iTWire - Mac malware bends browsers to suspect sites
LuKreme
kremels at kreme.com
Thu Nov 1 16:10:15 PDT 2007
On 1-Nov-2007, at 16:14, Matt Johnston wrote:
> On 1 Nov 2007, at 21:58, LuKreme wrote:
>> On 1-Nov-2007, at 15:26, Kevin Callahan wrote:
>>> http://www.itwire.com/content/view/15133/53/
>>
>> This seems like more of an IQ test than real malware.
>>
>> First off, you have to download an app. then you have to bypass
>> the "this app was downloaded off the internet, are you sure you
>> trust it" then you have to type in your admin password.
>
>
> And in the REAL WORLD....
Oh sure, in the real world you can get a user to do anything. But
that's not the point. The point is there is nothing special about
this 'trojan' and it is not really even a trojan. A trojan is a piece
of malware that appears to be one thing, but also installs a bunch of
other stuff. This is just a script, there's note ven a quicktime
codec. In short, there is NOTHING that anyone can do to prevent this
type of attack. If the user has superuser privs and the user grants
privs to an executable, that executable can do ANYTHING. That is the
definition of superuser. This sort of malware would work just as well
on Windows, OS 9, Linux, FreedBSD, OpenBSD, System V, or any other OS
you can name.
--
Major Strasser has been shot. Round up the usual suspects.
More information about the MacOSX-talk
mailing list