Macs Beware of Malware Disguised as MacCinema Installer
Trend Micro, company that specializes in providing network antivirus and internet content security software and services, has uncovered a new threat in the wild, threat that targets Macs. The company has discovered a Trojan horse that disguises itself as MacCinema Installer – this is in fact at DNS-changing Trojan from the OSX_JAHLAV malware family.
“A Domain Naming System (DNS)-changing Trojan targeting Macs is currently making the rounds disguised as MacCinema Installer (detected by Trend Micro as OSX_JAHLAV.D. This is the latest variant of OSX_JAHLAV.C, which was identified in June. The Trojan is supposedly a QuickTime Player update with the file name QuickTimeUpdate.dmg. As with its earlier variants, users are prompted to download the malware when trying to view certain online videos from .com domains with the IP address, 91.214.45.73,” explained Trend Micro.
Mac users are well advised to stay away from these .com domains: allincorx, bigdron, cikaredo, civilizxx, comeandtryx, deribrowns, draxxtermania, givendream, hitrowzone, jumborad, ltdkeeper, operationelx, oxxadox, paxxtiger, rednetx, rstdeals, simplexdoom, sinister, tdenuwas, tniredrum, ufapeace. Mac users are also well advised to be cautious with software updates that do not originate from Apple.
Senior Security Consultant with Sophos, Graham Cluley, added that the company he works for detected the malware, called it OSX/Jahlav-C and provides protection for it since the start of the week. All Sophos products detect and protect against the Mac threat.
Cluley used the occasion to once again draw attention to the fact that Macs need adequate security software just like Windows PCs do: “Mac malware continues to make the headlines because of its novelty value and the fact that many Apple lovers are adamant that their computers are somehow protected by an invisible forcefield which makes them invincible. If you're a Mac user and not running anti-virus software, it's time to wake up and smell the cappuccino.”
Tags: Apple, Mac OS X, Trojan, Malware, DNS, Trend Micro, Sophos
“A Domain Naming System (DNS)-changing Trojan targeting Macs is currently making the rounds disguised as MacCinema Installer (detected by Trend Micro as OSX_JAHLAV.D. This is the latest variant of OSX_JAHLAV.C, which was identified in June. The Trojan is supposedly a QuickTime Player update with the file name QuickTimeUpdate.dmg. As with its earlier variants, users are prompted to download the malware when trying to view certain online videos from .com domains with the IP address, 91.214.45.73,” explained Trend Micro.
Advertising
Mac users are well advised to stay away from these .com domains: allincorx, bigdron, cikaredo, civilizxx, comeandtryx, deribrowns, draxxtermania, givendream, hitrowzone, jumborad, ltdkeeper, operationelx, oxxadox, paxxtiger, rednetx, rstdeals, simplexdoom, sinister, tdenuwas, tniredrum, ufapeace. Mac users are also well advised to be cautious with software updates that do not originate from Apple.
Senior Security Consultant with Sophos, Graham Cluley, added that the company he works for detected the malware, called it OSX/Jahlav-C and provides protection for it since the start of the week. All Sophos products detect and protect against the Mac threat.
Cluley used the occasion to once again draw attention to the fact that Macs need adequate security software just like Windows PCs do: “Mac malware continues to make the headlines because of its novelty value and the fact that many Apple lovers are adamant that their computers are somehow protected by an invisible forcefield which makes them invincible. If you're a Mac user and not running anti-virus software, it's time to wake up and smell the cappuccino.”
Tags: Apple, Mac OS X, Trojan, Malware, DNS, Trend Micro, Sophos
I Hope you LIKE this blog post! Thank you!
What do YOU have to say about this
blog comments powered by Disqus
Popular News
By George Norman on 19 Jun 2013
Piriform updated Speccy and added temperature sensor output for the system tray. This means that Speccy will display the temperature when minimized to the tray.
By George Norman on 18 Jun 2013
A new product that offers top notch protection against spyware and malware is being developed in partnership by Bitdefender and Safer-Networking, the makers of Spybot – Search and Destroy.Related News
By George Norman on 08 Jan 2013
Mozilla is currently rolling out version 18 of its popular Firefox browser. Among the new features Firefox 18.0 brings to the table is support for Retina Display on Mac OS X 10.7 Lion and up.
By George Norman on 11 Jun 2013
Alongside iOS 7, Apple also presented the 10th major release of its desktop operating system at WWDC. OS X 10.9 Mavericks comes with more than 200 new features.
By George Norman on 11 Mar 2013
A CCleaner version for Android will be released in the near future. Piriform announced it’s working on one and said that the CCleaner app will be quick and easy to use.
By George Norman on 19 Apr 2013
The new icon and fresh new look introduced with CCleaner 4.0 for Windows is now available for Mac users as well. The latest release, v. 1.07, introduces this new visual experience and a few other nice changes.Advertising
Hot Software Updates
Top Downloads
2.
Opera5.
Trillian8.
AIM9.
Skype10.
Ad-Aware12.
Nero13.
Google Earth14.
Picasa15.
Winamp16.
iTunes17.
RealPlayer18.
uTorrent19.
eMule20.
WinRAR21.
BitComet22.
WinZip23.
Shareaza24.
CCleaner25.
Recuva26.
Tweak UI27.
CuteFTP29.
Adobe Reader30.
NewsPiperBecome A Fan!
Link To Us!
Macs Beware of Malware Disguised as MacCinema Installer
HTML Linking Code
HTML Linking Code