Posted on 02/22/2006 9:09:11 PM PST by Swordmaker
Sophos sees OS X virus ghosts
Anti-virus software mistakes real applications for pests, breaks systems
Anti-virus vendor Sophos has released an update of the Inqtana-B virus identity file for it Sophos Anti-Virus for OS X software due to false positives.
The company initially released an antidote that incorrectly flagged various files in Microsoft Office 2004 and in Adobe Acrobat Reader as being infected with the OS X worm. Users in some cases reported that the anti-virus software claimed over 1,000 infections.
The false positives have a great impact on users, as the anti-virus program will block access or delete all "infected" files, depending on the software's configurations. This effectively renders the systems useless.
Sophos did not mention the error on its website as of press time and could not be reached for comment after hours. The SANS Internet Storm Center unveiled the release of the updated virus identity file.
The Inqtana-B worm is a variant of the Inqtana worm that was first detected last Friday. The online pest is a proof of concept worm that uses Bluetooth to propagate, but is designed in such a way that it cannot cause any actual harm and will not spread.
The Sophos incident has given fuel to critics who all along have claimed that the noise around the detection of the first Mac OS X viruses last week was orchestrated by security vendors who are seeking to grow their revenues.
"First they 'find' a virus, then they start a FUD[fear, uncertainty and doubt] factory of misinformation, and finally they turn loose the REAL virus (called their anti-virus software) on the newly paranoid Mac users they stirred up," a user wrote on the Macfixit Apple enthusiasts' website.
|
I know this isn't a technical post, but isn't there a special place in the inner rings of Hell for virus writers?
And I know it is "cruel and unusual" punishment, but they should inject something into virus writers' fingers to create paralysis for 10 years.
Let the punishment fit the crime.
Got yr. iTunes on? They'll hit 1 billion songs downloaded in a few minutes.
---"First they 'find' a virus, then they start a FUD[fear, uncertainty and doubt] factory of misinformation, and finally they turn loose the REAL virus (called their anti-virus software) on the newly paranoid Mac users they stirred up," a user wrote on the Macfixit Apple enthusiasts' website.---
I love it!
Do a search for w0rm-support.tgz
If nothing shows up, forget about it.
I didn't win. bummer.
We have all been told that Macs don't get virus's. Then why in the world do they need anti-virus software?
How about something that creates excruciating pain every time they touch their finger pads to a keyboard?
Until this past week, the Mac Anti-virus ware has included definitions for the 134 OS9 and older Mac viruses, the MS Office Macro viruses, and all the Windows viruses... any Mac user that purchased and ran one of them did so as a courtesy to their Windows using friends to avoid passing on any virus that might appear in a file or email they forwarded to a Windows user.
They added a couple of proofs of concept in the last five years like Renepo.A
Now they can include the Leap.A, and this one... glorified Trojans.
It's more accurate to say that a Mac OS X virus has not been found yet "in the wild". There is always a risk that a Mac virus could appear in the future. But so far, the Mac has a great track record - especially compared to Windows.
Then why in the world do they need anti-virus software?
Anti-virus software is available for Macs - but hardly anyone has it. Good OS security design has kept 25 million Mac users safe so far.
Apple distributes a free anti-virus system called "ClamAV" with Mac OS X Server. If a real virus threat does emerge, I hope Apple has ClamAV ready to download for all Macs.
Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.