Feeds

First Mac OS X fake installer pops up, racks up your mobe bill

Russian music app? Nope, it's an SMS trojan

Choosing a cloud hosting partner with confidence

Crooks have developed a new Mac OS X-specific Trojan that mimics the behaviour of a legitimate software installer.

Trojan-SMSSend-3666, which poses as an application for listening to music on a popular Russian social networking site, attempts to hoodwink marks into handing their mobile number to activate the radio app. Users are asked to enter their phone number into an appropriate field and then specify the code sent to the mobile in an SMS.

In the process victims are charged for a premium-rate text message and sign themselves up for regular debits. In return, they get nothing beyond an application that can be downloaded for free from elsewhere on the net, at best.

"The malicious scheme used to spread this Trojan is notorious among many Windows users but until now it hasn't been employed to deceive owners of Macs," notes Russian antivirus firm Dr Web.

Trojan-SMSSend-3666 was built using "affiliate programme" ZipMonster, which helps fraudsters craft fake installers and assists in collecting payments for the distributors of the malware. Crooks have been encouraged to migrate from cooking up fake Windows installers to creating fraudulent Mac OS X apps, in this case a fake VKMusic 4 for Mac OS X set-up utility.

Dr Web has a full write-up of the threat, including screenshots, in a blog post here. The Next Web notes that Apple has updated its virus definition files to block the scam.

This won't, of course, prevent possible future variants of the malware emerging, which may appear under a slightly different guise. The days of Windows-only desktop malware are long over, certainly since the appearance of the Flashback Trojan this year. If you're an Apple Mac OS X user on the web, caution is advised.

Fake installer scams have already been seen in the field of smartphone malware. Some notable cases of premium service abusers include malicious versions of Bad Piggies and Adobe Flash Player for Android, Trend Micro reports. ®

Secure remote control for conventional and virtual desktops

More from The Register

next story
Nexus 7 fandroids tell of salty taste after sucking on Google's Lollipop
Web giant looking into why version 5.0 of Android is crippling older slabs
Be real, Apple: In-app goodie grab games AREN'T FREE – EU
Cupertino stands down after Euro legal threats
Download alert: Nearly ALL top 100 Android, iOS paid apps hacked
Attack of the Clones? Yeah, but much, much scarier – report
Microsoft: Your Linux Docker containers are now OURS to command
New tool lets admins wrangle Linux apps from Windows
Bada-Bing! Mozilla flips Firefox to YAHOO! for search
Microsoft system will be the default for browser in US until 2020
prev story

Whitepapers

Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Getting ahead of the compliance curve
Learn about new services that make it easy to discover and manage certificates across the enterprise and how to get ahead of the compliance curve.
Top 5 reasons to deploy VMware with Tegile
Data demand and the rise of virtualization is challenging IT teams to deliver storage performance, scalability and capacity that can keep up, while maximizing efficiency.