Mac OS X Trojan reported in the wild

By on June 20, 2008, 3:19 PM
We typically hear about malware makers taking aim at Windows systems – which makes sense given the large install base – but with the rise in popularity of Apple and its OS X operating system, more and more we’re seeing dangerous malware, viruses and Trojans now being targeted for the Mac, too.

A new Trojan reported by SecureMac is an example of that, with the security vendor saying that variants of the AppleScript.THT Trojan horse spotted in the wild could affect users of Mac OS X Tiger and Leopard. The Trojan exploits a vulnerability within the Apple Remote Desktop Agent enabling complete access to a user’s system. It can log keystrokes, take screen shots, take pictures with the iSight camera, and enable file sharing, all while avoiding detection by opening ports in the firewall and turning off system logging.

The vulnerability is rated critical and in order to get infected a user must first download and install the malicious file, which is being distributed as both a compiled AppleScript or as an application bundle. SecureMac of course took the opportunity to pitch its MacScan antispyware security software as a solution for against this threat.

User Comments: 4

Got something to say? Post a comment
TimeParadoX said:
At least MAC users can now shut the hell up about being "MACs r cooler than PCz because we got no viruses lol"
jesse_hz said:
1. Mac users can't shut up.2. Macs are cool because the GUIs are pretty, and because they are usually better at keeping things simple.
thejedislayer said:
I guess the guy off of the commercial can stop picking on the M$ guy because PC now aren't the only one's known to have malicious software. Rofl.
sngx1275 said:
Did you guys read the last paragraph of the post? You still have to download, run it, bypass a warning that tells you you are about to run something you downloaded from the internet and it may not be safe.That is probably why "mac users can't shut up". Because Windows users hear about an exploit or some vulnerability and immediately jump to post bashing Mac users without reading what has to be done to be affected. Also its Mac not MAC. MAC is an address your ethernet card has.
Load all comments...

Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.