Re: [Full-disclosure] mac trojan in-the-wild



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Oh don't be so bloody sensationalist. You're worse than the
journalists because you should know better.

- -nnp
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.7 (Darwin)
Comment: http://firegpg.tuxfamily.org

iD8DBQFHKpQRbP10WPHfgnQRAtZ9AKDIydXWUjKGq4OboanGyxHXFMYdWACfUGvX
hky9nDk4BKs4MdK+htgIGv0=
=k7Xe
-----END PGP SIGNATURE-----

On 10/31/07, Gadi Evron <ge@xxxxxxxxxxxx> wrote:
For whoever didn't hear, there is a Macintosh trojan in-the-wild being
dropped, infecting mac users.
Yes, it is being done by a regular online gang--itw--it is not yet another
proof of concept. The same gang infects Windows machines as well, just
that now they also target macs.

http://sunbeltblog.blogspot.com/2007/10/screenshot-of-new-mac-trojan.html
http://sunbeltblog.blogspot.com/2007/10/mackanapes-can-now-can-feel-pain-of.html

This means one thing: Apple's day has finally come and Apple users are
going to get hit hard. All those unpatched vulnerabilities from years past
are going to bite them in the behind.

I can sum it up in one sentence: OS X is the new Windows 98. Investing in
security ONLY as a last resort losses money, but everyone has to learn it
for themselves.

Gadi Evron.



--
http://www.smashthestack.org
http://www.unprotectedhex.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/