Responding to a widespread fake antivirus program targeted at Macs, Apple released Tuesday an update that will warn users and remove the threat. The update is available for Macs running Snow Leopard Mac OS X 10.6, as well as Mac OS X Server 10.6. In its Security Update 2011-003, Apple said the update, available via Software Update or from Apple Downloads, refreshes the malware definition on File Quarantine to include MAC Defender, the fake antivirus malware, and provides for automatic, daily updating of known definitions. Automatic updating can be disabled by the user. The update also removes MAC Defender and known variants if the malware has already been installed, and an alert will notify the user of that action.
Reports on the web Wednesday indicated that malware makers have already circumvented Apple's update by changing the name of the malware file to mdinstall.pkg. The move could be short-lived if Apple adds the file name to its new daily update of malware definitions.
Edit add link: http://news.yahoo.com/s/nf/20110601/bs_nf/78778
This should be interesting. To quote an anonymous highly respected source in the malware fighting community: "Mac users are in for a rude awakening"
Edit: Grinler's already on it: http://www.bleepingcomputer.com/forums/topic401082.html
Edited by Union_Thug, 01 June 2011 - 08:25 PM.