Follow The Safe Mac on Twitter to stay advised of the latest Mac security news!
Posted on July 27th, 2012 at 7:06 AM EST
Over the last couple days, a lot more information about the malware Intego announced as OSX/Crisis has come out. It has been discovered that it contains part of a commercial malware package called Remote Control System DaVinci, which is marketed primarily to governments and sells for 200,000 euros. At this point, it appears to be a targeted attack, likely on the part of a Middle Eastern government and aimed at a group of Moroccan journalists who covered the Arab Spring revolution. Read the rest of this entry »
Posted on July 24th, 2012 at 4:56 PM EST
Intego reported the discovery of new malware today, which they have named OSX/Crisis. This malware is evidently a trojan that installs a backdoor (called Backdoor:OSX/Crisis by Intego). It can evidently install this backdoor without an admin password; simply running the trojan is sufficient. The backdoor, in turn, contacts a specific IP address every 5 minutes looking for instructions. Read the rest of this entry »
Posted on July 24th, 2012 at 11:53 AM EST
For the first time, an iOS app has just been discovered to be infected with Windows malware! The app in question is Instaquotes-Quotes for Cards Instagram, and it has been flagged as malware by three different Mac anti-virus programs, including ClamXav. Although this malware cannot affect either Macs or iOS devices, and it’s not likely to be able to infect even a Windows user based on how it’s attached to the file, this app should definitely be avoided until the issue is fixed. Read the rest of this entry »
Posted on July 13th, 2012 at 4:29 PM EST
Intego has reported finding a new variant of GetShell for Mac OS X that, unlike the first variant, can run natively on modern Macs with Intel processors. This means that users of Lion (and, presumably, Mountain Lion when it becomes available) are no longer completely safe from this malware. Read the rest of this entry »
Posted on July 10th, 2012 at 10:07 PM EST
F-Secure has discovered new malware that is capable of installing via drive-by download on Mac, Windows and Linux systems. This is accomplished through a Java applet that requests access to your system, and if granted, it then detects the OS being used and installs the malware that is appropriate for that system. Read the rest of this entry »
Posted on July 7th, 2012 at 10:17 PM EST
Monday is the day that the FBI will shut down the DNS Changer servers. Mac users may have been infected with the DNS Changer malware, more commonly known as RSPlug (among other names), and though all effects of the malware may seem to be gone, they will strike many tomorrow. Worse, it turns out that the commonly-recommended removal tools are not always detecting the malware!