Macs Beware of Malware Disguised as MacCinema Installer
Article by George Norman
On 12 Aug 2009
Trend Micro, company that specializes in providing network antivirus and internet content security software and services, has uncovered a new threat in the wild, threat that targets Macs. The company has discovered a Trojan horse that disguises itself as MacCinema Installer – this is in fact at DNS-changing Trojan from the OSX_JAHLAV malware family.

“A Domain Naming System (DNS)-changing Trojan targeting Macs is currently making the rounds disguised as MacCinema Installer (detected by Trend Micro as OSX_JAHLAV.D. This is the latest variant of OSX_JAHLAV.C, which was identified in June. The Trojan is supposedly a QuickTime Player update with the file name QuickTimeUpdate.dmg. As with its earlier variants, users are prompted to download the malware when trying to view certain online videos from .com domains with the IP address, 91.214.45.73,” explained Trend Micro.

Advertising

Mac users are well advised to stay away from these .com domains: allincorx, bigdron, cikaredo, civilizxx, comeandtryx, deribrowns, draxxtermania, givendream, hitrowzone, jumborad, ltdkeeper, operationelx, oxxadox, paxxtiger, rednetx, rstdeals, simplexdoom, sinister, tdenuwas, tniredrum, ufapeace. Mac users are also well advised to be cautious with software updates that do not originate from Apple.

Senior Security Consultant with Sophos, Graham Cluley, added that the company he works for detected the malware, called it OSX/Jahlav-C and provides protection for it since the start of the week. All Sophos products detect and protect against the Mac threat.

Cluley used the occasion to once again draw attention to the fact that Macs need adequate security software just like Windows PCs do: “Mac malware continues to make the headlines because of its novelty value and the fact that many Apple lovers are adamant that their computers are somehow protected by an invisible forcefield which makes them invincible. If you're a Mac user and not running anti-virus software, it's time to wake up and smell the cappuccino.”



Tags: Apple, Mac OS X, Trojan, Malware, DNS, Trend Micro, Sophos
About the author: George Norman
George is a news editor.
You can follow him on Google+, Facebook or Twitter

I Hope you LIKE this blog post! Thank you!
What do YOU have to say about this
blog comments powered by Disqus
Popular News
By George Norman on 01 Sep 2014
Put a password on shared links, set expiration dates for shared links, and set view-only permissions for shared folders. Dropbox Pro recently got all these new sharing controls.
By George Norman on 14 Aug 2014
Swarm has been rolled out to Microsoft’s Windows Phone Store. If you want to be able to check-in from your Windows Phone, you need to get the Swarm app for Windows Phone.
Related News
By George Norman on 24 Jul 2014
On Thursday, July 24, Apple is opening up its OS X Beta Program to the public. One million people will get to Beta test OS X 10.10 Yosemite.
By George Norman on 03 Jun 2014
Alongside iOS 8 and iOS 8 SDK, Apple introduced the next version of OS X – a redesigned and refined OS X version that will be called Yosemite.
By George Norman on 01 Jul 2014
Security company Intego recently rolled out Duplicate Zapper to the Mac App Store, thus offering OS X users around the world an efficient means of zapping...
By George Norman on 20 Jun 2014
Apple’s all-in-one desktop is now even more affordable. The Cupertino-based company just unveiled a new 21.5-inch, ultra thin iMac powered by...
Advertising
Hot Software Updates
Top Downloads
Become A Fan!
Link To Us!
Macs Beware of Malware Disguised as MacCinema Installer
HTML Linking Code