Sophos: 150,000 Mac users made 50,000 malware reports

By on November 24, 2010, 9:56 AM
Earlier this month, Sophos declared that Mac users should not ignore malware and released Sophos Anti-Virus Home Edition for Mac for free. After a few weeks, the security company now has a little data to share.

Sophos says it has some 150,000 active users, meaning those who download updates from its servers, so far. Furthermore, in the first two weeks of availability, the company said it counted just under 50,000 malware reports from the Mac users. The top 20 chart below shows the percentage of malware reports by users of the Mac product for the most commonly encountered malware that they are seeing:

The top threat, Mal/ASDFDldr-A, is how Sophos detects malicious files that use the scripting capability of Microsoft Media Player to force a user to visit an infected site instead of playing a video. The infected media files are typically blank (no music, no video) but are several megabytes in size due to null padding, and they are distributed posing as music from Lady Gaga, ABBA, Madonna, and so on.

There's also a lot of cross-platform Java-based attacks in the list, many of which have been designed to download further Windows-based attacks to computers, but they could easily be adapted to download Mac-based threats too. It's no wonder that Java is on Apple's kill list.

There's also some Mac OS X-specific malware: OSX/Jahlav and DNS Changer. These are well known Mac Trojans typically found all over the Web disguised as downloads, plug-ins, or videos.

"We don't see as much Mac malware as Windows malware," Sophos said in a statement. "Not by a long shot. But that doesn't mean that Mac users can afford to have their heads in the sand about about protecting their precious computers. And, unfortunately, so long as Mac users don't properly defend themselves they will increasingly be perceived as a soft target by cybercriminals."





User Comments: 8

Got something to say? Post a comment
KG363 KG363 said:

One less thing for mac users to brag about.

Guest said:

Those are malware "seen" by Macs; not malware that have affected Macs. There is an important difference.

There is plenty of malware out there. Of course, Macs can see it.

The number 1 item on that list is malware that affects Microsoft's Media Player.

Emil said:

Guest said:

Those are malware "seen" by Macs; not malware that have affected Macs. There is an important difference.

Read the article and you'll realize you're not completely right.

fpsgamerJR62 said:

Malware targets everyone using a computer regardless of which OS is being used. Each of us is responsible for the security of our personal computers whether online or offline.

gwailo247, TechSpot Chancellor, said:

A virus spreads the fastest through a population that has no immunity.

If the Catholic Church can acknowledge that condoms should be used to halt the spread of AIDS, Steve Jobs can admit that there are Mac viruses out there.

mario mario, Ex-TS Developer, said:

For those Mac trojans to work you actually have to put your administrator password for it to run.

Guest said:

@marioestrada: Not to burst your bubble but plenty of malware can do at least 2 things to gain root privelges:

1. exploit a running process that has root priveleges

2. run at user-level and then use a local priviledge escalation hack to get root.

this is the minimum. gg.

avoidz avoidz said:

At 3.6 percent market share, Mac is not much of a target for malicious programming.

Load all comments...

Add New Comment

TechSpot Members
Login or sign up for free,
it takes about 30 seconds.
You may also...
Get complete access to the TechSpot community. Join thousands of technology enthusiasts that contribute and share knowledge in our forum. Get a private inbox, upload your own photo gallery and more.