Jump to content


 


Register a free account to unlock additional features at BleepingComputer.com
Welcome to BleepingComputer, a free community where people like yourself come together to discuss and learn how to use their computers. Using the site is easy and fun. As a guest, you can browse and view the various discussions in the forums, but can not create a new topic or reply to an existing one unless you are logged in. Other benefits of registering an account are subscribing to topics and forums, creating a blog, and having no ads shown anywhere on the site.


Click here to Register a free account now! or read our Welcome Guide to learn how to use this site.

Photo

Rogue campaign targets Macs


  • Please log in to reply
29 replies to this topic

#1 Grinler

Grinler

    Lawrence Abrams


  • Admin
  • 43,504 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:04:00 PM

Posted 09 May 2011 - 09:04 PM

Rogue anti-spyware programs have been a bane to Windows users for the past couple of years. Year after year, this ever increasing type of malware have been targeting PC users and taking their computers hostage while scaring/scamming users into purchasing them. Now Mac users have the dubious honor of getting to know the breed of malware called Rogue Anti-Spyware programs.

This week a particular family of infections have started targeting Mac users with a variety of new rogues under different names. Most people associate Macs as having a trouble-free computer without the need to worry about viruses and other security concerns. This article is not going to discuss the validity of these statements, but I do think that as Macs become more popular, they will become a worthy target for malware writers to target for cybercrime.

Enter the new Mac rogues named named Mac Security, Mac Defender, and Mac Protector. Once installed, these programs will automatically launch and then display scan results that state that there are numerous infections on the users's computer. They will also make it so that its screen stays on top of all others, so that you are forced to close its Window in order to use others program. Just like the rogues on the PC, these rogues are also showing fake alerts stating that the computer is infected or has other security problems. As a "bonus" these programs will also open porn sites in the Safari web browser at random intervals.

Mac Protector Screen shot
Mac Protector screen shot

For the most part these infections are fairly simple to remove. Simply fire up the Activity Monitor, kill the process, and the remove the Application and Login Item. I can also tell you that the rogues for Windows were fairly easy to remove when they first came out. Now they are convoluted messes that require special tools, procedures, and a pinch of luck. I can only hope that the Mac is not going down the same road.




BC AdBot (Login to Remove)

 


#2 The Pugilist

The Pugilist

  • Members
  • 826 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:00 PM

Posted 11 May 2011 - 07:38 AM

I was wondering when these would start cropping up. These particular ones do not seem to invasive but perhaps this is the tip of the ice berg.
//Dave

#3 JohnWho

JohnWho

    Who was running the store?


  • Members
  • 2,611 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Tampa Bay Area, Florida, USA
  • Local time:04:00 PM

Posted 11 May 2011 - 02:39 PM

As a "bonus" these programs will also open porn sites in the Safari web browser at random intervals.



Well, that clinches it - I'm getting a Mac!

:thumbsup:


I know you think you understand what you thought I said,
but I'm not sure you realize that what you heard is not what I meant!


#4 ThunderZ

ThunderZ

  • Deactivated
  • 4,454 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:00 PM

Posted 11 May 2011 - 03:34 PM

Well, that clinches it - I'm getting a Mac!


:hysterical:

Now excuse me while I step away to e mail some of my MAC using Cousin`s who always felt they were invulnerable to malware. <_<

#5 TriggerJinxed

TriggerJinxed

  • Members
  • 42 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Longk Islandt, Noo Yawk
  • Local time:03:00 PM

Posted 12 May 2011 - 07:37 AM

Now excuse me while I step away to e mail some of my MAC using Cousin`s who always felt they were invulnerable to malware.


Don't warn them. :whistle: It will be funnier that way. :crazy:
I think computer viruses should count as life. I think it says something about human nature that the only form of life we have created so far is purely destructive. We've created life in our own image. ~Stephen Hawking

#6 jdbaker82

jdbaker82

  • Members
  • 103 posts
  • OFFLINE
  •  
  • Local time:04:00 PM

Posted 13 May 2011 - 12:28 AM

As a "bonus" these programs will also open porn sites in the Safari web browser at random intervals.



Well, that clinches it - I'm getting a Mac!

:thumbsup:


HAHAHAHA this had me ROFL

#7 killerx525

killerx525

    Bleepin' Aussie


  • Members
  • 7,220 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:Melbourne, Australia
  • Local time:07:00 AM

Posted 13 May 2011 - 04:10 AM

I wonder how MAC will protect itself from these virues :mellow:

>Michael 
System1: CPU- Intel Core i7-5820K @ 4.4GHz, CPU Cooler- Noctua NH-D14, RAM- G.Skill Ripjaws 16GB Kit(4Gx4) DDR3 2133MHz, SSD/HDD- Samsung 850 EVO 250GB/Western Digital Caviar Black 1TB/Seagate Barracuada 3TB, GPU- 2x EVGA GTX980 Superclocked @1360/MHz1900MHz, Motherboard- Asus X99 Deluxe, Case- Custom Mac G5, PSU- EVGA P2-1000W, Soundcard- Realtek High Definition Audio, OS- Windows 10 Pro 64-Bit
Games: APB: Reloaded, Hours played: 3100+  System2: Late 2011 Macbook Pro 15inch   OFw63FY.png


#8 4dude

4dude

  • Members
  • 578 posts
  • OFFLINE
  •  
  • Gender:Male
  • Local time:03:00 PM

Posted 13 May 2011 - 10:46 AM

Isnt it sad how people dont ever seem to stop trying to hurt people they dont even know??

Quite sad......

#9 padkins

padkins

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:02:00 PM

Posted 13 May 2011 - 02:55 PM

I need help. I foolishly bought Malware Defender (Baku) on April 26th. I now have the same windows popping up and need to know how to block this rogue malware. I do not think it was installed as a program. I cannot access the internet because of the popups. Can anyone help? Thank you.

#10 Grinler

Grinler

    Lawrence Abrams

  • Topic Starter

  • Admin
  • 43,504 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:04:00 PM

Posted 13 May 2011 - 05:10 PM

What are these popups?

#11 billspice

billspice

  • Members
  • 23 posts
  • OFFLINE
  •  
  • Local time:03:00 PM

Posted 16 May 2011 - 01:52 AM

i never thought id see the day, this is unbelivable

#12 realized

realized

  • Members
  • 3 posts
  • OFFLINE
  •  
  • Local time:03:00 PM

Posted 17 May 2011 - 05:09 PM

i never thought id see the day, this is unbelivable


Unbelievable that mac's are slowly becoming popular enough that hackers/scammers are starting to target them? =)

#13 th035547

th035547

  • Members
  • 1 posts
  • OFFLINE
  •  
  • Local time:04:00 AM

Posted 19 May 2011 - 08:30 AM

gg

#14 ViroDox

ViroDox

  • Members
  • 154 posts
  • OFFLINE
  •  
  • Gender:Not Telling
  • Local time:04:00 PM

Posted 20 May 2011 - 02:38 PM

This isn't really suprising to be honest. Since the increase in popularity, hackers are finding new ways to exploit the OS, for more victims. If Apple ups the ante, it will be pointless, but still needs to happen.
Apple will be releasing patches periodicaly, therefore, it will be easier to exploit them
Nice to know that at the moment, Linux is still standing victorious in security. And since it's an OpenSource OS, the patches will be updated regularly.

Isnt it sad how people dont ever seem to stop trying to hurt people they dont even know??
Quite sad......

It's not about getting revenge on a specific person, these people simply want lots of victims to use for their malicous purposes. I.e (DDoS, CCFraud,etc)

#15 Grinler

Grinler

    Lawrence Abrams

  • Topic Starter

  • Admin
  • 43,504 posts
  • OFFLINE
  •  
  • Gender:Male
  • Location:USA
  • Local time:04:00 PM

Posted 20 May 2011 - 03:57 PM

Not sure I agree about Linux. No operating system is secure. The ones that are most targeted will stand out the most. Linux, under its various flavors, is just as vulnerable.

http://secunia.com/advisories/historic/




0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users