Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.

simonsi

Contributor
Jan 3, 2014
4,850
734
Auckland
Malware. It still requires an admin password and concious installation by the owner, it cant install itself, nor spread from machine to machine.
 

2984839

Cancelled
Apr 19, 2014
2,114
2,230
Malware. It still requires an admin password and concious installation by the owner, it cant install itself, nor spread from machine to machine.

Maybe. Unless there has been an update, nobody knows yet how this one works.
 

2984839

Cancelled
Apr 19, 2014
2,114
2,230
Yes they do

http://news.drweb.com/show/?i=5977&c=5&lng=en&p=0

Looks like it hides itself as a JavaW app and needs installing just as any malware does.

More interestingly if the command method has been intercepted (both the reddit search and the listed ip's can be blocked now), then the botnet is fatally compromised.

They didn't say how it is installed; only what it does once it is. I can't find any info on how it gets onto a system. A trojan would be the simplest way, but a browser vulnerability is a possibility as well.
 
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.