Free Republic
Browse · Search
General/Chat
Topics · Post Article

Skip to comments.

Mac Malware Getting Worse
ZD Net, Ed Bott ^ | 05/06/2011 | Ed Bott

Posted on 05/19/2011 5:37:00 AM PDT by johncatl

Over the weekend, I got an e-mail from an AppleCare support rep, who was responding to my recent reports of Mac malware being found in the wild. At least one prominent voice in the Mac community dismisses these reports as “crying wolf.” The view from inside an Apple call center says it’s for real:

I can tell you for a fact, many, many people are falling for this attack. Our call volume here at AppleCare is 4-5x higher than normal and [the overwhelming majority] of our calls are about this Mac Defender and its aliases. Many frustrated Mac users think their Mac is impervious to viruses and think this is a real warning from Apple. I really wish I could say not many people will fall for this, but in this last week, we have had nothing but Mac Defender and similar calls.

I contacted this person and arranged an interview. I’ve edited our conversation to remove any details that might identify this individual or the call center location, but otherwise this is a verbatim transcript.

Update In the Talkback comments, some people express skepticism about these conclusions. Be sure to read my follow-up: Crying wolf? Apple support forums confirm malware explosion. It includes direct quotes from Apple customers caught up by this attack.

(Excerpt) Read more at zdnet.com ...


TOPICS: Computers/Internet; Miscellaneous
KEYWORDS: mac; malware
Navigation: use the links below to view more comments.
first 1-2021-4041-46 next last

1 posted on 05/19/2011 5:37:05 AM PDT by johncatl
[ Post Reply | Private Reply | View Replies]

To: johncatl
How's all the MAC security working out for all you “Buy a MAC and be secure” people? LOL....security through obscurity doesn't work when you are no longer obscure....
2 posted on 05/19/2011 5:41:56 AM PDT by rightwingextremist1776
[ Post Reply | Private Reply | To 1 | View Replies]

To: johncatl

ZD net is full of Microsoft loving loonies.


3 posted on 05/19/2011 5:42:37 AM PDT by MimirsWell (Pganini, cmdjing, andyahoo, artaxerces, todd_hall - counting my Chicom scalps)
[ Post Reply | Private Reply | To 1 | View Replies]

To: johncatl

ZDnet is full of Microsoft loving loonies.


4 posted on 05/19/2011 5:42:46 AM PDT by MimirsWell (Pganini, cmdjing, andyahoo, artaxerces, todd_hall - counting my Chicom scalps)
[ Post Reply | Private Reply | To 1 | View Replies]

To: johncatl

ZDnet is full of Microsoft loving loonies.


5 posted on 05/19/2011 5:42:54 AM PDT by MimirsWell (Pganini, cmdjing, andyahoo, artaxerces, todd_hall - counting my Chicom scalps)
[ Post Reply | Private Reply | To 1 | View Replies]

To: johncatl

I’m shocked - shocked I tell you!


6 posted on 05/19/2011 5:43:12 AM PDT by reagan_fanatic (A communist is just a liberal in a hurry)
[ Post Reply | Private Reply | To 1 | View Replies]

To: johncatl

Boring. Second time this was posted; dangerous only if you are dumb enough to download and install it without checking it out first. Some PC people are so desperate for Mac users to start sharing their misery that they latch on to stories like this as if they were gospel.


7 posted on 05/19/2011 5:45:13 AM PDT by La Lydia ("California: When the parasites outnumber the hosts, it's all over.")
[ Post Reply | Private Reply | To 1 | View Replies]

To: johncatl
EB: So customers who get hit by this are installing it and giving their admin password?

AC: Yes.

EB: if they stop before that, nothing bad happens?

AC: Yes, the file will download but for it to install it requres the password. it tries to trick you into giving it by saying its required to remove the infections.

EB: Ah yes, social engineering.

AC: Indeed, looks rather real, if you ignore the fact it pops up in your browser… but for most of us that know computers that’s a giveaway there.

It's the same old "land shark... er candygram" method of attack. Once you give the admin password to install software... it is game over; sort of like inviting a stranger into your house.

8 posted on 05/19/2011 5:45:43 AM PDT by 6SJ7 (atlasShruggedInd = TRUE)
[ Post Reply | Private Reply | To 1 | View Replies]

To: rightwingextremist1776
How's all the MAC security working out for all you “Buy a MAC and be secure” people? LOL....security through obscurity doesn't work when you are no longer obscure....

Mac doesn't rely on "security through obscurity", and that principle (flawed as it is) doesn't apply in this case.

The malware in question is simply a slick trojan that poses as a piece of legitimate software to those foolish enough to grant admin privileges to a program that downloads from the internet. It's a social engineering attack, and as such, defense is independent of operating system.

9 posted on 05/19/2011 5:46:45 AM PDT by kevkrom ("Winning The Future" = WTF = What The F*** / "Kinetic Military Action" = KMA = Kiss My A**)
[ Post Reply | Private Reply | To 2 | View Replies]

To: rightwingextremist1776

Why do you keep referring to MAC (Media Access Control)?


10 posted on 05/19/2011 5:47:18 AM PDT by 6SJ7 (atlasShruggedInd = TRUE)
[ Post Reply | Private Reply | To 2 | View Replies]

To: kevkrom
Written for a MAC.....LOL...you people crack me up.....enjoy the popularity of MACs....the ride is just beginning.
11 posted on 05/19/2011 5:48:48 AM PDT by rightwingextremist1776
[ Post Reply | Private Reply | To 9 | View Replies]

To: rightwingextremist1776
Did you even read the article? (See post #8 for the relevant bit that's "buried" on page 2.)

This particular piece of malware is written for OS X (which is probably a more precise term to use than Mac; and note that it's Mac, not MAC), but it does not exploit a weakness in OS X -- rather, it tricks the user into installing it. That's not an operating system attack, and no OS in the world is safe if a user with admin privileges intentionally installs malware, even if that user isn't aware that it is malware.

The same technique would work on Windows, Linux, Solaris, OS/2, NeXT, or any other platform you can name. The security level of the OS is irrelevant if the user allows the malware to bypass the OS security.

12 posted on 05/19/2011 5:53:53 AM PDT by kevkrom ("Winning The Future" = WTF = What The F*** / "Kinetic Military Action" = KMA = Kiss My A**)
[ Post Reply | Private Reply | To 11 | View Replies]

To: kevkrom

Like I said...enjoy the ride...no operating system is without security holes....only fools and Mac (better?) owners would believe otherwise.


13 posted on 05/19/2011 5:58:20 AM PDT by rightwingextremist1776
[ Post Reply | Private Reply | To 12 | View Replies]

To: MimirsWell
ZD net is full of Microsoft loving loonies.

Yeah! Attack the messenger and forget about using your brain!

14 posted on 05/19/2011 6:01:38 AM PDT by Erik Latranyi (Too many conservatives urge retreat when the war of politics doesn't go their way.)
[ Post Reply | Private Reply | To 3 | View Replies]

To: MimirsWell
ZD net is full of Microsoft loving loonies.

Yeah! Attack the messenger and forget about using your brain!

15 posted on 05/19/2011 6:01:45 AM PDT by Erik Latranyi (Too many conservatives urge retreat when the war of politics doesn't go their way.)
[ Post Reply | Private Reply | To 3 | View Replies]

To: MimirsWell

Triple post from a Mac, I presume?

;-)


16 posted on 05/19/2011 6:02:36 AM PDT by Hulka
[ Post Reply | Private Reply | To 5 | View Replies]

To: rightwingextremist1776
Like I said...enjoy the ride...no operating system is without security holes....only fools and Mac (better?) owners would believe otherwise.

And yet this article has nothing to do with OS security holes.

17 posted on 05/19/2011 6:08:30 AM PDT by kevkrom ("Winning The Future" = WTF = What The F*** / "Kinetic Military Action" = KMA = Kiss My A**)
[ Post Reply | Private Reply | To 13 | View Replies]

To: rightwingextremist1776

“enjoy the popularity of MACs....the ride is just beginning.”

Well, this part I agree with. Mac sales are far outpacing the general PC market. I certainly do look forward to more native Mac software. :-)

Apple stock has a long upward ride ahead of it as well. Amazing how the Apple market cap has so completely eclipsed that of Microsoft these days...


18 posted on 05/19/2011 6:26:28 AM PDT by PreciousLiberty
[ Post Reply | Private Reply | To 11 | View Replies]

To: johncatl; rightwingextremist1776; Swordmaker; PA Engineer
Social engineering attacks have nothing to do with which operating system the user is on, they're an attack on the USER.

Anyone capable of making stupid snarky remarks ought to know that, rwe1776.

Trojans aren't viruses. Geez, some people...

Besides, this news was already posted and discussed in detail: http://www.freerepublic.com/focus/f-news/2721644/posts

19 posted on 05/19/2011 6:35:55 AM PDT by dayglored (Listen, strange women lying in ponds distributing swords is no basis for a system of government!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: La Lydia
Boring. Second time this was posted; dangerous only if you are dumb enough to download and install it without checking it out first. Some PC people are so desperate for Mac users to start sharing their misery that they latch on to stories like this as if they were gospel.

I didn't see the first post but it looks like there are plenty of "dumb" Mac users just like the "dumb" PC Users. Social Engineering works no matter what the platform.

Ed has posted three stories on this, and between the Forums and the other information, this is real enough for those affected.

Posting this doesn't mean that I am anti-Mac. You do what you want and think what you will.

20 posted on 05/19/2011 6:43:59 AM PDT by johncatl (...governs least, governs best.)
[ Post Reply | Private Reply | To 7 | View Replies]


Navigation: use the links below to view more comments.
first 1-2021-4041-46 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
General/Chat
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson