Sponsor for PC Pals Forum

Author Topic: Rogue antivirus tool targets Mac users  (Read 1789 times)

Offline Clive

  • Administrator
  • *****
  • Posts: 75152
  • Won Quiz of the Year 2015,2016,2017, 2020, 2021
Rogue antivirus tool targets Mac users
« on: January 16, 2008, 13:00 »
Mac users are being warned against downloading a "free" rogue security application, MacSweeper, which guarantees to find a virus on Apple systems.

Finnish security company F-Secure says the application is reminiscent of scams that often target Windows users.

By making the intended victim believe they have a virus, the distributors of MacSweeper hope to sell software to the concerned user. Should a user make a purchase, they will find themselves paying for software that simply doesn't work.

"It claims to clean compromising files from your Mac and it will always find something to fix/clean, but the only way to do so is to buy the program," explained F-Secure threat response manager, Patrik Runald, on his blog.

"[It's] designed to trick people into thinking that they have security problems and that the only way to solve it is to buy the software. Up until now this has been a Windows-only problem, but that's not the case anymore," added Runald.

Runald blamed the increasing user base of Mac OS X for the emergence of such scams.

"Mac users will increasingly come under attack from bad guys and this new rogue application and the constant stream of new variants of [Mac Trojan] DNSChanger is proof of that. It doesn't mean that Mac is becoming less secure in and of itself. But it does mean that Mac users will have to watch out for social-engineering tricks just like Windows users have had to do for years," Runal said.

The distributors of MacSweeper ? apparently a company called Kiwi Software ? are also fleecing Symantec: Runald said they have copied the security company's "About us" blurb and replaced its name with their own.

Late last year, security vendor Intego claimed to have found the first Trojan targeting Mac OS X Tiger, DNSChanger. The malware distributors attempted to infect Macs by offering a video streaming decoder ? a codec ? that the distributors claimed could decode porn that was not viewable through QuickTime. Like this latest scam, the distributors used social-engineering techniques to trick users into downloading the software.

The Trojan worked by changing a Mac's DNS settings to redirect victims to porn websites. F-Secure later reported it had discovered 32 variants of the Trojan and said it was related to the group distributing the Zlob Trojan.


Offline Rik

  • Former Admin
  • *****
  • Posts: 26506
  • Ceud mille failte
Re: Rogue antivirus tool targets Mac users
« Reply #1 on: January 16, 2008, 13:30 »
You really wouldn't want to catch a virus in a grubby old raincoat, would you. :)
Slainthe!

Rik

Offline Sandra

  • Ultimate Member
  • *******
  • Posts: 12155
Re: Rogue antivirus tool targets Mac users
« Reply #2 on: January 16, 2008, 14:23 »
Not if it was something like scrapie or some other ovine diseases that he could pass on to his friends :sheep:

Offline Rik

  • Former Admin
  • *****
  • Posts: 26506
  • Ceud mille failte
Re: Rogue antivirus tool targets Mac users
« Reply #3 on: January 16, 2008, 14:53 »
 :rofl:
Slainthe!

Rik


Show unread posts since last visit.
Sponsor for PC Pals Forum