And you thought your MAC was safe?

[Amida]

Mac Trojan discovered

TrendMicro is reporting on a newly-discovered fourth member of the OSX_JAHLAV malware family, says ZDNet.

The latest variant once again relies on social engineering, this time spreading under a QuickTime Player update (QuickTimeUpdate.dmg) with a DNS changer component enabling the malware authors to redirect and monitor the victim's traffic.

Not only are cyber criminals beginning to acknowledge the “under-served” Mac OS X segment, they're also already borrowing tricks from the Microsoft Windows playbook such as OS-independent tactics like fake codecs and bogus video players.

 

[Ou grote]

tx
I'll sell my mac today.

 

[phiber]

Well you would have to install quicktime from their dmg right? Think i might need to start looking into antivirus for my mac though

 

[phiber]

tx
I'll sell my mac today.

Thanks, I'll take it off your hands for a windows machine fully loaded with billions of these trojans

 

[Ou grote]

Well you would have to install quicktime from their dmg right? Think i might need to start looking into antivirus for my mac though

Seems so.
I get mine through software update, not sure why anyone will download it from another site.

Thanks, I'll take it off your hands for a windows machine fully loaded with billions of these trojans

 

[phiber]

Yea I go through the update as well. Apple will probably patch this "trojan" with an update, as they usually do.

 

[paint_by_numbers]

Yea I go through the update as well. Apple will probably patch this "trojan" with an update, as they usually do.

Erm. I think they already have. http://support.apple.com/kb/HT3776

Check your Software Update

 

[Synaesthesia]

If only every Windows trojan or piece of malware made the news!

 

[Ou grote]

It's like airline crashes/failures, every time something goes wrong anywhere in the world it makes headlines.
Car crashes...

 

[PeterCH]

The latest variant once again relies on social engineering, this time spreading under a QuickTime Player update (QuickTimeUpdate.dmg) with a DNS changer component enabling the malware authors to redirect and monitor the victim's traffic.

This has always been possible. If you give the trojan your admin password - it can do anything to your system. You can only get this trojan if you install it yourself.

 

[phiber]

Erm. I think they already have. http://support.apple.com/kb/HT3776

Check your Software Update

Will check tonight. Work doesn't let me use my mac... have to use a windoze machine