Doctor Web exposes Macintosh botnet

Russian-based Doctor Web has exposed a large-scale botnet operating on Apple's Macintosh computers, which could be a move towards anti-virus being necessary on Mac OS X machines. In fact, the scale of the actual botnet could be large enough to comprise half a million Macintosh computers, with analysts being unable to predict the full scale.

Malware for OS X, called "Backdoor.Flashback", is running on up to 550,000 different machines mostly located in the United States and Canada. Dr.Web's report is extremely detailed, including an infographic of infections by countries. The botnet stems from machines being redirected to bogus websites, or other traffic distribution systems. Sites used for this are presumably of Russian origin, but the number of sites is currently unknown.

JavaScript code is used to load to a Java-applet containing the actual exploit. At the end of March, a Google search found around four million different page which could be spreading the malware. Some posts on Apple's own user forums describe being infected with the malware when visiting DLink.com; DLink produce routers and similar devices.

Exploits are being distributed over three main weaknesses:

  • CVE-2011-3544
  • CVE-2008-5353
  • CVE-2012-0507

Vulnerabilities and exploits were being distributed from around February 2012, though the third of the vulnerabilities listed was only used from March 2012 onwards. On March 3rd, Apple fixed the vulnerability.

While you might not be caught in a botnet now, it is still worth remembering that the botnets might still be in effect with machines that were infected. It can only help to check your machine in case you have an infection. If you do it should be easily removed.

Report a problem with article
Previous Story

Review: Amped Wireless' R10000G high power router [Update]

Next Story

More Windows 8 Consumer Preview secrets revealed

82 Comments

Commenting is disabled on this article.

Oh my god... This is almost as bad as the iPhone/Android instagram s***storm that was stirred up yesterday.

FFS. Get over it! They're computers! Who the F cares?!

I have a Mac. I also have several Windows & Linux machines. I can say (with 100% certainty) that my Mac has actually crashed MORE often than my Windows machine (which is to say, KP'ed, hardlocked, or have programs become unresponsive).

It doesn't surprise my in the slightest that there are some trojans targeting Mac OS X out there.

Point is, the people who get viruses (in general) are idiots. Whether they're running Windows or Mac OS X or Linux or Solaris or OS/2. These are people that blindly click "yes" and enter their passwords on security prompts without reading them or caring to understand why they just popped up while visiting "freemoviesandtvshowsandporndotcom.ru"

Hey Mac zealots? Stop being such elitist pricks. You're making the majority of people who use Macs look bad.

Hey Windows zealots? Grow up. Work on that maturity, and learn some grammar. Realize that playing Battlefield 4 at 3840x2160 at 240fps isn't the only thing computers are for.

We need to remember-- Nothing is guaranteed to be immune forever--

They said the Titanic would never sink.....

Everyone says -- Apple computers never get Viruses.... (now maleware yes - but only through user intervention)

I seem to remember the following-- (laugh if you remember)


It will get on all your disks
It will infiltrate your chips
Yes, it's Cloner!
It will stick to you like glue
It will modify RAM too
Send in the Cloner!

(oh and that one didn't show up on every boot, but every 50 boots so it was left undetected for an extended period of time)

The bad news is that more and more people flaunt the immunity...and as the user base grows... so too will the bad things find a way in, because people will try to get in for the glory of being the first.


It sucks that there are folks that are so ignorant to believe that Mac's are immune to viruses. It sucks even more that these people blanket the Internet with these dumb statements like "Mac's don't get viruses". It sucks further that non-Mac users take these statements made by a few Mac users and extrapolate to the whole population of Mac users in order to make a point that "all Mac users are stupid".

Is it ok if I find some stupid Windows users to prove the point once and for all that all Windows users must be stupid? Because according to a lot of folks logic here, that is all that I would need.

Windows and Mac both suck for security.
Any time you add more software to improve the user experience, you are creating new attack vectors.
If you want real security run Solaris on SPARC!

Good luck compromising (using) that !

dotf said,
Windows and Mac both suck for security.
Any time you add more software to improve the user experience, you are creating new attack vectors.
If you want real security run Solaris on SPARC!

Good luck compromising (using) that !

Does that come with Solitaire?

There a half a million macs? :trollface:
Seriously though with the rise in apple products around this was going to happen sooner or later, didn't expect a botnet though.

its comical, apple gets the first large scale infection and iCry crowd goes wild! Its like Goliath beats David for once and you got something to cheer about

Never surprises me when stories like this come out. All the ignorant haters come out with it. It was never said that OSX was immune to all viruses/malware/etc or anything of the sort. It was said that it was immune to Windows viruses/malware/etc. You are only making yourself look stupid by posting misquotes. You are worse than the people that truly mistook it to mean that OSX can't get viruses. At least those people didn't know any better. You are on a tech site and should be better informed. Stop ignoring the truth or just stop misquoting. Both make you look stupid, not Apple. You have been stuck on the "I hate Apple bandwagon" so long that your intelligence is waning. /r

All this news in the past few months of botnets being taken down makes me happy. Here's to a spam free world. Yes, I know that will never happen, but I can dream.

ILikeTobacco said,
It was never said that OSX was immune to all viruses/malware/etc or anything of the sort. It was said that it was immune to Windows viruses/malware/etc.

True. They have their own malware to worry about.

I just wondering why it was taking so long for the whiners to start with the "hater" bit. Apple product not living up to the standard that they and their fans set for a Microsoft product? Just deflect the problem by yelling about haters, that will make the Apple faithful feel better about themselves.

goofyinthehead said,
I'm not a mac fan by any means but you cannot deny mac OS's track record compared to Windows for virus/malware related problems.

Microsoft's record post XP is excellent. Also the usual argument about why nobody bothers hacking Apple because the user base is too small for it to be worth while.

goofyinthehead said,
I'm not a mac fan by any means but you cannot deny mac OS's track record compared to Windows for virus/malware related problems.

Take into account marketshare and you'll see no record.

Anooxy said,

Take into account marketshare and you'll see no record.

marketshare has little to do with the percentage of users infected vs. the install-base. I'm curious to know how many macs in use vs how many are infected and how many PC's are in use vs. how many are infected.

goofyinthehead said,
I'm not a mac fan by any means but you cannot deny mac OS's track record compared to Windows for virus/malware related problems.

… and Windows mobile 6 never had any exploit or widespread malware (despite sharing the same IE flaws as IE6 and having as much as 15% market share a few years ago).

So what?

according to you, should we conclude that an unpatched Windows mobile 6 is more secure than OSX or android because it has a better track record?

goofyinthehead said,

marketshare has little to do with the percentage of users infected vs. the install-base. I'm curious to know how many macs in use vs how many are infected and how many PC's are in use vs. how many are infected.


Marketshare has everything to do with it. Why would anyone write a virus or trojan for a product that has little market share and the possibility of gaining personal financial information to exploit is so low? Thats like making a rope to push water up a hill, rather futile and not at all worth the effort. This is why Windows has the large share of malware and virus issues. When Apple systems become more prevalent in the home there will be many more trojans and virii released for them.

I just love the fact people are saying this is coming from DLink you'd think a company like that would notice malware on their website being passed out

neufuse said,
I just love the fact people are saying this is coming from DLink you'd think a company like that would notice malware on their website being passed out

Dlink website is running Mac server....

*queue the but to have this happen you have to enter 5 passwords, click yes 10 times and give them your .mac account info people oh and uninstall java its the sux0rs its all the java's fault!!!*

neufuse said,
*queue the but to have this happen you have to enter 5 passwords, click yes 10 times and give them your .mac account info people oh and uninstall java its the sux0rs its all the java's fault!!!*

Java does have a crazy bad security record, I'm ashamed to have it installed myself... stupid minecraft...

Dot Matrix said,
Not bad for an OS that's touted to be "immune" from malware.

Officially I don't think anyone at Apple ever said OSX was immune to anything...

xendrome said,

Officially I don't think anyone at Apple ever said OSX was immune to anything...

They did say many many times it doesnt get "windows" viruses which to the average person meant doesn't get viruses

neufuse said,

They did say many many times it doesnt get "windows" viruses which to the average person meant doesn't get viruses

Yep. People have this mentality where Mac is immune to all this nonsense Windows goes through. Sadly, it still carrys on to this day. I still see commercials for "Clean My PC", where it depicts PCs going through, literally thousands of problems.

*smh*

Dot Matrix said,
Yep. People have this mentality where Mac is immune to all this nonsense Windows goes through. Sadly, it still carrys on to this day. I still see commercials for "Clean My PC", where it depicts PCs going through, literally thousands of problems.

Too bad you're completely ignorant to the fact that the security vulnerabilities are related to the Java Runtime which IS NOT NOT INSTALLED BY DEFAULT.

Using your logic we should blame Windows for a vulnerability in Silverlight even though Silverlight isn't bundled with the operating system, we should blame Windows when a Microsoft Office application has a vulnerability even though Microsoft Office isn't bundled with the operating system, that we should blame Windows when there is a security vulnerability with Visual Studio even though Visual Studio isn't bundled with the operating system. See how stupid that would be? please, keep the ignorance to a minimum - this is a technology orientated website where I expect maybe a higher level of brain functionality when compared to other websites.

Mr Nom Nom's said,

Too bad you're completely ignorant to the fact that the security vulnerabilities are related to the Java Runtime which IS NOT NOT INSTALLED BY DEFAULT.

Using your logic we should blame Windows for a vulnerability in Silverlight even though Silverlight isn't bundled with the operating system, we should blame Windows when a Microsoft Office application has a vulnerability even though Microsoft Office isn't bundled with the operating system, that we should blame Windows when there is a security vulnerability with Visual Studio even though Visual Studio isn't bundled with the operating system. See how stupid that would be? please, keep the ignorance to a minimum - this is a technology orientated website where I expect maybe a higher level of brain functionality when compared to other websites.

lets go back to the averge user though, anything that runs in that OS is to them the OS's problem... I don't know how many times I've seen iTunes work like crap and the user blame it on the computer as "my computer is a POS" or windows have a flash problem and get "windows sucks".....

neufuse said,

lets go back to the averge user though, anything that runs in that OS is to them the OS's problem... I don't know how many times I've seen iTunes work like crap and the user blame it on the computer as "my computer is a POS" or windows have a flash problem and get "windows sucks".....


So novice ignorance is the base for making judgements now?

"lets go back to the average user now though" is a nice way to wrap it up...

GS:win

neufuse said,
lets go back to the averge user though, anything that runs in that OS is to them the OS's problem... I don't know how many times I've seen iTunes work like crap and the user blame it on the computer as "my computer is a POS" or windows have a flash problem and get "windows sucks".....

And again, Java is NOT installed by default - just as with Windows it isn't installed by default. For the vast, vast, vast, vast, vast majority of end users they'll never invoke Java and be asked whether they'd like it installed (Java isn't installed by default, end users are asked when the java executable is loaded - the end user is asked whether they'd like to download and install Java. Most people I know freak out, click on cancel and give up before even going further).

Mr Nom Nom's said,

Too bad you're completely ignorant to the fact that the security vulnerabilities are related to the Java Runtime which IS NOT NOT INSTALLED BY DEFAULT.

Using your logic we should blame Windows for a vulnerability in Silverlight even though Silverlight isn't bundled with the operating system, we should blame Windows when a Microsoft Office application has a vulnerability even though Microsoft Office isn't bundled with the operating system, that we should blame Windows when there is a security vulnerability with Visual Studio even though Visual Studio isn't bundled with the operating system. See how stupid that would be? please, keep the ignorance to a minimum - this is a technology orientated website where I expect maybe a higher level of brain functionality when compared to other websites.

Um. What? Java is the attack vector used to get into the OS. If the OS was as immune as Apple says it is, the attack would fail regardless whether the vulnerability was patched or not.

Mr Nom Nom's said,

And again, Java is NOT installed by default - just as with Windows it isn't installed by default. For the vast, vast, vast, vast, vast majority of end users they'll never invoke Java and be asked whether they'd like it installed.

and again, like I said I am talking about it in the way the AVERAGE USER would think about this

neufuse said,
and again, like I said I am talking about it in the way the AVERAGE USER would think about this

The average user:

1) Won't have it installed out of the box.
2) Wouldn't know anything about it because they aren't going to be following websites.

So they'll be both ignorant and not have it installed - again, "what does the average user think", they won't think anything because they won't know anything! how can you think of something you don't even know exits! Is this where we invoke the 'known unknowns'?

Mr Nom Nom's said,

The average user:

1) Won't have it installed out of the box.
2) Wouldn't know anything about it because they aren't going to be following websites.

So they'll be both ignorant and not have it installed - again, "what does the average user think", they won't think anything because they won't know anything! how can you think of something you don't even know exits! Is this where we invoke the 'known unknowns'?

Is safari bundled with osx or not? last time I checked they got Trojan through safari and also get hacked through safari... so that alone should tell you the os is not immune. And java is also on windows so if the os is not partly to blame it means this exact same crap will affect windows based on the plugin or software they choose to exploit. some exploit/Trojan and virus affect windows xp and vista through adobe reader but can't touch windows 7. how do you explain that?

Dot Matrix said,

Um. What? Java is the attack vector used to get into the OS. If the OS was as immune as Apple says it is, the attack would fail regardless whether the vulnerability was patched or not.

What most of the clones here don't get is this. Most vulnerabilities are never direct attacks against the OS. Even in the Pawn-to-Own attacks, they all failed when you try to directly attack an OS. Everytime a breakin was possible, it was because the hack was a backdoor attack. Which means it was hidden inside an application a person had to install. The browser is the most common vector, because the browser access outside information, so does Java. Flash however can't be directly attacked either, which is why its attack vector was hidden in hacked installers.

Mist threats are only athreat because peopel are stupid. When a screen pops up saying you don't have the recent version of Flash, and you're not at Adobe's website, you shouldn't onstall Flash from there. You shoudl go to Adobe.com and install. Many times i have found even to a site report Iwasn't using the most recent version, Adobe said I was.

What users need to understand, if a hacker uses a 3rd party application as the attack vector into your OS, whther is is Windows or OS X; then the issue is with that 3rd party, not the maker of the OS itself.

If a person can't tell the difference of a Windows/OS X issue vs one caused by 3rd party applications, then I question whether someone so dumb should be even using a computer in the first place.

These are the same clueless loons, who actually believe the hype they acn't catch an onfection and don't run anti-virus. I typicaly dont run it because I know how to stay away from sites I know have infected apps or links. Accidents surely do happen tho and that si why I do run it on my home PC, because I have a user who is not as restrictive in browsing as I am.

Get a clue people...!

TechieXP said,

What most of the clones here don't get is this. Most vulnerabilities are never direct attacks against the OS. Even in the Pawn-to-Own attacks, they all failed when you try to directly attack an OS. Everytime a breakin was possible, it was because the hack was a backdoor attack. Which means it was hidden inside an application a person had to install. The browser is the most common vector, because the browser access outside information, so does Java. Flash however can't be directly attacked either, which is why its attack vector was hidden in hacked installers.

Mist threats are only athreat because peopel are stupid. When a screen pops up saying you don't have the recent version of Flash, and you're not at Adobe's website, you shouldn't onstall Flash from there. You shoudl go to Adobe.com and install. Many times i have found even to a site report Iwasn't using the most recent version, Adobe said I was.

What users need to understand, if a hacker uses a 3rd party application as the attack vector into your OS, whther is is Windows or OS X; then the issue is with that 3rd party, not the maker of the OS itself.

If a person can't tell the difference of a Windows/OS X issue vs one caused by 3rd party applications, then I question whether someone so dumb should be even using a computer in the first place.

These are the same clueless loons, who actually believe the hype they acn't catch an onfection and don't run anti-virus. I typicaly dont run it because I know how to stay away from sites I know have infected apps or links. Accidents surely do happen tho and that si why I do run it on my home PC, because I have a user who is not as restrictive in browsing as I am.

Get a clue people...!

Easy to explain...the vulnerability was fixed at the OS level and not the application level. There are several attack vectors that have been fixed at the OS level. But they can't be fixed until they are known. Just liek any human ailment.

TechieXP said,
Easy to explain...the vulnerability was fixed at the OS level and not the application level. There are several attack vectors that have been fixed at the OS level. But they can't be fixed until they are known. Just liek any human ailment.

The argument here is that apple said mac don't get this things and when they say that they mean it don't get them. if I say I don't get virus and you bring a needle infected with HIV and inject me and I still don't get the virus it means I don't get virus and its true... but I I say so and u inject me and I get it... does it make sense to complain if I got it from needle or sex? or through a forth fifth and 6th party? whether its from java or not... they claim they don't get those stuffs and also advertise that they don't need anti virus.

Let me fix that:

Mr Nom Nom's said,

The average user:

1) Will install Java as soon as they want to consume content with dependency on it.
2) Wouldn't know anything about it because they aren't going to be following websites.

So they'll be both ignorant and have it installed

Making them the perfect victim.
It's up to We, the technology elite to educate our friends and families to the real threats of network computing.

benalvino said,
The argument here is that apple said mac don't get this things and when they say that they mean it don't get them. if I say I don't get virus and you bring a needle infected with HIV and inject me and I still don't get the virus it means I don't get virus and its true... but I I say so and u inject me and I get it... does it make sense to complain if I got it from needle or sex? or through a forth fifth and 6th party? whether its from java or not... they claim they don't get those stuffs and also advertise that they don't need anti virus.

So:

1) You're saying that if Apple say Macs don't get viruses, they don't get viruses. That's a very very stupid way to think.
2) The analogy you gave is flawed, I gaurantee that if you were injected with an HIV infected needle you would get HIV regardless.

neo158 said,

So:

1) You're saying that if Apple say Macs don't get viruses, they don't get viruses. That's a very very stupid way to think.
2) The analogy you gave is flawed, I gaurantee that if you were injected with an HIV infected needle you would get HIV regardless.

Neo that's not what am saying maybe you should read my comment again... and please read from the first comment I made. how else can you explain their statement... many apple users are left open and their data are being stolen because apple made them feel they don't need anti virus and they cant get virus... which give them that security to open there doors wide open for someone to steal their info. The truth is that majority of mac uses feel they are immune because of what apple said. Now if apple says mac don't get virus and they get virus isn't that a straight forward lie... the last time I had virus was with windows xp ever since vista I got it once but its not me... it was my cousin who doesn't know much about threats and I wasn't using any anti virus. then I started using onecare to control what site people go later installed various avp till I settled with MSE.

neo158 said,
2) The analogy you gave is flawed, I gaurantee that if you were injected with an HIV infected needle you would get HIV regardless.

Off topic, but there are some people on this planet who are resistant to contracting HIV, they are a medical wonder that the medical community are trying to study. So I can guarantee that you cannot gaurantee.

dotf said,

Off topic, but there are some people on this planet who are resistant to contracting HIV, they are a medical wonder that the medical community are trying to study. So I can guarantee that you cannot gaurantee.

I like to ask neo how my HIV analogy is flawed... If apple educate their user base that macs don't get virus/trojans it means if they go to a virus/trojans infected site and click on those dangerous links and even download they dangerous plugins they wont get the virus... that's what my HIV analogy explains for you... saying something is immune means it gets in contact with the threat but was not affected... Neo you really need to comprehend... apple should be saying mac is secured and educate on how to beef up the security not telling everyone to let their Guard down cause the say their system cant get infected...

Mr Nom Nom's said,

And again, Java is NOT installed by default - just as with Windows it isn't installed by default.

actually, Java IS installed by default on OSX < 10.7.

obviously, if it wasn't, there wouldn't have been half a million machines infected.

dotf said,

Off topic, but there are some people on this planet who are resistant to contracting HIV, they are a medical wonder that the medical community are trying to study. So I can guarantee that you cannot gaurantee.

It's still a flawed analogy as those people who are immune to HIV can still carry the virus and spread it, just as all Macs are vulnerable to viruses and exploits regardless of the security software installed as the flaws in the OS are still there.

neo158 said,

It's still a flawed analogy as those people who are immune to HIV can still carry the virus and spread it, just as all Macs are vulnerable to viruses and exploits regardless of the security software installed as the flaws in the OS are still there.

Mac get viruses that's what am saying and apple lied to their user base... and my analogy is not flawed, your thinking is flawed... again immune means you cant get it and am not talking about spreading it. last time I check way you write mac program is different from the way you write windows... you just arguing for nothing.

Mr Nom Nom's said,

And again, Java is NOT installed by default - just as with Windows it isn't installed by default. For the vast, vast, vast, vast, vast majority of end users they'll never invoke Java and be asked whether they'd like it installed (Java isn't installed by default, end users are asked when the java executable is loaded - the end user is asked whether they'd like to download and install Java. Most people I know freak out, click on cancel and give up before even going further).

In my experience it has been completely different. A pop-up says "you need to install *whatever*". They click ok so they can see whatever it is they were trying to see to begin with and then wonder what is that icon at the bottom of the screen. I have had to try and figure out what was installed tooooo many times and could not be given an answer because they don't know. They just hit ok.

benalvino said,

Mac get viruses that's what am saying and apple lied to their user base... and my analogy is not flawed, your thinking is flawed... again immune means you cant get it and am not talking about spreading it. last time I check way you write mac program is different from the way you write windows... you just arguing for nothing.

Now, can you show us where Apple lied to their user base? Their official stance for at least a decade or so is, "Macs don't get Windows viruses," which is true because a virus written for Windows can affect a Mac, but it can still spread it.

omgben said,

Now, can you show us where Apple lied to their user base? Their official stance for at least a decade or so is, "Macs don't get Windows viruses," which is true because a virus written for Windows can affect a Mac, but it can still spread it.

let me quote the apple site...

"It doesn't get PC viruses.
A Mac isn't susceptible to the thousands of viruses plaguing Windows-based computers. That's thanks to built-in defences in Mac OS X that keep you safe, without any work on your part."

"It doesn't get PC viruses." is quite a shocking statement in itself, that is essentially telling the buyer that Mac OSX is immune. And if I wanted to get really picky, I would point out that in a literal sense, a Mac is a PC.
The most concerning part is this line that states that Mac OSX will "keep you safe, without any work on your part." This line alone suggests that you don't need to do anything to keep your mac secure.

"Safeguard your data. By doing nothing.
With virtually no effort on your part, Mac OS X defends against viruses and other malicious applications, or malware."

Again another piece of marketing that suggests that you don't have to do anything to make your Mac secure.

"Download with peace of mind.
Innocent-looking files downloaded over the Internet may contain dangerous malware in disguise. That's why files you download using Safari, Mail and iChat are screened to determine if they contain applications. If they do, Mac OS X alerts you, then warns you the first time you open one."

This reads to me as. "Download what you want. we have your back."

source: http://www.apple.com/uk/why-mac/better-os/#viruses

And how many of these so called anti-virus products for Mac actually picked this up? How can you protect against something that you don't know is there? How soon until Apple puts out a removal tool through software update?

Simon- said,
How soon until Apple puts out a removal tool through software update?

If they did that then that would be an embarrassing admission that they were lying. They would rather make themselves look good rather than protecting their users.

Intrinsica said,
Can't you say the same thing about any operating system?

Most windows AV products have heuristics, I've yet to see any for mac that have such an option.

n_K said,

Most windows AV products have heuristics, I've yet to see any for mac that have such an option.

Wow, that's scary. You would think no anti-virus product would be happy with such simplicity...

n_K said,
Most windows AV products have heuristics, I've yet to see any for mac that have such an option.
But surely by definition heuristics come from past experience? Which brings us back to the beginning of "how can you look for something when you don't know what you're looking for?"

I could be wrong with that thought process though.

Simon- said,
And how many of these so called anti-virus products for Mac actually picked this up? How can you protect against something that you don't know is there? How soon until Apple puts out a removal tool through software update?

Almost all detect and remove. The trojan actually deletes itself durIng install if it detects u have an antivirus app.

Apple has already released a java patch but don't know about removal

n_K said,

Most windows AV products have heuristics, I've yet to see any for mac that have such an option.

Virusbarrier

n_K said,

Most windows AV products have heuristics, I've yet to see any for mac that have such an option.

Virusbarrier does. As do several others I believe avast for Mac does. I use vbarrier and while it is it free it is very impressive and thorough

dugbug said,

Virusbarrier does. As do several others I believe avast for Mac does. I use vbarrier and while it is it free it is very impressive and thorough

sorry for the double post... and wonder why I can't edit my own. It should say virusbarrier is NOT free. On the PC I use both avast free and microsoft se. VBbarrier is more impressive. Surprising really.

sam232 said,

If they did that then that would be an embarrassing admission that they were lying. They would rather make themselves look good rather than protecting their users.

It will be an unnamed security update.

Intrinsica said,
But surely by definition heuristics come from past experience? Which brings us back to the beginning of "how can you look for something when you don't know what you're looking for?"

I could be wrong with that thought process though.


Heuristics works by seeing what a program basically does, it looks at what DLLs and functions it calls, so if it connects to the internet using winsock and listens for keypresses then chances are pretty high it's a keylogger so it'll flag it, but there there was a way to get around that years ago that a famous russian security analysis discovered, if you included the windows GDI framework and drew to a window that didn't exist a few times, they'd mostly no longer pick it up as being a virus because it included other non-virus things. Heuristics is a tradeoff, it will pick up some potential viruses but also some non-viruses and it won't pick up other actual viruses, etc.

dugbug said,

Virusbarrier does. As do several others I believe avast for Mac does. I use vbarrier and while it is it free it is very impressive and thorough

I am using their full product for our mac machines here at work and it has virus barrier x6 ,firewall and everything for the mac. probably overkill but we got an education discount. with the public using them i did not want to take any chances.

Beastage said,
Unpossible...

Yep. Macs are gem mine for hackers and CC thieves. No anti-virus and users dumb as horse poo...

DaveBG said,

Yep. Macs are gem mine for hackers and CC thieves. No anti-virus and users dumb as horse poo...

Huge generalization, but it still made me giggle out loud at work. How embarrassing!
+1'ed

DaveBG said,
Yep. Macs are gem mine for hackers and CC thieves. No anti-virus and users dumb as horse poo...

Over +9000

Intrinsica said,
It might be worth noting that lamminium posted an article in the back page news section that links to a source that provides a way to manually check and remove the trojan from your machine: http://www.f-secure.com/v-desc...oader_osx_flashback_i.shtml

I miss the days of windows 9x. Sure you could get infected by a virus or trojan just by thinking about it, but at least they didn't stay on your system for very long as the machine would normally need a format and re-install of the OS every few weeks.

sagum said,

I miss the days of windows 9x. Sure you could get infected by a virus or trojan just by thinking about it, but at least they didn't stay on your system for very long as the machine would normally need a format and re-install of the OS every few weeks.

funny, I recently seen an Embedded system running Windows 3.1 Embedded with an install dating from 1994 running flawlessly.

If you needed to reinstall Windows 9x every few weeks, maybe you should have stopped installing every shareware that a random popup window recommanded you to install in order to boost your computer...

link8506 said,
funny, I recently seen an Embedded system running Windows 3.1 Embedded with an install dating from 1994 running flawlessly.

No one is gonna bother attacking windows 3.1, it has such a tiny market share .....