Malware/pornware attack targets Apple's Mac

Alex Zaharov-Reutt
Wednesday, 25 May 2011 18:51

Your IT - Home IT

Similar to the RogueAV malware on PCs that falsely informs end-users that their computers are infected with all manner of nasties, MacDefender claims to be security software that is instead attempting to extort a payment from you to clear the fake infections and to stop a slew of filthy porn pop-ups polluting the screens of 'infected Mac users.

Malware exists for all platforms, but the more popular your platform is with consumers, the more criminal targeting usually follows. Although Windows-powered PCs still collectively outsell Macs by a large margin, Apple's computers and operating system, Mac OS X has never been more popular with more consumers around the world than it is right now, fuelled by the incredible success of the entire new range of non-Mac iDevices.

This has caught the attention of malware writers who have now created extortionist fake security software with the various names of 'MacDefender', 'MacProtector' and 'MacSecurity'', which media reports say automatically downloads itself to Macs when a presumably infected web page is reached, asking to be installed once the download process has completed.

 

Once installed, you get to see pretty graphs of fake scans, fake reports of virus infections, pop-up ads reportedly showing various kinds of porn and ads for things like Viagra, while basically demanding money to "help" you get rid of all these new annoyances that weren't there before.

Given Mac users expect a computing experience that is virtually malware-free when compared to the Windows experience, cyber criminals are porting their tricks to Mac OS X and are catching some users unawares, as reported by SecureMac, with other Mac users complaining at Apple's forums.

As can often be the case, Apple took some time to respond, although it has finally issued a blog post explaining that MacDefender is malware, offering instructions on how to remove it, and delivering news of an upcoming OS X update in just days that will detect it and block it.

The Mac malware relies on end-users to authorize the installation of the malware itself, using social-engineering techniques to fool users into allowing  some malicious software, via password auhorisation, to run. That's what social engineering does - it hacks you, too, as such.

Apple's upcoming built-in defence is certainly welcome, although it will only quicken the arms race and cat-and-mouse game that Apple and most companies have to play against criminals, as the crims look for ways to bypass Apples defences and see if more money can be extorted from unsuspecting users.

It will also play into the hands of Internet Security companies promoting security software for Macs, although you'd have to imagine that Apple has been taking security very seriously indeed for its upcoming new Mac OS X version 10.7.

Apple will also likely have to start responding much sooner to malware threats for all its platforms, helping protect customers faster once new threats or vulnerabilities have been discovered, although this is true of all companies, most of whom can be equally tardy in providing the neccesary updates when required.

So, no computing platform is immune from cyber attack, with socially engineered attacks such as phishing or otherwise able to be deployed to users of any platform.

Thus - whatever OS you use, do your best to never become complacent, with that cautious attitude, along with your chosen blend of security software, OS updates, software updates and other defences, being the best defence against the constant state of cyber war that we all live with, every single day.