simonsi

Contributor
Jan 3, 2014
4,850
734
Auckland
Malware. It still requires an admin password and concious installation by the owner, it cant install itself, nor spread from machine to machine.
 
Comment

2984839

Cancelled
Apr 19, 2014
2,114
2,211
Malware. It still requires an admin password and concious installation by the owner, it cant install itself, nor spread from machine to machine.

Maybe. Unless there has been an update, nobody knows yet how this one works.
 
Comment

2984839

Cancelled
Apr 19, 2014
2,114
2,211
Yes they do

http://news.drweb.com/show/?i=5977&c=5&lng=en&p=0

Looks like it hides itself as a JavaW app and needs installing just as any malware does.

More interestingly if the command method has been intercepted (both the reddit search and the listed ip's can be blocked now), then the botnet is fatally compromised.

They didn't say how it is installed; only what it does once it is. I can't find any info on how it gets onto a system. A trojan would be the simplest way, but a browser vulnerability is a possibility as well.
 
Comment
Register on MacRumors! This sidebar will go away, and you'll see fewer ads.