New Mac virus skirts Gatekeeper, initiates creepy reverse-shell connection

Rick

TS Evangelist
A new trojan virus is targeting computers running Mac OS X and initiating an encrypted reverse-shell connection, allowing attackers potentially unfettered access to infected machines armed with basic, inbound-only firewalls. Security firm Intego appears to be the first to report...

[newwindow="https://www.techspot.com/news/51689-new-mac-virus-skirts-gatekeeper-initiates-creepy-reverse-shell-connection.html"]Read more[/newwindow]
 

Timonius

TS Evangelist
Uh oh...time to switch to Linux. ;p (depending on the distro - it can be very difficult for a casual user to allow things to get screwed up - ie installing crapware, bypassing admin level permission...)
 
G

Guest

Obviously any anti-virus developer is eager to inflate any fear of a virus on a Mac, but could anyone explain to me, how can a virus appear on my computer, if I don't install any unknown or pirated software? In the article it is unclear how the "virus" would get into a computer in the first place.
 

highlander84

TS Booster
Uh oh...time to switch to Linux. ;p (depending on the distro - it can be very difficult for a casual user to allow things to get screwed up - ie installing crapware, bypassing admin level permission...)

I have yet to see a virus for Linux that can do any harm with out SU or root.... So unless your dumb enough to run as root, or allow something unknown root access...
 
G

Guest

Ever hear of drive-by infection?
There are many ways you can get infected without actually installing something yourself.
 
G

Guest

*nix is susceptible to exploits by allowing normal users to exploit out-dated or patch-less services, e.g., Sendmail.

Also, this hack was accomplished through a Java exploit, which is also exploitable on *nix.
 
G

Guest

A reverse shell is pretty bad. I'd consider that just as harmful as a virus.
 

SNGX1275

TS Forces Special
*nix is susceptible to exploits by allowing normal users to exploit out-dated or patch-less services, e.g., Sendmail.

Also, this hack was accomplished through a Java exploit, which is also exploitable on *nix.
The java exploit one is different from what am reading.

The one this article mentions has not been seen in the wild. It not being seen in the wild and being discovered by Intego can lead to some speculation on its origin. They also reported it as a targeted attack (although they didn't say who was targeted) so threat to the general public at this point is very low.
 
G

Guest

Uh oh...time to switch to Linux.
I would rather stick with Mac than to switch to Linux. Why? I'm using Time Capsule, iPhone (with iTunes), and Final Cut Pro X on my Mac. Can Linux support those? No! Those three things are too important for me to give up for a security feature that is too superficial in comparison.
 

Latest posts