Comments on: Crimeware comes to OS X http://blogs.mcafee.com/mcafee-labs/crimeware-comes-to-os-x Tue, 29 Nov 2011 07:51:20 +0000 hourly 1 http://wordpress.org/?v=3.3.1 By: Scented rocks http://blogs.mcafee.com/mcafee-labs/crimeware-comes-to-os-x/comment-page-1#comment-12879 Scented rocks Fri, 03 Sep 2010 23:14:19 +0000 http://blogs.mcafee.com/2007/10/31/crimeware-comes-to-os-x/#comment-12879 Looks like Puper has continue to dominate the net, its a sad situation everybody has to fear downloading, or visiting certain sites in fear of trojans, puper, and all the other viruses. Great article Allysa Looks like Puper has continue to dominate the net, its a sad situation everybody has to fear downloading, or visiting certain sites in fear of trojans, puper, and all the other viruses. Great article Allysa

]]> By: Ryan http://blogs.mcafee.com/mcafee-labs/crimeware-comes-to-os-x/comment-page-1#comment-12874 Ryan Wed, 18 Jun 2008 03:00:08 +0000 http://blogs.mcafee.com/2007/10/31/crimeware-comes-to-os-x/#comment-12874 any ideas on how to remove such malware? any ideas on how to remove such malware?

]]> By: Myusenet http://blogs.mcafee.com/mcafee-labs/crimeware-comes-to-os-x/comment-page-1#comment-12872 Myusenet Thu, 31 Jan 2008 23:58:03 +0000 http://blogs.mcafee.com/2007/10/31/crimeware-comes-to-os-x/#comment-12872 Usenet - a set of machines which exchange clauses marked with one or is more universal-recognized labels, the named teleconferences (or "groups" for short). If the above definition Usenet seems uncertain, therefore it. It is almost impossible to draw a conclusion on all sites Usenet in any not trivial way. Usenet covers the governmental agencies, greater universities, high schools, firms of all sizes, house computers of all descriptions, etc. Usenet – a set of machines which exchange clauses marked with one or is more universal-recognized labels, the named teleconferences (or “groups” for short). If the above definition Usenet seems uncertain, therefore it. It is almost impossible to draw a conclusion on all sites Usenet in any not trivial way. Usenet covers the governmental agencies, greater universities, high schools, firms of all sizes, house computers of all descriptions, etc.

]]> By: Frowbart http://blogs.mcafee.com/mcafee-labs/crimeware-comes-to-os-x/comment-page-1#comment-12871 Frowbart Wed, 07 Nov 2007 14:55:00 +0000 http://blogs.mcafee.com/2007/10/31/crimeware-comes-to-os-x/#comment-12871 [quote]Dozens of fake codec sites are serving the malicious disk image file to Mac web browsers [/quote] Do you really need a link? [quote]Dozens of fake codec sites are serving the malicious disk image file to Mac web browsers [/quote]

Do you really need a link?

]]> By: John G. http://blogs.mcafee.com/mcafee-labs/crimeware-comes-to-os-x/comment-page-1#comment-12870 John G. Fri, 02 Nov 2007 06:53:29 +0000 http://blogs.mcafee.com/2007/10/31/crimeware-comes-to-os-x/#comment-12870 Please can someone give a (non-clickable is you must) URL for a website that actually does this? We've seen the theories, now where are the actual sites that install this on a Mac? Please can someone give a (non-clickable is you must) URL for a website that actually does this?

We’ve seen the theories, now where are the actual sites that install this on a Mac?

]]> By: CopiaTECH SMB Security http://blogs.mcafee.com/mcafee-labs/crimeware-comes-to-os-x/comment-page-1#comment-12869 CopiaTECH SMB Security Thu, 01 Nov 2007 21:37:42 +0000 http://blogs.mcafee.com/2007/10/31/crimeware-comes-to-os-x/#comment-12869 Great post Allysa. It may sound simplistic, but I think Apple has become too big to ignore by the "criminal" element with successes of the iPhone & iPod. It is easy to be Anti-Microsoft, but for criminals it is all about numbers and Apple is starting to get them with these products. Michael Rowles CopiaTECH SMB Security Great post Allysa. It may sound simplistic, but I think Apple has become too big to ignore by the “criminal” element with successes of the iPhone & iPod. It is easy to be Anti-Microsoft, but for criminals it is all about numbers and Apple is starting to get them with these products.

Michael Rowles
CopiaTECH SMB Security

]]> By: Juan de Dios Santander Vela http://blogs.mcafee.com/mcafee-labs/crimeware-comes-to-os-x/comment-page-1#comment-12867 Juan de Dios Santander Vela Thu, 01 Nov 2007 15:58:33 +0000 http://blogs.mcafee.com/2007/10/31/crimeware-comes-to-os-x/#comment-12867 A few educated guesses: - As you are using an installer, you have to authenticate, and the installer script will be able to do as it pleases because it is now authenticated. Still, the installer .bom file should point to all installed files for removal. - This is not exactly a fault of Mac OS X, it is caused by shrewd social engineering: "the user is programmed" to dismiss all of the OS warnings because the user is motivated to complete the install. - The use of fake DNS lookup makes it very difficult for web-service based phising detection techniques to find out, other than pointing out that the phising detection mechanism cannot work with a working internet connection. A few educated guesses:
- As you are using an installer, you have to authenticate, and the installer script will be able to do as it pleases because it is now authenticated. Still, the installer .bom file should point to all installed files for removal.
- This is not exactly a fault of Mac OS X, it is caused by shrewd social engineering: “the user is programmed” to dismiss all of the OS warnings because the user is motivated to complete the install.
- The use of fake DNS lookup makes it very difficult for web-service based phising detection techniques to find out, other than pointing out that the phising detection mechanism cannot work with a working internet connection.

]]>