Shortcuts

Mac Trojan Masquerades As Adobe Flash Player Installer

rated by 0 users
This post has 14 Replies | 2 Followers

Top 10 Contributor
Posts 26,111
Points 1,184,100
Joined: Sep 2007
ForumsAdministrator
News Posted: Tue, Sep 27 2011 8:39 PM
The Mac Security Blog from Intego, a Mac security software developer, has posted a security memo warning users of a new Trojan, dubbed Flashback, that is infecting OSX based systems. The Flashback Trojan masquerades as an Adobe Flash Player installer, and if an unsuspecting user downloads the file package and ultimately installs the Trojan, it will deactivate some security software, delete the installation package itself, install auto-launch code, and place a library in the /Library/Preferences/ folder that’s used to inject code into applications launched by the user. The Trojan then connects to a remote server and sends information about the infected Mac, including the machine’s MAC address.

From the Intego post, “Malware: OSX/flashback.A

Risk: Low; this malware has been found in the wild, and may fool Mac users who don’t have Flash Player installed. However, Intego so far has only one report of this malware, and a sample provided by a user who downloaded it from a malicious web site.

Description: Intego has discovered a new Trojan horse, Flashback, which masquerades as a Flash Player installer. This Trojan horse has been found in the wild, and has some disturbing actions.”

Although Intego’s article says they’ve received only a single report of an infected machine so far, comments on the blog post seem to indicate that numerous users are infected and that some of the infections could be about a month old.

Analysis of the malicious code is still ongoing, but the latest definitions for Intego’s VirusBarrier X6 application can detect, prevent, and eliminate the Flashback Trojan and others are sure to follow suit.

In other news, Steve Ballmer was seen driving by a local Apple store blowing rasberries and screaming, “Neener, Neener, Neener!”
  • | Post Points: 110
Top 50 Contributor
Posts 2,865
Points 29,645
Joined: Mar 2011
Location: United States, Connecticut

Nasty little bug from the sounds of it. So is this the beginning of the PC Malware plague spreading to the MAC world.

  • | Post Points: 35
Top 10 Contributor
Posts 8,623
Points 103,925
Joined: Apr 2009
Location: Shenandoah Valley, Virginia
MembershipAdministrator
Moderator
realneil replied on Tue, Sep 27 2011 9:30 PM

omegadraco:
So is this the beginning of the PC Malware plague spreading to the MAC world

It's the second one in a week.

Dogs are great judges of character, and if your dog doesn't like somebody being around, you shouldn't trust them.

  • | Post Points: 5
Top 50 Contributor
Posts 2,359
Points 48,655
Joined: Apr 2000
Location: United States, Connecticut
ForumsAdministrator
MembershipAdministrator
Marco C replied on Tue, Sep 27 2011 10:13 PM

I don't think you'll ever see the kind of malware volume on the Mac as you do on the PC because the incentive for malware writers is just SOOOO much smaller. Regardless, this just furhter proves the point that no platform is totally secure.

Marco Chiappetta
Managing Editor @ HotHardware.com

Follow Marco on Twitter

  • | Post Points: 20
Not Ranked
Posts 78
Points 510
Joined: Apr 2011
DHampton replied on Tue, Sep 27 2011 10:31 PM

yay more proof for smug mac users that only reason macs havent been targeted is very few people used them until recently with large growth spurt due to tablets. And for the most part the virus that have come out for macs have been way more damaging than most pc ones. At least a reformat and even some that damage actual hardware.

  • | Post Points: 20
Top 100 Contributor
Posts 1,120
Points 12,940
Joined: Jun 2011
Location: East Coast

"I'm just laughing out loud that the Trojan is an Adobe Flash Player Installer, the irony."

  • | Post Points: 5
Top 50 Contributor
Posts 3,236
Points 37,910
Joined: Mar 2010
AKwyn replied on Wed, Sep 28 2011 1:08 AM

omegadraco:

Nasty little bug from the sounds of it. So is this the beginning of the PC Malware plague spreading to the MAC world.

The beginning was MacCleaner, which was a piece of scareware designed to grab money off from suspecting people under the guise of a system file cleaner.

This is the beginning of deceptiveware on the Mac, where the person is decieved into installing something under the guise of another product; and since the adoption rates of Macs are going up, the number of spyware for the Macintosh is going to increase and there is nothing that can stop the increase other than buying a virus scanner from the newly founded Mac Security sector.

If this malware managed to infect one computer then just think of the future.

 

"The future starts with you; now start posting more!"

  • | Post Points: 5
Top 500 Contributor
Posts 220
Points 2,745
Joined: Apr 2011
gazd1 replied on Wed, Sep 28 2011 4:27 AM

I'd expect this to happen to the Apple Mac, especially since their marketshare has gone up in sales & that their share of the browser statistics has also increased.Wink So you will know if the Apple Mac will be getting more popular by there being an ever more increasing threats like these.Wink Also I have talked to people that have owned Mac computers, some say that they have never had any viruses (could be the truth or just plain bull****) while others have owned up & also said that they visit porn sites & other unsavory sites also. The latter said that their Macs was not free of viruses or spyware. Although at one time one could be sure of going online with a Mac & visiting porn sites & all to be left alone, but this was about a decade ago when it was not so profitable to invade the infamous Apple Mac pc.Big Smile

  • | Post Points: 35
Top 50 Contributor
Posts 2,379
Points 31,040
Joined: Nov 2010
Location: Crystal Lake,IL
rrplay replied on Wed, Sep 28 2011 8:00 AM

Still proves that all PC or Mac users are there own personal admins and have to diligent maintaining security,using common sense when downloading and installing anything.

"Don't Panic ! 'cause HH got's your back!"

  • | Post Points: 5
Top 10 Contributor
Posts 8,623
Points 103,925
Joined: Apr 2009
Location: Shenandoah Valley, Virginia
MembershipAdministrator
Moderator
realneil replied on Wed, Sep 28 2011 11:25 AM

gazd1:
Also I have talked to people that have owned Mac computers, some say that they have never had any viruses (could be the truth or just plain bull****) while others have owned up & also said that they visit porn sites & other unsavory sites also.

I had an iMac here for three years before my son got it for his Doctorate Studies, and I never had a virus on it the whole time. (no bullcrap)

But,...I'm not into porn sites or other unsavory sites either. While I had that iMac, I had a free version of an antivirus program on it. (I just couldn't wrap my brain around leaving it totally unprotected) My ~Windows conditioning~ kicked in and I did what I could to protect it from the beginning. It never alerted or actually found a virus though.

Once code is written to invade a Mac, it's a simple matter to have it along side the Windows based code on your ~unsavory~ webpage and go with the "get 'em all" method. Those weenies share that crap amongst one another all of the time.

Dogs are great judges of character, and if your dog doesn't like somebody being around, you shouldn't trust them.

  • | Post Points: 5
Not Ranked
Posts 1
Points 5
Joined: Sep 2011
FKelch replied on Wed, Sep 28 2011 9:35 PM

I love how if you go to the site and read the warning you see this amazing thing...

"However, Intego so far has only one report of this malware, and a sample provided by a user who downloaded it from a malicious web site. "

I'm sorry, but if you download flash from any non-adobe site you are a tool and deserve to be infected with whatever *** you install.

  • | Post Points: 5
Top 150 Contributor
Posts 509
Points 3,965
Joined: Oct 2010
Location: HOLLAND!!!!
jonation replied on Wed, Sep 28 2011 10:30 PM

I have never even encountered any kind of virus/trojan/etc on my mbpro. But I have had 2 warranty repairs, replaced the hdd, and had to buy a new power supply. Its 2.6 years old...

Then again I am cautious and aware- I have had very few malicious encounters on my PC as well.

CPU: e6400 @ 3.2 (H-50'd)
MB: MSI p6n
RAM: 4G adata
GPU: GTS-450 and 8800GTS for Physx
HDD: WD 500G Black
PSU: 620W Corsair  Mod.
Case: 900-2 with 7 cathodes and AP-15s
OS: W7 and Ubuntu

  • | Post Points: 5
Top 100 Contributor
Posts 992
Points 14,260
Joined: Nov 2009
Location: Ontario
Manduh replied on Sat, Oct 1 2011 2:49 PM

Marco C:

 Regardless, this just furhter proves the point that no platform is totally secure.

Exactly!

It irks me when Mac users say "time to get a Mac" when people complain about getting a virus.  In my opinion it doesn't matter what platform/device or OS you are using, it's the actual user and HOW they use their platforms/device or OS that get's themselves viruses/malware.  Sure Macs may have less but the average computer user sporting a Mac can still get them. So to just go out and "get a Mac" does not prevent the issue. Awareness, knowledge, preventative measures and smart/safe usage does.

 

PCAudioLabs Rok Box MC 7xs - Intel Core i7-2600K - Cooling: PCAL Quiet Operation - Gigabyte Z68 Motherboard - 16GB DDR3-1333 - AMD Radeon HD 5450 - Power Supply: 600 Watts - SRT Drive: Intel 311 SSD (20GB) - Primary Drive: 500GB, 7200RPM, 16MB cache - Audio Drive: 1TB, 7200RPM, 32MB cache - Sample Drive: 2TB, 7200RPM, 64MB cache - OS: Windows 7 Professional x64

  • | Post Points: 5
Not Ranked
Posts 1
Points 20
Joined: Dec 2011

What super destructive viruses for macs are you talking about precisely? I love the 'very few people use them' argument, there are at least 50 million macs in the world - sounds like a big enough number to me. When there were substantially fewer macs there were a few dozen viruses, currently there are none in the wild. That's not 'smugness', it's a simple fact. The smuggest computer users are windows fanbois who stay awake at night praying for mac viruses to appear like a swarm of locusts. Yay.

  • | Post Points: 20
Top 10 Contributor
Posts 8,623
Points 103,925
Joined: Apr 2009
Location: Shenandoah Valley, Virginia
MembershipAdministrator
Moderator

ATaylor1:
What super destructive viruses for macs are you talking about precisely?

ATaylor1:
there are at least 50 million macs in the world - sounds like a big enough number to me.

Lots of Mac out there. Yup,.........

The point is that the OSX platform isn't as secure as many people think it is. Just because you own a Mac does not make you impervious to contracting a virus.

You speak of 50 Million Macs out there, but just how many Windows PC's do you think that there may be?

~Maybe~ a few more? Smile

People who write viruses usually are interested in infecting as many PC's as possible, as fast as possible. This is done by targeting the platform with the most users. (hint: not Mac)

Macs get a break from most infections because of their weak numbers of worldwide users, resulting in less hacker interest,.....not because they are impenetrable.

Dogs are great judges of character, and if your dog doesn't like somebody being around, you shouldn't trust them.

  • | Post Points: 5
Page 1 of 1 (15 items) | RSS