Feeds

Mac security site littered with malware

Gamekeeper turned poacher

Protecting against web application threats using SSL

A Mac security site has a forum full of links to actual malware which targets Apple computers.

Discussion forum posts on Macvirus.org seek to trick users into downloading the RSPlug-Gen Trojan, a type of malware capable of infecting Apple Macs. For good measure, the site also harbours posts designed to dupe prospective marks into downloading the Zlobar-Fam Windows Trojan.

Both the Trojans pose as fake codecs that are supposedly needed to view non-existent pornographic movie clips featuring troubled chanteuse Britney Spears.

The site serving the fake codecs detects the user agent in a browser in order to distinguish between Mac and Windows PCs before delivering the appropriate malware, anti-spyware firm Sunbelt Software reports.

As well as posts pointing towards malware, the forum on Macvirus.org (which describes itself as a site dedicated to "keeping an eye on Mac viruses") is also littered with actual pornographic entries.

An investigation by security researchers at Sophos suggests that the nom de plume GxxxxBxxxxxx used in the malware touting posts on Macvirus.org has also been used to publish links to malware on other "badly managed" forums - including a UK City Council, a wedding website, and numerous online gaming sites - since the start of February.

In most cases, either the attempts failed or the offending posts have since been removed. ®

Reducing the cost and complexity of web vulnerability management

More from The Register

next story
Early result from Scots indyref vote? NAW, Jimmy - it's a SCAM
Anyone claiming to know before tomorrow is telling porkies
TOR users become FBI's No.1 hacking target after legal power grab
Be afeared, me hearties, these scoundrels be spying our signals
Home Depot: 56 million bank cards pwned by malware in our tills
That's about 50 per cent bigger than the Target tills mega-hack
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
NORKS ban Wi-Fi and satellite internet at embassies
Crackdown on tardy diplomatic sysadmins providing accidental unfiltered internet access
UK.gov lobs another fistful of change at SME infosec nightmares
Senior Lib Dem in 'trying to be relevant' shocker. It's only taxpayers' money, after all
Critical Adobe Reader and Acrobat patches FINALLY make it out
Eight vulns healed, including XSS and DoS paths
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop tools are easier?
prev story

Whitepapers

Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Intelligent flash storage arrays
Tegile Intelligent Storage Arrays with IntelliFlash helps IT boost storage utilization and effciency while delivering unmatched storage savings and performance.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Beginner's guide to SSL certificates
De-mystify the technology involved and give you the information you need to make the best decision when considering your online security options.