Ramblings of this guy you know!

Tech Stuff and random observations on life as I see it….

Tag Archives: Virus

MacDefender leaps onto Facebook

In a desperate attempt to capture more victims before the latest Apple update kills MacDefender and MacGuard dead once and for all (for now anyway) the Mac malware has made the leap to Facebook and is now spreading virally, claiming to be a video of IMF boss Dominique Strauss-Kahn.

The malware is using a technique called clickjacking to spread. A message appears in your timeline apparently posted by one of your friends, in this case referring to the news story of IMF chief Dominique Strauss-Kahn who is facing charges in New York over charges of rape. You are then invited to click a link to view a story or in this case a video. Instead of opening anything however the malware download is triggered. Finally the message you received is now posted on your timeline to catch the next unwary viewer.
Read more of this post


New MACDefender Variant: lock up your browsers

Just mere hours after Apple announces that they will be providing an update to prevent further infections by the MACDefender trojan, a new variant named MacGuard is discovered by the Anti-virus provider Intego.

The main difference between the two variants is that this new version installs as the current user and so gets rid of one step towards infection by removing the needs to the administrator password to be entered.
Read more of this post

MACDefender: The fix – Apple shows the way!

First we heard of MACDefender, the fake Anti-Virus program and suggested it would only trap the Unwary, then we hear that more people are falling for the scam than was originally expected… Now, Apple comes to the rescue with an official support article on how to remove it and a notification that a fix from an update will arrive “in the coming days” – There’s nothing like a timescale… and that’s nothing like a timescale.
Read more of this post

Recent Tech articles – 13th-22nd May 2011

Well so much for a quiet week…

Lets start off with a couple of articles I forgot in my last Tech News posting; Blogger went down for 48 hours and Facebook launching a smear campaign against Google. That links us nicely into this week when just after Facebook goes on about their information appearing in search results, they cuddle up to Microsoft to link their info within Bing.

RIM had a bad start to the week as they announced the recall of 900 PlayBooks.

After all the kerfuffle around Apples LocationGate, it was Androids turn for a kicking as an exploit was revealed in Google connection to Web services. A day later it was reported that the problem was resolved and no-one needed to update anything to get it working.

After writing previously haven written about the MACdefender Trojan and suggesting that it was one to catch the unwary, it would seem that people have been falling for it after all.

There has been rising tensions this week between IOS developers and Apple when a company has been issuing letters to individuals and small companies that have been using the Apple provided API for in-app upgrades or purchases.

Finally, a TED talk that has been causing a lot of discussion this week is worth a watch. It is about people becoming trapped in what has been termed as “filter bubbles”. Eli Parisier warns us that personalised search results might be restricting the breadth of the results we get back. Watch it here

Its time has cometh – New Mac OSX Trojan Horse

I am sure that most of you reading this will already be aware of this issue, if so, move along… Nothing to see.. Likewise, if you are a user of Windows you can stop, point, say I told you so and then move on…. Otherwise please read on…

Users of Mac OSX have up until now been relatively immune to the virus problems occurring on Microsoft Windows which has had the largest market share for many years… It hasn’t lost it’s crown yet, but it has tipped slightly and late last year Mac sales tipped over the 10% level. This peeking over the parapets has come with it’s own set of problems…

It certainly isn’t the first virus to hit the Mac but its certainly the one that seems to have received the most press attention…. This particular one is going under the name MAC Defender which is similar in name to the legitimate site called MacDefender… It is also apparently coming out under the names Mac Protector and Mac Security too.. It has to be said, this Trojan is out to trap the unwary and a competent user will spot the Windows Explorer scan as false and will also (hopefully) be suspicious when asked to enter their password to install the application in the first place… However, you may want to make your less savvy friends and relatives know so they dont fall for the ploy.

The Trojan was identified by the Security firm Intego ( Link to the post here: “http://blog.intego.com/2011/05/02/intego-security-memo-macdefender-fake-antivirus/”) and it is spread through SEO poisoning (web sites set up to take advantage of search engine optimisation tricks to get malicious sites to appear at the top of search results).

If the links are followed, a javascript application is executed to tell you that a virus has been detected on your system… Clicking OK gives you your second warning that something is wrong as the page it displays looks distinctly “Windows” in nature… All sorts of malware will be detected and you will be given the option to download the Zip Archive of Mac Defender onto your Mac. If you have the option set to Auto Open “safe” files in the likes of Safari then the zip will open and a genuine Mac installer will run and install the software on your Mac. From there the program will open and inform you that you have viruses a-plenty on your system but when you got to clean your system then you need to register your application for a sum of money.

Intego have also said that their own VirusBarrier product will protect you from this Trojan.

More information and screenshots can be found on the Intego blog here: http://blog.intego.com/2011/05/02/intego-security-memo-macdefender-fake-antivirus/ and an update with notifications of new variants here: http://blog.intego.com/2011/05/05/intego-discovers-new-variants-of-mac-defender-fake-antivirus/

Here’s a link to an official Intego You Tube video showing you the whole infection process…

%d bloggers like this: