Pretty good info... except for the part about using AppCleaner.
AppCleaner is just as likely to hose a Mac system as any malware. Just use Spotlight to find associated files, don't install any more crapware to "help".
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Apple Investigating 'MACDefender' Malware, Support Staff Barred From Assisting Customers
- Thread starter MacRumors
- Start date
- Sort by reaction score
Pretty good info... except for the part about using AppCleaner.
AppCleaner is just as likely to hose a Mac system as any malware. Just use Spotlight to find associated files, don't install any more crapware to "help".
True, but I'm more inclined to agree with the other fellow who said that the people who fall for this thing are the sort of people who buy little blue pills and male enhancements from unsolicited spam emails, and are likely to send their banking info to Nigeria to claim their lost fortune.
Well, OK, this thing targets people who are a step above that.
One post a few pages back showed some detailed screenshots of what this program looks like when it's running. I noted with some interest the comment that while the program is pretending to scan your computer, it is opening up windows onto porn sites.
Is that not a Big Red Flag? On top of all the Big Red Flags like programs you've never heard of that magically show up by themselves and try to install themselves?
Then it "finds" a virus and says "Oops! Now I need your credit card info to get rid of it!" Is that not another Big Red Flag?
So the true victims of this thing are people who ignore all the Big Red Flags. I'm not saying they don't exist, but it seems to me that you'd have to be fairly gullible. The fact that all these people are calling the Apple support line instead of simply forking out their Visa numbers suggests that people are at least identifying that something's not quite right.
Do you work in the support community? If not, I wouldn't type. If so, then you should realize the prevalence of this. I do not doubt for a second that close to 50% of their support calls in the last couple weeks have been due to this, and I also do not doubt for a second that Apple is taking this exact stance on it. As others have previously said, it's no different than any other company has done. MS at least released Microsoft Security Essentials (useless), but if you actually try to place a MS support call for a malware issue, you will get basically the same response as Apple is giving.
Edit: to boccabella
Edit: to boccabella
Wow, I've not see this level of vitriolic arrogant elitism in a while.
So many people feel justified in blaming the victims of the malware instead of addressing the real problem - ensuring the platform is as solid as it can be.
Having Apple prohibit its staff from helping is really a nice consumer focused approach as well
So many people feel justified in blaming the victims of the malware instead of addressing the real problem - ensuring the platform is as solid as it can be.
Having Apple prohibit its staff from helping is really a nice consumer focused approach as well
I agree, but what would you suggest? How can we protect from this sort of program? Short of having Finder intervene and say "Whoops, hang on, I've heard of MacDefender, I don't think you should open this"? (Which may well happen, but that won't protect you from the next iteration...)
The only solution I can see that would be even close to fool-proof would be to lock down Macs so they can only receive software from the App Store. But I sincerely hope it doesn't come to that.
FYI, you can use Command-F to search a web page for any text. Mac Virus/Malware InfoWill have a read of it GGJstudios. Thank you.
EDIT: Apologies if I am being dumb, could you post it again at all? I've skimmed the thread and can't see it.
Last edited by a moderator:
Pretty good info... except for the part about using AppCleaner.
AppCleaner is just as likely to hose a Mac system as any malware. Just use Spotlight to find associated files, don't install any more crapware to "help".
The files Appcleaner finds were verified first. We use ApplCleaner as we have students that work for us that may not be as technically savvy as our full-time staff. AppCleaner merely simplifies the process for them.
notjustjay: True, those are all red flags, but those are red flags that you see -after- the installation. and sure, there are red flags before that, and yes, the people that fall for this on Macs are in dire need of education; that's not a point I'm arguing at all.
The point I am arguing is that the average Mac user is not automatically more educated on their computer than anyone else. This is a cross-platform education deficit, not something specific to Windows or Mac users alone.
Obviously, I did, since I quoted it. My point is that AppCleaner isn't fully removing apps. You're better off not using it and having them simply drag the app to the Trash. If you want to fully delete an app, AppCleaner won't work. App removal software doesn't do a thorough job. Read this
Last edited by a moderator:
There is no fool proof approach but to start with it would be a nice move for apple to properly enable the support staff to provide aid and education to the consumers instead of turning a deaf ear.
Apple has been knocked before regarding its dealings with security and not being as transparent as it should be.
I did a CMD-F looking for each reply you posted in this thread and couldn't see any links (bad eyes!).
Interesting stuff about the elevated privileges of Sophos. I'll uninstall it for now (no point in tearing a large hole in your bucket to fill another smaller hole).
Thanks!
It may have ended up on another page, since the thread is moving so fast. It's cool, though. It helps to have it posted a few times in a long thread.
A Trojan is in affect, a virus.
And virii and Trojans can easily be avoided on pc's as well.
In my almost 20 years of using pc's I can count the number of times I've had a virus on one hand.
But then, i also know people who have problems with virii on a regular basis.
No, it isn't. They are two different animals. Read the Mac Virus/Malware Info to learn the difference.
Last edited:
It doesn't have to be locked down. But Apple could do things to very strongly discourage you from installing certain software. For example, put up a screen where you have to select what type of software it is, how much you paid for it, and so on. Psychologically designed so that software that you didn't actually intend to download doesn't have a chance to get through.
Obviously you either didn't read my post or didn't fully understand it. We have identified the files that are included, and verified that applcleaner does in fact find them. period. thanks for the input though
Well that's a daft statement in itself if ever I saw one.
Nothing to suggest they're the same kind of people at all. If you're not tech-savy but have heard something about viruses and just know they're a bad thing, you might think you are infected and need the 'software'.
It's much easier to pray on those who aren't confident with computers; they're far more suggestible to these kinds of things. People who fall for the Nigerian bank scam aren't in the same position of vulnerability.
Whatever buddy.
I've been using computers for 30 years.
Trojan, virus, it's all the same.
You can twist and turn it however you please.
I'm not going to argue semantics.
Apple written policy and Apple in reality are two completely different things. I take it you've never worked for Apple. I have, written policy is there for show.
Just because someone has used computers for any period of time doesn't mean they're fully informed about them. I know people that have been driving cars for 50+ years, but still don't know how to change spark plugs or how engines work.
It's not, actually. It's not semantics; it's a noticeable and important difference.
A Trojan is a program that hides what it really does by pretending to be something else. Trojan Horse, Greek mythology, blah blah blah. They left the thing at the gates and the folks from Troy voluntarily brought it inside, thinking it was something else. Once it did its damage to the one castle, that was the end of it.
A virus shows up on its own, through nothing of your own doing, and replicates itself as it spreads around. You catch a flu bug through no special action of your own, but you do end up passing it on to the other folks living in your house. Left unchecked it could ultimately spread all across town.
Ultimately you choose to bring in a Trojan Horse (like Mac Defender). You don't choose to bring in a virus, it shows up by itself (by taking advantage of some system vulnerability, then using that to transmit itself to the next victim).
What good will that do now that Wave is up and running, every single call is being recorded and calls are randomly (or specifically if they suspect something) reviewed?