At best, it's a trojan. Still no viruses on MacOS X...
I wouldn't even call it that, it just asks for a credit card number, it doesn't seem to harm anything or steal your data.
More like an annoyance.
At best, it's a trojan. Still no viruses on MacOS X...
That's never been a reason to give up. I was raised on Shonen Anime. I don't know the meaning of the words "giving up".![]()
Bigger, most Windows PC have anti-virus, can you say the same for Macs?
Huge difference in my experience. The Windows UAC will pop up for seemingly mundane things like opening some files or opening applications for the first time, where as the OS X popup only happens during install of an app - in OS X, there is an actual logical reason apparent to the user. It is still up to the user to ensure the software they are installing is from a trusted source, but the reason for the password is readily apparent.
The only effective method for complete app removal is manual deletion:4. Run a Spotlight search for "MACDefender" to check for any associated files that might still be lingering
That's a sure way *not* to find any related files.
That doesn't protect Windows PCs from malware from other sources, which is a far greater threat than receiving files from a Mac. Each Windows user should be running their own anti-virus, to protect them from malware from all sources.One thing Macs need anti-virus is to scan mails for Windows viruses, so that those doesn't to you PC. That is all.
No, only a virus can do that. A trojan requires user involvement to spread.Yes so much. Because Malware can copy itself and infect a computer.
This isn't a virus.So few virus for MAC than when one appears it is news...![]()
I agree. While no Mac OS X viruses exist at this time, that doesn't mean they won't in the future. And malware has always been a threat. What's important is to understand the kinds of threats and the most effective methods for protection.Mac OS X fanboys really need to stop clinging to the mentality that "viruses" don't exist for OS X and that "malware" is a Windows-only problem.
I wouldn't go so far as to say that. Just when you do, someone will release a new virus into the wild. While they may not be as prevalent as they once were, they're by no means extinct.The fact is, the days of viruses are long gone.
The best defense a Mac user has against current malware threats is education and common sense. Understanding the basic differences between a virus, trojan, worm, and other types of malware will help a user defend against them. Doing simple things like unchecking the "Open "safe" files after downloading" option is quite effective.The fact is, understanding the proper terminology and different payloads and impacts of the different types of malware prevents unnecessary panic and promotes a proper security strategy.
I'd say it's people that try to just lump all malware together in the same category, making a trojan that relies on social engineering sound as bad as a self-replicating worm that spreads using a remote execution/privilege escalation bug that are quite ignorant of general computer security.
That's one of the simple lines of defense for a user, as it lets them know they're about to open a newly-downloaded app. It only does that the first time you launch the app, so why bother disabling such a helpful reminder?I despise the "X is a file downloaded from the Internet" dialog introduced in SL. Really wish you could disable it.
Actually, it helps a user to have some understanding about malware. Part of the problem is a novice user is likely to engage in dangerous activities, such as installing pirated software, unless they know what a trojan is and how it infects a system. Also, understanding what a virus is, how it spreads, and the fact that none exist for Mac OS X will prevent them from instantly assuming that everything unexpected that happens on their Mac is the result of a virus. Also, understanding that antivirus apps can't detect a virus that doesn't yet exist will prevent them from installing AV and having a false sense of security, thinking they're immune to threats. Educating a user goes a very long way in protecting them, by teaching them to practice safe computing habits.To the end user it makes no difference. It's fine if you know, but to a novice quickly correcting them on the difference between a virus, a trojan, or whatever else contributes approximately zero percent towards solving the problem.
It pops up when I open Steam. "Steam would now like to auto-update itself, enter your password". Same for all my "auto-updating" apps that are installed system wide.
This conditions the user as much.
Though looking for information on this MacDefender, I'm genuinely curious how the installer "pop-ups". I haven't found anything interesting. Since Archive utility doesn't honor absolute paths in a Zip, how does the little bugger get launched ?
I turned off automatically open safe files years ago in Tiger and have migrated that setting over since.
I'm well aware of UAC. UAC also just happens to be "that annoying popup thing" that has become extremely popular for users to disable entirely since the debut of Vista.
Huge difference in my experience. The Windows UAC will pop up for seemingly mundane things like opening some files or opening applications for the first time, where as the OS X popup only happens during install of an app - in OS X, there is an actual logical reason apparent to the user. It is still up to the user to ensure the software they are installing is from a trusted source, but the reason for the password is readily apparent.
I haven't seen this malware first hand, but a zip file can be made with absolute paths, making "unzipping" the file put everything where it needs to be to start up automatically on next log in/reboot.
Who's the brainiac who made zip files "safe" ?
Bigger, most Windows PC have anti-virus, can you say the same for Macs?
"Bigger".
Uh huh. And OSX doesn't ask you to manually enter a password every time you install or change something? Windows only asks you to authorize...which is technically more "annoying"?
I actually don't know anyone who has ever disabled UAC.
If this is safari specific, it shouldn't be that big. How many people *really* use it?
Except antivirus doesn't usually catch things like this, neither does anti-spyware since it acts like a legit program.
I fix windows machines and servers for a living an unfortunately a majority of my week is spent removing said malware from windows machines.
No computer for which the user can write or install programs will ever be free of Malware (nor, to my knowledge, has the "malware free" term ever been applied to the Mac OS by anyone actually familiar with computer security). All I have to do is write a script that formats your hard drive, call it ReallyFunGame, thereby deceiving you into downloading it and running it, and poof.
I haven't seen this malware first hand, but a zip file can be made with absolute paths, making "unzipping" the file put everything where it needs to be to start up automatically on next log in/reboot.
Who's the brainiac who made zip files "safe" ?
That's one of the simple lines of defense for a user, as it lets them know they're about to open a newly-downloaded app. It only does that the first time you launch the app, so why bother disabling such a helpful reminder?
What makes you think MacOS X still contains directory traversal vulnerabilities that were reported in 2005? Do you really think MacOS X hasn't included the known fixes that were added six years ago? Opening a zip file on MacOS X _is_ safe. Of course that zip file can contain malware, which will then by on your Mac, exactly as if you had downloaded it directly. You still have to start the malware yourself, and you will still be asked by the OS if you really, really want to run the malware.
You and I have different meanings of safe. Opening a zip file that contains malware and then popping-up an installer without user intervention is hardly what I call safe.
Heck, auto-opening any kind of file is wrong as far as a proper security policy goes.
I wasn't talking about directory traversal. Just simple absolute Paths. You can make them using the -jj option to zip. This will store the full volume and path information and if you use unzip to extract the archive, it will try to place the file in that location on the system where you're unarchiving to.
Fortunately, it seems this is not what this is doing as Archive Utility does not honor absolute paths in a zip (I tested and confirmed it after someone came in earlier and spoke up about it), so something else is amiss here. Some people around other forums are suggesting that Archive Utility will automatically execute a .pkg if it is contained in an archive. Now that is unsafe if it is the case.
While you may not need a reminder for an app that you downloaded a second ago, what about an app that might get downloaded without the user's knowledge, perhaps with the name of a well-known app they currently use? The presence of this reminder would alert them to the fact that they're about to launch something other than what they expected. Besides, how often are you downloading and first-launching apps? It's not enough of an annoyance to worry about and the benefit outweighs the inconvenience for most people.It's not "helpful." I don't need to be "reminded" the file I downloaded a second ago was downloaded from the internet. I'm sure others find it useful, but for me, it's pointless and annoying..
Hum, download and install are automatic. Good thing I don't use Safari.
So few virus for MAC than when one appears it is news...![]()