Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
The First Mac OS X Virus?
- Thread starter MacRumors
- Start date
- Sort by reaction score
Really, this is barely different from me writing a little app that just starts deleting files randomly, and then distributing it as "omgcoolapp.app". Just a little more sophisticated in what it attempts to do, and significantly more buggy 
It's not a virus, but it is a nice wakeup call for people who think that their computer can magically determine what "harmful" is and disable anything "harmful".
It's not a virus, but it is a nice wakeup call for people who think that their computer can magically determine what "harmful" is and disable anything "harmful".
autrefois
macrumors 65816
Heb1228 said:
I fully admit my ignorance about viruses et al., so this will be my last post in this thread since I can't really contribute anything else. But if you see "virus" in subsequent posts from other people like me who are concerned members of the Mac community but who aren't as tech-savvy as we should be, please just imagine you're seeing whatever the correct term is.
Man, all this fuzz for what is a badly disguised trojan, and that's in the worst case, the analysis isn't even finised, yet.
If you double-click downloaded stuff from the net, without knowing what it is, you will get burned, Mac OS X or not, malware is just too easy to write, regardless of operating system...
Screaming Virus, virus! will probably not help after manually running something you shouldn't... common sense before double-clicking will...
Edit: I cannot believe this made the front page... It's a page two story, and barely that...
If you double-click downloaded stuff from the net, without knowing what it is, you will get burned, Mac OS X or not, malware is just too easy to write, regardless of operating system...
Screaming Virus, virus! will probably not help after manually running something you shouldn't... common sense before double-clicking will...
Edit: I cannot believe this made the front page... It's a page two story, and barely that...
So I don't get it.... It inserts this piece of code in each of the programs installed on the computer and then what? Does it propogate to other computers? Does it just really slow down everything by having many copies of it running at once? Will it eat my first born child?
A few important points
-- At this time, I would classify this as a Trojan, not a virus
-- It does not exploit any security holes; rather it uses "social engineering" to get the user to launch it on their system
-- It requires the admin password if you're not running as an admin user, otherwise it can't copy its payload into your applications
-- It is a PPC executable, and appears to fail on Intel executables
-- We don't yet know what the code does that executes when you launch an application after this trojan has done its thing
For more updates as they come, please go here:
http://www.ambrosiasw.com/forums/index.php?showtopic=102379
-- At this time, I would classify this as a Trojan, not a virus
-- It does not exploit any security holes; rather it uses "social engineering" to get the user to launch it on their system
-- It requires the admin password if you're not running as an admin user, otherwise it can't copy its payload into your applications
-- It is a PPC executable, and appears to fail on Intel executables
-- We don't yet know what the code does that executes when you launch an application after this trojan has done its thing
For more updates as they come, please go here:
http://www.ambrosiasw.com/forums/index.php?showtopic=102379
dull
...all we need to do now is get Apple Mail to send it to every person in our address books and we can have fun just like our windoze (you can't play games on a mac) friends.
Is this another non story just so we can toss a non story at people who argue that a Mac will be just as crap as windows given time and enough crazy automation in our email clients?
...all we need to do now is get Apple Mail to send it to every person in our address books and we can have fun just like our windoze (you can't play games on a mac) friends.
Is this another non story just so we can toss a non story at people who argue that a Mac will be just as crap as windows given time and enough crazy automation in our email clients?
No Permission, No Virus
Look before you click.....
Mitthrawnuruodo said:Man, all this fuzz for what is a badly disguised trojan, and that's in the worst case, the analysis isn't even finised, yet.
If you double-click downloaded stuff from the net, without knowing what it is, you will get burned, Mac OS X or not, malware is just too easy to write, regardless of operating system...
Screaming Virus, virus! will probably not help after manually running something you shouldn't... common sense before double-clicking will...
Look before you click.....
And Safari should have presented a warning prior to downloading an executable file. I don't believe other browsers would.Mitthrawnuruodo said:Man, all this fuzz for what is a badly disguised trojan, and that's in the worst case, the analysis isn't even finised, yet.
If you double-click downloaded stuff from the net, without knowing what it is, you will get burned, Mac OS X or not, malware is just too easy to write, regardless of operating system...
Screaming Virus, virus! will probably not help after manually running something you shouldn't... common sense before double-clicking will...
Ulp - I happen to own that MOI track! Also [playlistId=548647&s=143441&i=548625]It's the End of the World As We Know It[/playlistId].iMeowbot said:
The difference between this program ("latestpics") and previously publicized Trojan horses is that latestpics (apparently) has an intent of real harm, rather than being a demonstration of a security weakness, such as the one described here.
The software released by latestpics apparently has an attribute of a computer virus: trying to replicate itself.
There are two weaknesses inherent in a desktop operating system: the software and the person using the computer. This one seems to be trying to take advantage of both.
Removing the installed code appears to be a nontrivial task, but so far I have not seen a report of data destruction, just the code trying to install itself within applications folders.
What we know is preliminary. More information is certain to surface.
xsedrinam said:
Safari doesn't know what the hell's inside of a tarred and gzipped file, nor does any other browser.
I'm curious to know what this li'l fella does. And also wondering why everyone is so upset. If I sent you a shell script with a certain rm command in it, that copies itself to all shared network drives, it would probably do much worse than this one. Whoever wrote this trojan is being very nice to us. We had no warning and no real defense, so what was to stop this chap from nuking all our hard drives? He might just want to prove a point, which he has done adequately by getting everyone's panties into a twist
It's important to keep that in mind -- a little bit of humility (and not underestimating the creator) will go a long way. Be nice, concentrate on bettering your personal behavior (like that nice bearded Spock fellow has said), once bitten twice shy, and all that.
swingerofbirch
macrumors 68040
I don't know what the definition of a virus is, but when Mac OS Tiger first came out there was a vulnerability where if you browsed to a directory on the Internet that only contained a widget file it would automatically install itself as a widget on your dashboard. Apple since has you confirm if you want to install widgets.
Wow this is really cool. Everyone thinks Macs are imune to viruses and I'm glad that someone proved that they are very wrong. The only reason Macs rarely get viruses is because such a small percentage of people use them. This is great...I'll finally be able to shut up my Mac loving friends.
By the way I don't support the making of viruses I think its bad. I just think its cool someone proved the Mac lovers wrong.
By the way I don't support the making of viruses I think its bad. I just think its cool someone proved the Mac lovers wrong.