Backdoor Trojan Now Infecting Mac Computers

Written by John Ponio    Wednesday, 02 March 2011 17:10

Sophos Logo

Own a Mac? Think you're safe from viruses and malware? Think again. Security firm Sophos has discovered a new trojan than attacks Mac computers. This trojan is a variant of the darkComet trojan for Windows, and allows the people who write the program to do a number of things (taken from here)

 

  • Placing text files on the desktop
  • Sending a restart, shutdown or sleep command
  • Running arbitrary shell commands
  • Placing a full screen window with a message that only allows you to click reboot
  • Sending URLs to the client to open a website
  • Popping up a fake "Administrator Password" window to phish the target
The reboot window that pops up has a little blip about the trojan, which says:
"I am a Trojan Horse, so i have infected your Mac Computer. I know, most people think Macs can't be infected, but look, you ARE Infected!
I have full controll over your Computer and i can do everything I want, and you can do nothing to prevent it.
So, Im a very new Virus, under Development, so there will be much more functions when im finished."

The firm reports that "Trojans like this are frequently distributed through pirated software downloads, torrent sites, or anywhere you may download an application expecting to need to install it."

 

Add comment


Security code
Refresh