Macintosh security specialists, Intego on Thursday issued a security warning to its customers for the first Trojan horse to affect Mac OS X. Dubbed MP3Concept (MP3Virus.Gen), the Trojan horse exploits a weakness in Mac OS X where applications can appear to be other types of files, according to the company.
Intego told MacCentral today that the code is hidden in the ID3 tag of the MP3 file. The code will only activate when clicked, but once it is, Intego warns the Trojan horse has the potential to delete all of a user's personal files; send an e-mail message containing a copy of itself to other users; and infect other MP3, JPEG, GIF or QuickTime files. Intego also said that the same technique could be used to infect .jpg or .gif files, although no such cases have been found. Intego has released updated virus definitions to combat the Trojan horse.
News source: MacCentral
Intego told MacCentral today that the code is hidden in the ID3 tag of the MP3 file. The code will only activate when clicked, but once it is, Intego warns the Trojan horse has the potential to delete all of a user's personal files; send an e-mail message containing a copy of itself to other users; and infect other MP3, JPEG, GIF or QuickTime files. Intego also said that the same technique could be used to infect .jpg or .gif files, although no such cases have been found. Intego has released updated virus definitions to combat the Trojan horse.
News source: MacCentral
Migrating from Windows NT4 to Windows Server 2003
Get the scoop on what you need to know to migrate from NT4 to Windows Server 2003. If you haven't started the migration yet, this is your chance to learn to "gotchas" before you start. If you have already started, come let others know what you've leaned, and get help from Microsoft in the process.
Wednesday: April 14, 2004 [12pm Pacific/19pm GMT]
Download: Add to calendar For more information on any of these chats, visit: http://www.microsoft.com/communities/chats...ts/default.mspx
just kidding...
people making malicious viruses should spend time making some worm that disable IE for all the sites other than mozilla/opera/firefox download pages.
again, it was just a thought. dont ban me please.
Windows - 53,000
Mac OS X - 2
Careful, us Mac users are right behind you now.
how many mac users have anti-virus?
if this infects all mp3s on someone's computer, any music you download or play could be at risk to destroy youuu
No sense slowing your computer down for the highly unlikely chance that you get 1 of the dozen viruses out there.
This is a trojan, not a virus. It must be executed manually, and it's pretty easy to spot, as get info or column view will show it as an application, not an mp3.
This is also a proof of concept trojan, so it dosn't really do anything. I do hope that apple fixes the flaw this trojan is exploiting though.
By the way..
A virus or worm on Mac OS X would be really, really hard to do, as OS X wants authentication before it allows you to change settings or OS files.
No sense slowing your computer down for the highly unlikely chance that you get 1 of the dozen viruses out there.
Well, for one, to prevent from passing those Windows viruses around to your Windows-using friends...
All .Mac subscribers have Virex for free. Most OS X users have the firewall properly configured. This is an easy to spot trojan.
Yes, it is historic, and we can no longer say: "Mac OS X has zero viruses/trojans", but then again, we are still a long, long, long way from saying OS X and Windows are equally vulnerable to external attacks.
Uhm, that's not exactly likely. In fact it's pretty much impossible. Most viruses spread between Windows machines via e-mail And they wouldn't affect Mac OS at all.
You cannot pass on a windows virus using a mac unless you do it deliberately. Since windows viruses cannot infect a mac, you would not be automatically spreading it. To spread a windows virus, you would have to manually attached the virus file to an email and send it to a windows user.
You possibly assume that I said that windows viruses on a mac automatically spread to other windows users.
However, mac users can still spread macro viruses to windows if they are tricked into thinking that the emaiil is legitmate (ie. make it appear like a virus warning or somethhing)...which they then forward the email to their friends who execute the macro upon opening it.
A virus or worm on Mac OS X would be really, really hard to do, as OS X wants authentication before it allows you to change settings or OS files.
In what way is this different than *every other OS ever* ?
I don't think you have the slightest clue of what you're saying. Writing a virus or worm to target the Mac is just as "hard" as writing one to target any other unix/linux/NT based OS.
There are two points that account for the obvious difference in number of exploits/viruses that currently exist for each respective OS.
1) OSes like Windows and Linux are more prevalent, and thus a better target for those looking to cause widespread damage.
2) OSes like Windows and Linux are tested far more rigorously after release... thus revealing a vastly higher number of vulnerabilities during the OSes lifetime.
Recently Linux has had the largest list of vulnerabilities. Being an open-source project, finding its vulnerabilities is just a bit easier for the bad guys.
Who in their right mind is going to forward something that has no usable attachment and no actual content?
Honestly, who's going to forward something with the subject "Fw: Re: Naked Girls" or some other equally stupid title.
Then again, I still don't comprehend how people are stupid enough to open these attachments in the first place.
Who in their right mind is going to forward something that has no usable attachment and no actual content?
Honestly, who's going to forward something with the subject "Fw: Re: Naked Girls" or some other equally stupid title.
Then again, I still don't comprehend how people are stupid enough to open these attachments in the first place.
Of course no one would with a title like that.
But I'm willing to bet there's people out there who will forward emails that look like a Norton virus bulletin or some other thing like that and not really notice the little attachment icon.
I don't think you have the slightest clue of what you're saying. Writing a virus or worm to target the Mac is just as "hard" as writing one to target any other unix/linux/NT based OS.
There are two points that account for the obvious difference in number of exploits/viruses that currently exist for each respective OS.
1) OSes like Windows and Linux are more prevalent, and thus a better target for those looking to cause widespread damage.
2) OSes like Windows and Linux are tested far more rigorously after release... thus revealing a vastly higher number of vulnerabilities during the OSes lifetime.
Recently Linux has had the largest list of vulnerabilities. Being an open-source project, finding its vulnerabilities is just a bit easier for the bad guys.
I think he's talking about needing to "su" or "sudo" before Mac OS X (or Linu
how many mac users have anti-virus?
exactly!
Windows - 53,000
Mac OS X - 2
Careful, us Mac users are right behind you now.
well as of 8th April McAfee has 88893 viruses/trojans in there datadase, i belive most of them are for windows.
http://www.intego.com/news/pr40.html
Before everyone yells and screams, note that this is a proof of concept virus. Note this line in the press release:
The reason for this is because it depends on the dual fork nature of HFS+.
Lesson of the day: Don't download MP3 files encoded as BINHEX or in other archive formats.
It's supposedly "special" since it actually plays an MP3 after running, potentially tricking the user into thinking it was a legitimate music file (hiding the potential virus that was just sent running). Exactly the same as the ones you receive on Windows that claim to install screen-savers, that actually end up doing so--- as well as a virus.
Mac OS X really isn't to blame, it displays it as an Application (well fine, CFM apps potentially shouldn't be allowed to have file extensions... this would prevent the playing of the MP3 in this particular instance, but there is so many other ways to get around this and still have an MP3 playing it's not even worth fixing, although I'm sure they will).
If this is such a big deal maybe Apple should include some kind of "Application" badge on the icon, sorta like what they do when a file is locked. Sorta like a last warning before a person clicks, "This is an application, even though it looks like a document."
So true.
And by the way, because it is statistically proven that Mac users are smarter than PC users, we wouldn't be dumb enough to fall for the trick.
If the above sentence sounded ridiculous and ludicrous, then compare it to the other "PC RULZ, MAC SUXORS" posts here, now you know how dumb those posts sound.
that's the biggest bunch of crap i've heard all night. Mac users aren't any GD smarter than windows users. you think just because they learned to hold down a key and click the mouse button at the same time, to get a right click effect, that they are smarter? all because apple doesn't want to be seen as "following the general population"? give me a break. apple has absolutely nothing going for them except ONE SINGLE thing, and that's graphics. if i wanted to plug my digital camcorder into a machine and make a dvd, yeah, a mac makes that one task easier than the store bought windows machine and that's it. there is ABSOLUTELY NOTHING else a mac is going to do better than a pc.
i have to keep repeating myself here when i say that i can guarantee you one thing, if macs were half as prevelant as PCs, you'd see just as many virus's come out for them but guess what? it doesn't take a rocket scientist to figure out that noone is gonig to write a virus or try to exploit a vulnerability on a mac when they know their chances of doing any damage are slim to none. HELLO! wake up folks.
But viruses will never be a problem on the Mac, they never have been before. The Mac is a niche platform, and not a gigantic number of people are ever going to use them. It's expensive, and the Mac is only made by one company.
But it dosn't make using the OS any harder. When a user has to change a system-wide setting or run software update, they're required to type their own password again.
I tend to like the operating system on the Mac a lot more, because of the way it's designed. Multiple windows on screen instead of one full screen one, a single menu bar, and awesome features such as Expose. It makes it a lot easier to work.
It's a matter of personal opinion, really.
Last edited by 49636 on 09 Apr 2004 - 06:48
Look it up.
I could, for what, $2000, buy a Mac and use it as a server.
For nothing, I could take one of my old PC's, put Linux on it, and have a server.
And the Mac's usual advantage, ease of use, dosn't mean much when you're rarely using it. Most of the time, you leave the server alone. When you are, it's usually through a command line via SSH.
Also, there's the fact that Apple only recently entered the server market seriously.
As I grow tired and stop making sense, I just need to point out that the Xserve also has other great uses. Think about it. It's a small, very fast Mac that can store a LOT (up to two terabytes) of stuff on it. Absolutely perfect for digital video editing.
I thought we were talking about the real "server market."
200 years??? boohph...
If you look at a majority of Windows virues you'll see it takes a user to execute an e-mail attachment to start doing it's damage. This Trojan for the Mac is the same way by the looks of it. I think half of the reason there are so many Windows viruses out there it not due to it's lack of security (although that is a playing factor), it's due to the less knowlegable computer uses. You know your grandparents who open every willy nilly file they get e-mailed by refuse to purchase an anti-virus program because it costs money.
No matter what OS you run, be it Windows, Mac, or Linux you can always make a successful virus or trojan. You just have to be good at the art of social engineering. As long as you can convince some poor sap to open some file you can cause damage to their system.
If Apple computers every get an extremely large market shard you will see more viruses and trojan going around for it. Right now Mac OS X shares the same security blanket as other *NIX based systems, they have a smaller user base and their users are generally (at least from the non-Windows users I have talked to) more computer literate (a major chunk of Mac users have been using Mac OS for many years, and many new Mac OS X users have been *NIX users for years, same as Linux so they often know their system inside and out). If they ever get enough non-geek computer illiterates on their systems they will see a much larger number of viruses and trojans ciculating for their systems.
No matter how secure an operating system is, it can patch basic human stupidity.
I totally agree
Not exactly. You see, in OS X or even Linux (so long as the user isn't running as root), any program executed by a user can ONLY affect THAT USER'S files, not system files or other users files. On Windows, a program can mess with the registry, delete system files, or set itself to run in the background without the user's knowledge. That's why any trojan/virus on Windows has the potential to be FAR more destructive than one on other OS's.
If Microsoft released Longhorn with people using a limited account, and making them type their password again to gain administrator access (like Mac OS X) the world would be a much happier place.
But on the downside, it would require all Windows users to have and remember a password. That will result in a gigantic number of tech support calls.
First of all let me just say that I own a G5 with Panther on it as well as high-end PC workstation with Windows XP Pro installed on it. I will address several issues mentioned among all comments above.
The whole thing about Mac users being smarter and more computer savvy than PC users is just another delusional trick to persuade Mac owners in general that they are more special. What a bunch of crap. Let's take a look at simple math here:
If you have 1000 people using Windows and 10 people using Macs, how in the hell someone concluded the above mentioned results? Windows XP is very complicated system when looked under the hood in comparison to OSX, and believe me I know, I'm a programmer, a designer, a web developer and a 3d modeler. I use both to the best of their abilities.
To go back to my math thing, 800 people out of that 1000 is below average user that just got a computer through Dell, Gateway or whatever and have no idea what they are doing with the system. They are probably my mom, your grandpa, and somebody’s sister in law and so on. However I guarantee at least 200 people using Windows knows a lot more about computing, including *Nix platform, Win and who knows what else. You won't see them using Macs or OSX for any serious development, btw. Now compare those 200 people towards those 10 using Macs, if it's even 10.
In essence OSX and any Mac OS before was created in a way to provide non computer savvy users a flexible environment where they can think about work and less about insides of an operating system. This is why, most OSX users know nothing more than to click, open and do simple tasks, it's the way every version of Mac OS is built, including OSX, very limiting but very user friendly.
This is a large drawback in user-friendliness of Windows. However, it's not without reason that Windows became the most used operating system in the world and not Mac OS. Win was carried from the start by programmers, tech savvy people, Windows had an appeal to big corporations, thus bringing power to Microsoft. Don't forget they had the same starting point in history. Remember only a few years ago, Windows did not have problems with viruses, unlike today. Conclusion: too much of an expansion.
I truly find Windows more flexible system in general; more open to expansion, hence the enormous amount of security holes and bugs. I'm quite objective here, as I mentioned before, I own both and I really love my Mac and OSX, but it's all eye candy and I'm being limited with so many things that I just frankly find XP a better solution for the majority of my work, and yes that includes graphic design in most of the cases.
To go back to the virus issue. It's just a matter of time that something like this would happen. It won't be the last but certainly not a start of virus outrage on Macs as well. Windows will still remain the target for most virus creators. I mean look, when you have a platform, as already mentioned before, present on 90% of computers in the world, with the openness for development as Windows, it will always remain a target for virus developers. Don't forget most of the hackers look at MS as big evil corp. or at least as a hacking challenge. This is why Apple keeps their market share at the point where it is now. They know they are pretty much safe. This whole thing with virus is funny because it will prevent Steve Jobs from saying "Blah, OSX is totally virus proof".
Mac users, understand for once, that by using and buying Macs you are paying for OS convenience and looks (hell I bought it
It's unavoidable.
If you are a programmer I would think you would love OS X the reason being development tools are free, they come with Panther. Now on the other hand MS charges out the a** for their's. Personally I am not a developer although I am finding AppleScript and the ability to script just about everything in the OS fantastic and its easy to learn. A lot of people I know are progammers and they have moved from Linux to OS X. I in fact also moved from Linux to OS X. I personally like all the eyecandy and the GUI, it lets me get things done easily. I also like the fact that I can open up the command line when need be or run Fink to compile Linux apps.
If you think OS X is limiting and just eye candy then I say its user error and you might want to start learning a little more about it.
Windows is extremely complicated, it was not designed for ease of use in the beginning, unlike MacOS X. Remember, at one time it was just a graphical DOS shell, and then a 32-bit extension of DOS, and now its a full 32-bit OS (since Windows 2000). Windows 2000/XP even include some of the barebones BSD networking tools (or MS made tools that function identically in every way).
I for one use Mandrakelinux 10 Community, updated constantly via Cooker updates (so its as bleeding edge as a MDK system can get). Mandrakelinux's internal workings are far simpler as far as i can tell compared to Windows.
Windows XP is essentially the same thing as MacOS X now: Eye candy on top of a powerful highly secure system. Windows XP is based on Windows 2000, both of which are fairly secure as long as you are not Administrator. Same with MacOS X. MacOS X is based on FreeBSD, a Unix system. Run as root, and you can delete every file on your comp with ease. At least XP has System File Protection. Not a flame, but root can do a heck alot more than an Admin account on Windows. But, most people run a standard account on MacOS X, unlike Windows.
apple, on the other hand, design and built most of their computers in house as well as designing their own operating system. In that sense they are a bespoke company which make products for the decerning customer
Really the fact that it's a trojan isn't a problem really, it's the fact that it can obscure the fact that it's an executable that concerns people.
and infect other MP3, JPEG, GIF or QuickTime files
yikes.... I don't think u can infect windows files of those formats
Last edited by 52311 on 09 Apr 2004 - 18:55
but hey im not bashing windows im not bashing mac they both got there problems. im just saying mac is safer for out of the box operation unlike windows which is very virus/worm/trojan friendly out of the box.
yes it's nice to have some tools for free, but remember this, I'm developing for the market in general, not just Mac and *Nix platform. The fact is none of the free tools under any OS can even come close to Microsoft development tools. Yes it's true they cost, but at the end of the day, I'm not developing for the community, I'm developing for clients who can actually afford a lot of that stuff, and they pay pretty penny for my services as well. So all that cheap tools and so on, you get what you pay for. Just look at the .NET platform and all visual development tools. Kicks ass! Version control, team development...everything tight and integrated. I'm sorry but you don't have that on Mac. And in the end, time is what counts..If I can finish projects faster, get paid sooner and carry on to another project, that's what I appreciate. Ask any professional developer, people who code enterprise level projects, what is it that they are using...
Commenting has either been disabled on this article or you are not logged in. Click here to login or register, its free!
Note: Anonymous commenting is disabled in order to keep the quality of responses to a high standard.