New Backdoor Trojan Targets Windows and Mac OS X
New Backdoor Trojan Targets Windows and Mac OS X
Posted 02/28/2011 at 9:11am
| by Paul Lilly
7
Comments
Print
Security firm Sophos has discovered a modified variant of the well known darkComet Remote Access Trojan (RAT) that not only affects Windows PCs, but the Mac OS X platform too. Interestingly enough, the nefarious Trojan readily admits it's not yet finished, which could be indicative of more underground programmers finally taking notice of Mac's increased market share. In its current form, Sophos senior security adviser, Chester Wisniewski, describes the Trojan as "very basic" in nature with a mix of English and German in the UI.
Infected Macs display the grammatically challenged message:
"I am a Trojan Horse, so i have infected your Mac Computer. I know, most people thnk Macs can't be infected, but look, you ARE Infected! I have full control over your Computer and i can do everything I want, and you can do nothing to prevent it. So, I'm a very new Virus, under Development, so there will be much more functions when im finished."
Functions of this specific Trojan include the ability to place text files on the desktop; send a restart, shutdown, or sleep command; run arbitrary shell commands; place a full screen window with a message that only allows you to click reboot; send URLs to the client to open a website; and pop up a fake 'Administrator Password' window to phish the target, Sophos says.
Wisniewski notes that Trojans like BlackHole RAT are often distributed through pirated software downloads and torrent sites.
More like this
7
Comments
Comments are closed on this article
tiger_shark
February 28, 2011 at 11:20am
i'm so weary of hearing mac users that they won't get infected with virus or malware. well it's about damn time for you to eat a big chunk of humble pie.
Engelsstaub
February 28, 2011 at 10:19pm
There are some pretty ignorant Mac-users out there. So many that I talk to seem to think this as you've pointed out. Even Steve Jobs said that Macs should have antivirus apps on them; you'd think most would have heard and heeded that!
I think, while Win7 is a bit less limited in the software that runs on it, that OSX has some great built-in tools for recovering from data loss and corrupition. So there's the flipside.
If one is wanting to stay the most secure (without relying on paid-apps that may or may not save their arses, I'd think a Linux distro would be the way to go.
j_j_montez
February 28, 2011 at 10:17am
I worked at a 3rd party Apple sales and repair store so I've already seen Macs affected by improper use, and downright stupid use of torrent sites. But after 4 years of use, I haven't had a problem, same way i haven't on my windows machines. I feel sorry for all the users who click on anything that comes their way, or that request downloading a movie labeled HD that is only 15MB in size.
MrSelatcia
February 28, 2011 at 9:52am
That message is golden. I wonder how many mac users are crying over it.
DJSPIN80
February 28, 2011 at 9:37am
It'll be interesting to see how Apple will deal with this.
OS X security seems permissive to me. You can set an administrator password, when you install software (and you can), it asks you for the password. However, you can't login as root/administrator.
From Apple's perspective, UNIX is a very secure kernel and it has a very tough security model. I'd like to see how they'll get around to fixing these viruses/malware issues.
Connect with MaximumPC
Featured Content
The gang discusses the GTX 690, Trinity, Ivy Bridge, Amazon, big-box stores, MMOs,...
This month's issue
Feature
Build a PC On Any Budget
Feature
Cloud Services Showdown
How-To
Encrypt Your External Drive
Build It
Upgrade an X58 Rig
Most Commented Articles
Latest Max PC Tweets
- maximumpc: Original RickRoll Video Returns to YouTube After 24-Hour Copyright Hiatus http://t.co/MaH9Sxyy1 day 21 hours ago
- maximumpc: Corsair has decided not to go forward with its $78 million IPO, citing weak equity market conditions http://t.co/A5a4DAzj1 day 21 hours ago
- maximumpc: Want to work at Maximum PC? Our Online Managing Editor, Alex, is moving away, so we need a new one. http://t.co/9Z7JCh0E3 days 18 hours ago
