toggle

AAPL Stock: 562.29 ( -3.03 )

New backdoor attempts to exploit Macs for DDoS attacks

updated 01:20 pm EDT, Tue October 25, 2011

Use IRC-based controls


A new backdoor intrusion attempts to turn Macs into bots for distributed denial-of-service (DDoS) attacks, and can also open them to other exploits, says security firm ESET. The malware is operated through IRC networks, and connects to one of a list of IRC servers so it can interpret commands received in a chat channel. Beyond turning Macs into bots, the malware can also enable file downloads by remote users, or execution of shell commands.

ESET labels the malware OSX/Tsunami.A, as it is actually based on a collection of Linux distributions categorized under the header Linux/Tsunami. The OS X backdoor is simply based on a 64-bit Mach-O binary instead of an ELF one, and uses different IRC server, channel, and password information. ESET notes that its own security software already detects Tsunami.A.


by MacNN Staff

print
email
(5)

TAGS :

 security, OS X

Related Articles

Recent Articles

toggle

Comments

  1. Spacemoose

    Fresh-Faced Recruit

    Joined: Feb 2004

    +9
    10/25, 02:37pm | report spam | Reply |

    Our Security Software Protects You from this Imagi

    Yet another security firm touting a non-existent threat to OS X, and anecdotally mentioning that their software protects you from it.

    Ask me about my excellent anti-sabre-toothed tiger spray.

  1. ricardogf

    Fresh-Faced Recruit

    Joined: Jan 2003

    +7
    10/25, 03:08pm | report spam | Reply |

    Huh?

    So please enlighten us:
    - How does one get affected by this?
    - Do I need to install something by myself?
    - Do I need to install something, THEN enter a malicious, near-obsolete IRC chat channel, THEN issue a number of commands?

    How the h*** am I supposed to get this malware?

    File under "One more Mac-related B.S. security FUD", please.

  1. johnsonua

    Fresh-Faced Recruit

    Joined: Aug 2003

    +6
    10/25, 03:08pm | report spam | Reply |

    I'll trade you!

    I have an excellent anti-velociraptor bracelet! Perhaps we could market them together!

  1. UmarOMC

    Fresh-Faced Recruit

    Joined: Aug 2001

    -2
    10/25, 06:12pm | report spam | Reply |

    Right after logging in...

    I click on the Sophos menubar icon and select Update Now—

  1. WiseWeasel

    Fresh-Faced Recruit

    Joined: Apr 1999

    +4
    10/26, 08:03am | report spam | Reply |

    Misleading

    According to the press release, this is a trojan horse binary executable that opens a backdoor controlled through IRC. You still need to download malicious code and run it in order to be infected; there is no inherent backdoor vulnerability in OS X.

Login Here

Not a member of the MacNN forums? Register now for free.

 
close
Photo
toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

iHome iW2 AirPlay speaker

iHome generally isn't known as a luxury brand when it comes to audio, but it is prolific -- the company's docks and speakers are every ...

Logitech Ultrathin Keyboard Cover

One of the iPad's main weaknesses has always been productivity. It's not a question of apps; while it has taken a little time for a na ...

Logitech UE Air Speaker

If maybe a little more slowly than Apple would like, AirPlay is becoming a staple of the wireless speaker market for iOS devices. The ...

toggle

Most Commented

 

Popular News