updated 09:30 am EST, Mon November 24, 2008
A second piece of Trojan-like malware is currently threatening Macs, say security vendors. OSX.Lamzev.A, also known as OSX.TrojanKit.Malez, allows hackers to install a backdoor on a victim's computer and thereby assume control of it. The software is said not to be a true Trojan, however, as an attacker must already have access to the target Mac to make use of the code.
Because Lamzev nominally requires physical access to a Mac to work, it is only being classified as a mild threat by security companies. Danger is said to persist though, as an attacker could cloak the code with the trappings of legitimate software, and thereby persuade people to download and install it themselves. Intego observes that Lamzev is unrelated to RSPlug.D, which also requires people to download an app under false pretenses, but is a true Trojan and will execute itself after the initial deception.