Mac OS X targeted by Trojan and backdoor tool
- Thread starter midijeep
- Start date
Rhisiart
Registered
I'm going to play the devil's advocate here.
Whatever one's morals about pornography, I think you'd have to be either addicted to porn or just plain daft to follow any instructions to download software from a porn site.
How long I wonder though before Trojans start appearing from non-porn sites, that might just catch out an average computer user? 'Just Say No' to every request for your administrator password may negate any pleasure or usefulness from using a computer.
I can drive a car safely and responsibly, fill it with fuel, check the oil and tyre pressures, but if anything needs repairing or maintaining I am lost. Does this mean I shouldn't be driving?
ElDiabloConCaca
U.S.D.A. Prime
Nope, it just means you shouldn't attempt to "maintain" or "repair" anything because you have the knowledge that you don't have enough knowledge in order to do those things.
I can screw a new faceplate onto my light switch without electrocuting myself. Could I install new, recessed lighting in my kitchen? Hell no, because I don't know how and I know I don't know how, so I would defer that to the professionals.
Same as on a computer:
What should have happened in that situation is the user should have deferred installation of the "codec" to the professionals... or simply backed out of the site. It's when a user blindly proceeds forward without knowing what will happen next that they get themselves into trouble.
MacGuyver knows what will happen next when he cuts the red wire on the bomb... you, on the other hand, do not, and you will blow yourself up trying.
And just because they fall for it once doesn't mean they shouldn't be using a computer at all. But if they fall for it again, then you really have to question their common sense, or memory, or cognitive abilities, or something.
Fool me once, shame on you. Fool me twice, shame on me.
Rhisiart
Registered
ElDiabloConCaca, I see your point, but only to a point if you see what I mean. Your example makes sense, but I can still envisage a time in the near future when (maybe) what you are downloading is not only what you want (and I am not talking busty babes here) and furthermore, you have no reason to suspect anything amiss.
ElDiabloConCaca
U.S.D.A. Prime
Very true, I understand your point.
I'm sure in the future we will see greater attempts to subvert the user into installing things that they did not request, or perhaps did request but the download is not what they were expecting.
It is for this reason exactly that I think users should take great interest in what Mac OS X does and how it works -- it would help them to perhaps catch an unwanted download ahead of time instead of after the fact... after their system has already been infected.
Just like a car -- sure, you can get by just knowing how to put the key in the ignition and work the pedals, but it would be a great advantage to know what's involved in an oil change and what's involved when a brake job is done (not necessarily how to do these procedures yourself, just knowing what is involved with them). Without knowing what's involved, it is extremely easy for repair shops to take advantage of the customer. For example, if people knew that an oil change simply involved draining the oil, replacing that oil with new oil, and putting a new filter on (a ~30 minute job at best), then they could raise a red flag in their head when some whack-job mechanic says, "Ooooh, changing the oil is a very involved procedure and is going to cost your $100." -- the customer could then say, "Look, buddy. I know what's involved when you change my oil and I know that when you say that you're trying to take advantage of my lack of knowledge."
Similar principles apply to computer and online activity.
I'm sure in the future we will see greater attempts to subvert the user into installing things that they did not request, or perhaps did request but the download is not what they were expecting.
It is for this reason exactly that I think users should take great interest in what Mac OS X does and how it works -- it would help them to perhaps catch an unwanted download ahead of time instead of after the fact... after their system has already been infected.
Just like a car -- sure, you can get by just knowing how to put the key in the ignition and work the pedals, but it would be a great advantage to know what's involved in an oil change and what's involved when a brake job is done (not necessarily how to do these procedures yourself, just knowing what is involved with them). Without knowing what's involved, it is extremely easy for repair shops to take advantage of the customer. For example, if people knew that an oil change simply involved draining the oil, replacing that oil with new oil, and putting a new filter on (a ~30 minute job at best), then they could raise a red flag in their head when some whack-job mechanic says, "Ooooh, changing the oil is a very involved procedure and is going to cost your $100." -- the customer could then say, "Look, buddy. I know what's involved when you change my oil and I know that when you say that you're trying to take advantage of my lack of knowledge."
Similar principles apply to computer and online activity.
Yes, download iAntiVirus and run it. I checked with PC Tools support and they said "iAntiVirus detects and quarantines the recent threat, OSX.Lamzev.A"
Goto:
http://www.iantivirus.com/download/
IT"S FREE
Rhisiart
Registered
I use BitDefender for Windows XP (using a VM). For Mac I use Intego's VirusBarrier (yes, I know I don't need it). Bitdefender seem to get good reviews. Not a bad deal for 30 Euro a year.
Intego have been quick to publicise the latest Trojan. It must be Manner from Heaven for them to have something to justify their product (albeit their time will come).
Intego have been quick to publicise the latest Trojan. It must be Manner from Heaven for them to have something to justify their product (albeit their time will come).
I don't want to buy VirusBarrier. And I don't necessarily want to promote it to my customers after I've sold them their Mac with the incentive of them not currently requiring antiviral software. So I'd rather know how to identify and remove the trojan by hand or with a free (free! not "free download, buy later"!) tool like DNSChangerRemoval. (I know, I'm too vocal, things will appear...)
Doctor X
Registered
. . . and the creator of the DNSChangerRemover hopes it will inspire you to purchase his malware remover that removes . . . well . . . okay, it does not actually remove anything currently.
To be fair, it takes a lot of time to maintain these things, and as you know, time often means money. It is nice that there are some willing to offer frequent updates out of the goodness of their hearts.
ClamXAV is utterly free. I simply do not know if it recognizes and removes these two particular "nasties." The iAntiVirus is also free.
It is well to question such products given the propensity for "viral scans" for PCs to report "vira" that then require "removal" which, of course, results in you having a very infected PC.
--J.D.
To be fair, it takes a lot of time to maintain these things, and as you know, time often means money. It is nice that there are some willing to offer frequent updates out of the goodness of their hearts.
ClamXAV is utterly free. I simply do not know if it recognizes and removes these two particular "nasties." The iAntiVirus is also free.
It is well to question such products given the propensity for "viral scans" for PCs to report "vira" that then require "removal" which, of course, results in you having a very infected PC.
--J.D.
