AAPL Stock: 107.72 ( -5.04 )

Printed from

'Beta' backdoor Trojan for Mac enters circulation

updated 10:30 am EST, Mon February 28, 2011

Allows for phishing, shell commands

A new backdoor Trojan is targeting Mac users, says security firm Sophos. The attack is delivered via a client called BlackHole RAT, which in turn is based on Windows software known as darkComet. RAT is described by as "very basic," and effectively a beta, as even its creator admits that it's unfinished. It can nevertheless do some serious damage, as it allows an attacker to run shell commands or pop up a fake "Administrator Password" window to phish a person's account data.

Other options include dropping text files on a desktop, or sending URLs that open a website. A targeted Mac can be made to sleep, shut down or reboot; in that regard, a fullscreen window can be triggered which only offers the option of rebooting. "I am a Trojan Horse, so i have infected your Mac Computer," the window reads by default. "I know, most people think Macs can't be infected, but look, you ARE Infected! I have full controll over your Computer and i can do everything I want, and you can do nothing to prevent it. So, Im a very new Virus, under Development, so there will be much more functions when im finished."

The Trojan can end up on a Mac in several ways. While downloading pirated software is one, it can also be delivered via vulnerabilities in browsers, plugins and other programs. Some existing antivirus utilities, such as Sophos', should be able to scrub the malware.

by MacNN Staff





  1. gskibum3

    Joined: Dec 1969



    I'm so scared now I think I'll run out and buy Sophos Anti-Virus.


  1. Teq

    Joined: Dec 1969


    it's actually free

    afaik, not that I'll be installing it anytime soon

  1. ggirton

    Joined: Dec 1969


    jeeze don't these blackhats know?

    The unboxing ninjas are real? Sure, you may create a successful Mac virus but watch your gajongas ... because soon you will be removed from the gene pool and will no longer be able to reproduce.


  1. testudo

    Joined: Dec 1969


    Re: jeeze don't these blackhats know?

    Sure, you may create a successful Mac virus

    Well, at least the blackhats know that this isn't a virus. It's a trojan horse.

  1. Mr. Strat

    Joined: Dec 1969


    It's FUD time again

    And yet another company that coincidentally sells anti-virus software warns us about a Mac virus...

  1. facebook_Michael

    Via Facebook

    Joined: Feb 2011



    your comment

  1. facebook_Justin

    Via Facebook

    Joined: Feb 2011


    comment title

    Anyone else think its the anti-virus software makers that are actually making the viruses?

  1. testudo

    Joined: Dec 1969


    Re: Its FUD time again

    At least they get their information correct. As opposed to a second person here who's mentioned a Mac virus when it is no such thing.

  1. facebook_Bufus

    Via Facebook

    Joined: Feb 2011



    I've seen something like this back in the late 90's from Jason Toffaletti (who used to have a "company" called black hole media). I wonder if this is his doing....

  1. donmontalvo

    Joined: Dec 1969


    No admin rights, no problem.


Login Here

Not a member of the MacNN forums? Register now for free.


Network Headlines

Follow us on Facebook


Most Popular


Recent Reviews

Blue Yeti Studio

Despite being very familiar with Blue Microphones' lower-end products -- we've long recommended the company's Snowball line of mics ...

ZTE Spro 2 Smart Projector

Home theaters are becoming more and more accessible these days, but maybe you've been a bit wary about buying a home projector. And h ...

MSI Geforce GTX 970 100ME

When Nvidia announced a new line of video cards in September 2014, many people thought things would continue to be business as usual i ...


Most Commented