Spyware Warrior Spyware Warrior
Help with Spyware, Hijacking & Other Internet Nuisances
 
FAQ :: Search :: Memberlist :: Usergroups :: Register
Profile :: Log in to check your private messages :: Log in

First rogue cleaner for the Mac

 
Post new topic   Reply to topic    Spyware Warrior Forum Index -> Spyware/Adware in the News
View previous topic :: View next topic  
Author Message
datababe
Warrior


Joined: 13 Dec 2004
Last Visit: 10 Oct 2012
Posts: 217
Location: Inside your head

PostPosted: Tue Jan 15, 2008 8:22 am    Post subject: First rogue cleaner for the Mac Reply with quote

Well, it was only a matter of time:

http://www.f-secure.com/weblog/archives/00001362.html

Quote:
"I visited the macsweeper.com website.
I know I probably shouldn't have but I used a Windows PC so I knew I wouldn't get infected."


WHOA!! Shocked

Okay, MS had better not miss this opportunity to fire off a comeback commercial....
_________________
- Datababe
Until you spread your wings, you'll have no idea how far you can walk.
http://redoakranch.x10hosting.com
http://datababe007.blogspot.com
Back to top
View user's profile Send private message Visit poster's website
datababe
Warrior


Joined: 13 Dec 2004
Last Visit: 10 Oct 2012
Posts: 217
Location: Inside your head

PostPosted: Tue Jan 15, 2008 10:07 am    Post subject: Reply with quote

Okay, now I'm wondering...

http://forums.macrumors.com/showthread.php?t=83743

Is this just a new spin on old news? Rolling Eyes
_________________
- Datababe
Until you spread your wings, you'll have no idea how far you can walk.
http://redoakranch.x10hosting.com
http://datababe007.blogspot.com
Back to top
View user's profile Send private message Visit poster's website
tripkill201
Warrior


Joined: 24 Jun 2007
Last Visit: 23 Feb 2008
Posts: 175
Location: Approximately 2.3698 billion light years away.

PostPosted: Tue Jan 15, 2008 1:29 pm    Post subject: Reply with quote

It doesn't help that there's a rogue codec for the Mac roaming out on pr0n sites either. Looks like those Mac commercials about it being safer than Windows from malware are going to be out of date really, really soon, deducing from the current string of attacks. I wonder what used-to-be Windows-specific malware will be cloned next for Mac, Virtumonde? We already have Zlob/fake codec and SmitFraud clones.
_________________


The stakes are immense, the task colossal, the time is short. But we may hope ó we must hope ó that manís own creation, manís own genius, will not destroy him. -Albert Einstein
Back to top
View user's profile Send private message
mikey
Malware Expert


Joined: 12 Feb 2004
Last Visit: 29 Jan 2014
Posts: 1071
Location: CenTex

PostPosted: Tue Jan 15, 2008 1:58 pm    Post subject: Reply with quote

Ref; http://www.heise-security.co.uk/news/101821

Quote:
First rogue anti-spyware application for the Mac

The Spyware Warrior site lists numerous well known rogue anti-spyware products and explains why they are bogus. However, MacSweeper is not even mentioned there. Before installing any anti-spyware solution, users should make sure that they are not installing a useless program on their machines.

Mac users are increasingly being targeted by crooks and malware authors. Trojans such as OSX.RSPlug.A , which redirect browsers to phishing websites that try to acquire confidential online banking or eBay information, have been circulating freely since late last year.

Back to top
View user's profile Send private message Visit poster's website
Nightmaretony
Warrior


Joined: 15 Mar 2005
Last Visit: 30 Jun 2011
Posts: 256
Location: Meadowbrook

PostPosted: Tue Jan 15, 2008 3:39 pm    Post subject: Reply with quote

uh Eric, methinks it is a hint as to the rogue software gallery may need a little....updating....
_________________
For this is the place
where dreams
and nightmares
are birthed
and bred

Nightmare Park
Back to top
View user's profile Send private message Visit poster's website AIM Address
suzi
Site Admin


Joined: 27 Jul 2003
Last Visit: 16 Apr 2014
Posts: 10310
Location: sunny California

PostPosted: Tue Jan 15, 2008 10:22 pm    Post subject: Reply with quote

If you are addressing Eric, he won't see it here.
_________________
Former Microsoft MVP 2005-2009, Consumer Security
Please do not PM or Email me for personal support. Post in the Forums instead and we will all learn. Smile
Back to top
View user's profile Send private message Visit poster's website
Nightmaretony
Warrior


Joined: 15 Mar 2005
Last Visit: 30 Jun 2011
Posts: 256
Location: Meadowbrook

PostPosted: Wed Jan 16, 2008 9:28 am    Post subject: Reply with quote

I was. Bleah. I remember he was going for a giant update. Problem is, the world is moving so fast on it, better to get the update going half (biblical beast of burden) than to keep waiting and let the world pass on by. I consider the rogue list canonical, but only until it stopped being updated.
_________________
For this is the place
where dreams
and nightmares
are birthed
and bred

Nightmare Park
Back to top
View user's profile Send private message Visit poster's website AIM Address
datababe
Warrior


Joined: 13 Dec 2004
Last Visit: 10 Oct 2012
Posts: 217
Location: Inside your head

PostPosted: Wed Jan 16, 2008 11:46 am    Post subject: Reply with quote

I'm loving the comments on the f-secure blog. Very Happy

http://www.f-secure.com/weblog/archives/comments.html?PostID=00001365

Website already blocked at my place of employ. Wink





(go me!)
_________________
- Datababe
Until you spread your wings, you'll have no idea how far you can walk.
http://redoakranch.x10hosting.com
http://datababe007.blogspot.com
Back to top
View user's profile Send private message Visit poster's website
suzi
Site Admin


Joined: 27 Jul 2003
Last Visit: 16 Apr 2014
Posts: 10310
Location: sunny California

PostPosted: Wed Jan 16, 2008 11:56 am    Post subject: Reply with quote

Nightmaretony wrote:
I was. Bleah. I remember he was going for a giant update. Problem is, the world is moving so fast on it, better to get the update going half (biblical beast of burden) than to keep waiting and let the world pass on by. I consider the rogue list canonical, but only until it stopped being updated.


You could contact him about it. Wink
_________________
Former Microsoft MVP 2005-2009, Consumer Security
Please do not PM or Email me for personal support. Post in the Forums instead and we will all learn. Smile
Back to top
View user's profile Send private message Visit poster's website
Nightmaretony
Warrior


Joined: 15 Mar 2005
Last Visit: 30 Jun 2011
Posts: 256
Location: Meadowbrook

PostPosted: Wed Jan 16, 2008 1:14 pm    Post subject: Reply with quote

I will. Thanks. (gotta keep the kick going to keep things runnin Smile
_________________
For this is the place
where dreams
and nightmares
are birthed
and bred

Nightmare Park
Back to top
View user's profile Send private message Visit poster's website AIM Address
Bobbi Flekman
Malware Expert


Joined: 06 Mar 2005
Last Visit: 28 May 2010
Posts: 83
Location: Midian

PostPosted: Thu Jan 17, 2008 3:14 am    Post subject: Reply with quote

Just a few that I could find in a short time...

16 February 2006: OSX/Leap.A
18 February 2006: OSX/Inqtana-A
30 June 2006: OSX.Exploit.Lauchd
2 November 2006: OSX.Macarena

For OS 9 there are also several infections.

Mac users will have to get used to being consciously using protection against malware. The marketshare is growing, so more and more a viable platform for malware writers to make a buck.

Luckily security theory is platform independant because Mac users will have to do the same stuff that Windows users have to.
_________________
[url="http://www.uniteagainstmalware.com/forums/"][/url]
Back to top
View user's profile Send private message Visit poster's website AIM Address Yahoo Messenger MSN Messenger
datababe
Warrior


Joined: 13 Dec 2004
Last Visit: 10 Oct 2012
Posts: 217
Location: Inside your head

PostPosted: Fri Jan 18, 2008 4:16 pm    Post subject: Reply with quote

Luckily, malware and malware-removal frauds are pretty much mainstream news these days, and groups and forums (like this one) are now firmly in place to quickly check out these scams as soon as they surface, and equally quickly spread the word. It's not quite the same wide open, virgin territory that the first wave of con artists enjoyed. Yes, it's still a battle, but there's more people in the fray against the crooks now, and they're better informed and better armed.

I know it's just the first shot across the bow, but I'm hoping these MacSweeper macaroons turn out to be representative of other up and coming Mac attackers. If that were to be the case, Mac users may still not have too much to worry about. Wink
_________________
- Datababe
Until you spread your wings, you'll have no idea how far you can walk.
http://redoakranch.x10hosting.com
http://datababe007.blogspot.com
Back to top
View user's profile Send private message Visit poster's website
suzi
Site Admin


Joined: 27 Jul 2003
Last Visit: 16 Apr 2014
Posts: 10310
Location: sunny California

PostPosted: Fri Jan 18, 2008 7:54 pm    Post subject: Reply with quote

I think this rogue is new but has the same name as a legitimate older application. I read that somewhere, can't remember where now.
_________________
Former Microsoft MVP 2005-2009, Consumer Security
Please do not PM or Email me for personal support. Post in the Forums instead and we will all learn. Smile
Back to top
View user's profile Send private message Visit poster's website
Nick
Site Admin


Joined: 27 Feb 2004
Last Visit: 28 Mar 2014
Posts: 3913
Location: California

PostPosted: Fri Jan 18, 2008 9:12 pm    Post subject: Reply with quote

There was an older program called Macsweeper, but it's been dead for awhile. If you search the Macworld forums or other Mac sites, you can come across old posts about it.

This particular rouge is a complete joke. They must not know their Unix because the program doesn't ask for an admin password when it installs. Thus it does not ave root access and can be easily removed by dragging it to the Trash and emptying the Trash.
_________________
Nick's Security Ticker

Back to top
View user's profile Send private message
Display posts from previous:   
Post new topic   Reply to topic    Spyware Warrior Forum Index -> Spyware/Adware in the News All times are GMT - 8 Hours
Page 1 of 1

 
Jump to:  
You cannot post new topics in this forum
You cannot reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum



smartBlue Style © 2002 Smartor
Powered by phpBB © 2001, 2002 phpBB Group