply
Karthe-TransAM
(15 items)
  		  
CPUMotherboardGraphicsRAM
i5-2500k Costa Rica @ Stock for now P8P67 PRO 3.0 Inno3d GTX 660 (Nvidia Reference design) 4x2GB G-Skill Ripjaws X @ 1600Mhz CAS7 
Hard DriveHard DriveHard DriveOS
WD5000AAKX (OS) WD5000AAKS Barracuda 1TB 7200.12 Windows 7 Ultimate 
MonitorKeyboardPowerCase
Dell U2312HM Ducky DK1008 Cherry Blue Corsair AX650 NZXT Phantom White 
MouseMouse Pad
X-710BH QCK 
View all
  hide details  
Reply
post #6 of 122
2/25/12 at 4:29pm
Sounds like another case of a company that sells anti-virus software spreading FUD to sell its products to me.
Reply
Reply
post #7 of 122
2/25/12 at 4:38pm
I've yet to run into one yet on my MacBook, which is now on 3 years, or know anyone who has a Mac pick up any of the Trojans that's appeared over the past few years. Even a person I know, who is known to pick up every single kind of Windows virus/trojan/worm on those machines never had one on her iMac.

UNIX is a solid framework for OS X and the way Apple has installations work on it, you must enter your password in order for it to install. Where as in Windows, mainly XP, anything can install even without your knowledge or permission. UAC in Vista and W7 has helped lower the "bad stuff" from installing on your system without your authorization.
Red Gamer mk 2.5
(17 items)
  		  
CPUMotherboardGraphicsRAM
Intel Xeon E3-1230 V2 Asus Maximus V Formula MSI GeForce 670 2GB 4x4GB G.SKILL Ripjaws X DDR3-1333Mhz 
Hard DriveHard DriveHard DriveHard Drive
60GB Corsair Force Series 3 SSD 500GB Western Digital Blue 1TB Seagate Barricuda 320GB Western Digital Blue 
Optical DriveCoolingOSMonitor
LG Blu-Ray Burner Custom Watercooling Win 8 Pro x64 27" Apple Cinema Display 2560x1440 
KeyboardPowerCaseMouse
Apple Full Size Aluminum Keyboard ULTRA X4 850w Cooler Master HAF XB Logitech MX 3000 Mouse 
View all
  hide details  
Reply
Red Gamer mk 2.5
(17 items)
  		  
CPUMotherboardGraphicsRAM
Intel Xeon E3-1230 V2 Asus Maximus V Formula MSI GeForce 670 2GB 4x4GB G.SKILL Ripjaws X DDR3-1333Mhz 
Hard DriveHard DriveHard DriveHard Drive
60GB Corsair Force Series 3 SSD 500GB Western Digital Blue 1TB Seagate Barricuda 320GB Western Digital Blue 
Optical DriveCoolingOSMonitor
LG Blu-Ray Burner Custom Watercooling Win 8 Pro x64 27" Apple Cinema Display 2560x1440 
KeyboardPowerCaseMouse
Apple Full Size Aluminum Keyboard ULTRA X4 850w Cooler Master HAF XB Logitech MX 3000 Mouse 
View all
  hide details  
Reply
post #8 of 122
2/25/12 at 4:39pm
  • XNine
  • NZXT Community Support
  • Hardware Rep
Quote:
Originally Posted by ComradeNF View Post

but... but... the guy at the apple store told me that macs don't get viruses

And yet, this still isn't a virus. I'm not sure if you're trying to troll the thread because it relates to Apple or what. OS X has as of yet still not seen an actual virus. Trojans? Malicious Scripts? Vulnerabilities? Yes. But not an actual virus.
Reply
Reply
post #9 of 122
2/25/12 at 4:43pm
Quote:
Originally Posted by Lareson View Post

I've yet to run into one yet on my MacBook, which is now on 3 years, or know anyone who has a Mac pick up any of the Trojans that's appeared over the past few years. Even a person I know, who is known to pick up every single kind of Windows virus/trojan/worm on those machines never had one on her iMac.
UNIX is a solid framework for OS X and the way Apple has installations work on it, you must enter your password in order for it to install. Where as in Windows, mainly XP, anything can install even without your knowledge or permission. UAC in Vista and W7 has helped lower the "bad stuff" from installing on your system without your authorization.

Actually, UAC has been bypassed by malware for a long time now. All it does, is annoy the user. Make sure you have some kind of Anti-Virus running. MSE is pretty good.
IVY bench warmer
(14 items)
  		  
CPUMotherboardGraphicsRAM
Intel 2500K @ 5.0 1.44V Asus P8Z68-V Pro 2X MSI 6950->6970 Unlocked SP @ 950Mhz 1.2V 2X 4GB G.Skill Ripjaws-X 1600 7-8-7-24 1.6V 
Hard DriveCoolingOSMonitor
Raid 0 120GB Kingston HyperX Noctua NH-D14 Vista SP7 x64 HP ZR30w 30" + 2x 2001FP 
KeyboardPowerCaseMouse
Steel Seried 6Gv2 Antec HCP-1200 Corsair Obsidian 800D Razer Naga Epic 
View all
  hide details  
Reply
IVY bench warmer
(14 items)
  		  
CPUMotherboardGraphicsRAM
Intel 2500K @ 5.0 1.44V Asus P8Z68-V Pro 2X MSI 6950->6970 Unlocked SP @ 950Mhz 1.2V 2X 4GB G.Skill Ripjaws-X 1600 7-8-7-24 1.6V 
Hard DriveCoolingOSMonitor
Raid 0 120GB Kingston HyperX Noctua NH-D14 Vista SP7 x64 HP ZR30w 30" + 2x 2001FP 
KeyboardPowerCaseMouse
Steel Seried 6Gv2 Antec HCP-1200 Corsair Obsidian 800D Razer Naga Epic 
View all
  hide details  
Reply
post #10 of 122
2/25/12 at 4:44pm
So it runs on a Java exploit.

People do realise theres plenty more Java exploits for Windows....right?
Again, quite simply its down to common sense.

Most people who have Macs don't have Anti-Virus due to the "Macs dont get Viruses" theory rolleyes.gif, and this virus will affect those users. However, think about it this way, if a Windows box didn't have Anti-Virus, just think how much crap you'd find on the system
27" iMac
(15 items)
  		  
CPUMotherboardGraphicsRAM
i5 @ 3.6Ghz Yes ATI Radeon HD 5670 8GB Corsair 
Hard DriveHard DriveOptical DriveOS
1TB SATA 1TB Buffalo Drivestation Yes OSX Lion 
MonitorKeyboardPowerCase
27" 2560x1440 IPS Apple Keyboard Yes iMac 
MouseOther
Magic Mouse Mobee Magic Charger 
View all
  hide details  
Reply
27" iMac
(15 items)
  		  
CPUMotherboardGraphicsRAM
i5 @ 3.6Ghz Yes ATI Radeon HD 5670 8GB Corsair 
Hard DriveHard DriveOptical DriveOS
1TB SATA 1TB Buffalo Drivestation Yes OSX Lion 
MonitorKeyboardPowerCase
27" 2560x1440 IPS Apple Keyboard Yes iMac 
MouseOther
Magic Mouse Mobee Magic Charger 
View all
  hide details  
Reply
New Posts  All Forums:Forum Nav:
  Return Home
  Back to Forum: Software News
Overclock.net › Forums › Industry News › Software News › [El Reg] New password-snatching Mac Trojan spreading in the wild