Mac OS X targeted by Trojan and backdoor tool

[Strauss]

Two pieces of malicious software affecting Apple's Mac OS X appeared this week: a Trojan horse with the ability to download and install malicious code of an attacker's choice, and a hacker tool for creating backdoors, according to security vendors.

The Trojan — called 'OSX.RSPlug.D' by Intego, the Mac security specialist that discovered the threat — is a variant on an older piece of malicious code but with a new installer, Intego said.

"It is a downloader, and it contacts a remote server to download the files it installs," Intego said in an advisory. "This means that, in the future, the downloader may be able to install payloads [other] than the one it currently installs."

"Unlike true malware and Trojan horses, OSX.TrojanKit.Malez requires that a hacker already have access to a Mac in order to install the code," Intego stated.

http://news.zdnet.com/2424-9595_22-251586.html

[Strauss]

And in other related news..

[Rudman]

So some virus put on ah Trojan condom on its tool and pounding the Mac in its backdoor?......

[Raziel]

Not the first, not the last, kudos to you Strauss for giving people the heads up.

I do wish the Apple people that actually know would stop pushing the "Mac users don't need a firewall and/or AV" mentality, it will just end badly

[Strauss]

MacOS X can be attacked just like Windows. In fact a lot of Mac are dual booting windows so we getting hit on both sides.

Luckily most of the vulnerabilities so far have not been too bad. And most time require the 'hacker' to already have access to your machine or know the admin password. I guess then he would not be a hacker...

For the few harmful ones, Apple post updates the same, if not next day. Hope Apple doesn't slack off.

After all the MacOS core *is* open source. So while Apple's market share is a little under 10%, you have lots of BSD geeks out there waiting to drop a bomb on our asses.