toggle

AAPL Stock: 105.22 ( + 0.39 )

Printed from http://www.macnn.com

Second Trojan poses moderate threat

updated 09:30 am EST, Mon November 24, 2008

OSX.Lamzev.A malware

A second piece of Trojan-like malware is currently threatening Macs, say security vendors. OSX.Lamzev.A, also known as OSX.TrojanKit.Malez, allows hackers to install a backdoor on a victim's computer and thereby assume control of it. The software is said not to be a true Trojan, however, as an attacker must already have access to the target Mac to make use of the code.

Because Lamzev nominally requires physical access to a Mac to work, it is only being classified as a mild threat by security companies. Danger is said to persist though, as an attacker could cloak the code with the trappings of legitimate software, and thereby persuade people to download and install it themselves. Intego observes that Lamzev is unrelated to RSPlug.D, which also requires people to download an app under false pretenses, but is a true Trojan and will execute itself after the initial deception.




by MacNN Staff

POST TOOLS:

TAGS :

toggle

Comments

  1. bobthenob

    Joined: Dec 1969

    +9

    news flash

    Phillips Corp announced today that a new trojan horse virus can infect your LCD TV. It seems that leaving your front door open with nobody home increases the risk of theft. Film at 11.

  1. simdude

    Joined: Dec 1969

    +12

    i wonder....

    what would happen if every single Windows threat was posted to windows news sites? The fact that these little blurbs can even be considered news demonstrates how OS X is less likely to have security issues. You can argue that is because of the UNIX underpinnings, or just that the marketshare is smaller drawing less attention, but whatever the reason, it is still less c*** we have to worry about on OS X. Other than some basic common sense (don't run from an admin account, know what you're downloading etc.) the machines are relatively safe.

  1. testudo

    Joined: Dec 1969

    -6

    idiots!

    Yes, those people who seem to think that no computer is ever used by anyone other than themselves.

    Hmm, here's a thought. Such a backdoor would be problematic at an internet cafe, an office, a school, etc. Let alone, as the article states, added to 'legitimate' software to open an unsuspecting backdoor.

    Now, what isn't said, and is a valid question, is whether the threat requires any type of administrative access.

  1. jhawk95

    Joined: Dec 1969

    0

    Testicular.....

    I mean Testudo, must have been looking in a mirror when he said the word idiots!

  1. UberFu

    Joined: Dec 1969

    +2

    at an internet cafe...

    Yeah!

    Okay - Testudo - how would a person being at an internet cafe be any differnt than being at home and maintaining security on the same laptop in both places?

    Is the laptop going to somehow be less secure at the cafe unless the User goes and disables their security 'cause they "feel" Safe?

    Schools/ Offices: If the Sys admin is a Tool and does not know how to secure a LAN from vulnerability and gives random users Admin or Root access to the computers then again Yeah! Besides the Sys Admin should be fired and they need to get someone else who knows what they're doing.

    Remeber Testudo - research the topic - then think about the topic - then "speak".

  1. UberFu

    Joined: Dec 1969

    +2

    on the subject...

    Yep - point me to it so that I can download this and voluntarily install it on my system - if only for the ability to run the "free" anti-virus provided me by my ISP.

    [sarcasm] I've been really wanting to use it for a while! [/sarcasm]

  1. testudo

    Joined: Dec 1969

    +1

    Re: at an internet cafe

    Okay - Testudo - how would a person being at an internet cafe be any differnt than being at home and maintaining security on the same laptop in both places?

    Because a person at a home is using his/her own computer, and safe to assume it is his/her own computer.

    At an internet cafe/school/business, the problem isn't YOU, the current user, its the neanderthal user before you, who may have intentionally or inadvertently installed said software.

    Or do we not count those people?

    Is the laptop going to somehow be less secure at the cafe unless the User goes and disables their security 'cause they "feel" Safe?

    No, I was using 'internet cafe' as a place one goes to use a computer there, not a place one brings a computer (why the h*** would you need to go to a special place to use your laptop?).

    Schools/ Offices: If the Sys admin is a Tool and does not know how to secure a LAN from vulnerability and gives random users Admin or Root access to the computers then again Yeah! Besides the Sys Admin should be fired and they need to get someone else who knows what they're doing.

    OK. So the sysadmin is a tool. What's your point. Are you saying this never happens in the real world, because all sys admins are competent? Really?

    And this gets to the point brought up about the level of access you needed. If the trojan doesn't need admin rights to install, would that not be more of an issue?

    Remeber Testudo - research the topic - then think about the topic - then "speak".

    And you could try to comprehend and look at larger pictures. Oh, wait, that would be too difficult.

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

Sound Blaster Roar Bluetooth speaker

There could very well be a new king of the hill for Bluetooth speakers, with Sound Blaster's recent entry into the marketplace. Bring ...

Kenu Airframe Plus

Simple, stylish and effective, the Kenu Airframe + portable car mount is the latest addition to Kenu's lineup. Released earlier this ...

Plantronics Rig Surround 7.1 headset

Trying to capture the true soundscape of video games can be a daunting task. Looking to surround-sound home theater options, users hav ...

toggle

Most Commented