We briefly mentioned this on Monday, but there's more info about the Mac OS X Trojan horses recently sighted.
One of them, seen in the wild, is disguised as a Mac program called PokerGame.app. If you type in your administrator password at the prompt, the hacker will be able to remotely access your Mac through a SSH tunnel. But another Trojan, so far just a proof of concept, actually gives the hacker root access, via an ARDAgent vulnerability in the operating system.
This has naturally led to more concern about the rising threat of Mac OS X malware, and we're sure to hear more about it as the Mac platform becomes more and more popular. Prominent hacker Dino Dai Zovi offers some suggestions for Apple to put better malware protection into Snow Leopard. Until then (and even after then, of course), it's up to everyone to stay vigilant.
Comments
Print
Email
Links:
[1] http://www.maclife.com/user/sochs
[2] http://www.maclife.com/article/mac_trojan_horse_found_in_the_wild
[3] http://www.macnewsworld.com/rsstory/63574.html
[4] http://it.slashdot.org/article.pl?sid=08/06/25/0032226&from=rss
[5] http://news.cnet.com/8301-10789_3-9976122-57.html
[6] http://www.f-secure.com/weblog/archives/00001461.html
[7] http://www.technewsworld.com/story/63574.html?welcome=1214503414
[8] http://www.theta44.org/research.html
[9] http://daringfireball.net/2007/04/interview_dino_dai_zovi
[10] http://blogs.zdnet.com/security/?p=1325
[11] http://www.apple.com/macosx/snowleopard/
[12] http://www.maclife.com/article/securityspy_1_4_1
[13] http://www.maclife.com/article/snow_leopard_for_intel_macs_only