Giveaway: Bracketron Case If outdoor adventures are in your future this summer, enter to win a Bracketron Sport Case with Mount Strap from MacNN and keep that iPhone, iPod or other electronic device safe from the elements.      
toggle

AAPL Stock: 454.74 ( + 1.77 )

http://www.macnn.com/articles/09/01/22/trojan.linked.with.iwork/

Trojan found circulating with pirated iWork '09

updated 10:35 am EST, Thu January 22, 2009

 

Trojan linked with iWork


A new Trojan attack has been linked with illegal copies of iWork '09, says Intego. The security firm notes that in some copies of iWork found on BitTorrent sites -- and other pirating venues -- a Trojan dubbed OSX.Trojan.iServices.A is attached, masquerading in the form of a package file called iWorkServices. When the iWork installer is launched, iWorkServices is launched as well; while this may be halted by a request for an administrator password, Intego warns that Mac OS X 10.5.1 and earlier will install the Trojan without further prompting.

iWorkServices subsequently becomes a startup item with full root privileges, which are then used to connect to a remote server and inform a hacker that they have access. Further malware may be installed on a victim's computer, though this is not guaranteed.

So far over 20,000 people are believed to have downloaded infected copies of iWork '09, and Intego warns that the Trojan is an "extremely serious" threat. It can, however, be defeated by updating to the latest virus definitions.


by MacNN Staff

Post tools:

TAGS :

 security, iWork, malware

Related Articles

Recent Articles

toggle

Comments

  1. Guest

    Fresh-Faced Recruit

    Joined: Nov 1999

    +7
    01/22, 10:58am | report spam | (1 reply) Reply |

    Huh?

    The installer won't even fire up unless you have 10.5.6 installed...

  1. ViktorCode

    Fresh-Faced Recruit

    Joined: Jan 2006

    +3
    01/22, 11:02am | report spam | Reply |

    Update definitions...

    ...from a security firm or just remove the startup item? I wonder what would I do.

  1. vasic

    Fresh-Faced Recruit

    Joined: May 2005

    +5
    01/22, 11:09am | report spam | Reply |

    How about...

    ..."Update definitions from a security firm or just remove the startup item? I wonder what would I do."

    I would download iWork 09 from Apple instead of some bit torrent site. After all, it is a full, un-crippled version, and it will work for 30 days. If I like it that much, it will cost me very little to remove the 30-day limitation.

  1. Guest

    Fresh-Faced Recruit

    Joined: Nov 1999

    +2
    01/22, 11:11am | report spam | Reply |

    further Huh?

    Maybe one should be downloading pirated software? I haven't had any trouble getting the trial version from Apple, their server seems fast enough. So if the advantage isn't speed, then it is just theft. As they say, if it is too good to be true...

  1. Guest

    Fresh-Faced Recruit

    Joined: Nov 1999

    +5
    01/22, 11:12am | report spam | Reply |

    further Huh?

    Maybe one should NOT be downloading pirated software? I haven't had any trouble getting the trial version from Apple, their server seems fast enough. So if the advantage isn't speed, then it is just theft. As they say, if it is too good to be true...

  1. hayesk

    Professional Poster

    Joined: Sep 1999

    +5
    01/22, 11:25am | report spam | Reply |

    Deserve

    I can't say I feel sorry for anyone hit by this. There's no legitimate reason to download a pirated copy when there is a fully-functional demo available on Apple's site.

  1. Guest

    Fresh-Faced Recruit

    Joined: Nov 1999

    +4
    01/22, 11:28am | report spam | Reply |

    If you download Warez....

    you might as well box up your computer and send it to a botnet. You could build the best security paradigm ever and yet there will always be some stupid user that will defeat themselves.

  1. OS2Guy

    Fresh-Faced Recruit

    Joined: Jun 2006

    +2
    01/22, 12:14pm | report spam | Reply |

    Hooey

    Thousands upon thousands of people have downloaded iWork '09 which requires no serial or registration code to work and no one has reported a problem - well, except for a desperate software company that relies on frightening the Mac community. In all my years as a Mac user I've never seen a virus, trojan or worm on any of hundreds of machines I own, use or have access to - all of which participate on the web in every form. I say it is hooey.

  1. testudo

    Forum Regular

    Joined: Aug 2001

    -1
    01/22, 12:31pm | report spam | (1 reply) Reply |

    Re: Huh?

    The installer won't even fire up unless you have 10.5.6 installed..

    Yes, but this is the hacked installer, which will probably fire up on any machine with 10.5.1, install the trojan, then finally hit the complaint about 10.5.6 not being installed.

  1. bjojade

    Fresh-Faced Recruit

    Joined: Jun 2007

    +3
    01/22, 12:44pm | report spam | Reply |

    Trojans ARE a threat

    These sort of threats DO exist. While it requires someone to do something bad, writing a trojan program on a mac is pretty trivial. The user thinks they are getting iWork because that's what they are told. Since they are installing software, asking for an admin password is expected. However, once you key in that password, all bets are off and ANYTHING could be installed.

    This is the sole reason that anti-virus software would be legit to have on your machine. If it catches these things, it will protect you against getting screwed.

Show More Comments

Login Here

Not a member of the MacNN forums? Register now for free.

 
close
Photo
toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

HTC One

It is hard to understate just how critically important the HTC One is to the Taiwanese company’s fortunes. Despite its alarming declin ...

Samsung Galaxy S 4

Samsung's new flagship Android smartphone, the Galaxy S 4, faces even stiffer competition than its popular predecessor. With a five-in ...

HighPoint RocketU 1144CM USB 3.0 PCI-E card

Apple was one of the first -- if not the first -- major computer manufacturers to provide then-fledgling USB support at the expense of ...

toggle

Most Commented

 

Popular News