As Macs start to dominate PC’s, more and more people will have Macs in the household. The market share is going up everyday around the world. As the popularity goes up, the interest and use will go up. Since everyone is using them now, more developers will code for Macs because they want the most popularity they can get. Just like a virus maker wants to get his virus infected with as many people as he can. This virus maker is going to go where the people go and if the people all come to Macs, the viruses will follow.
Just recently, Secure-Mac and Intego discovered two Mac trojans. This seems hard to believe since a lot of people always thought that Mac OS X is free of all viruses and Spyware, but this is not true. Mac OS X is surely a lot more secure than windows, but there are some flaws. This is why you always see Apple releasing security software updates. Mac OS X is much harder to infect with a virus, but it is definitely possible. There has just not been enough hackers out there to figure it out.
Secure-Mac discovered a virus called “AppleScript.THT Trojan Horse.”
The Trojan horse runs hidden on the system, and allows a malicious user complete remote access to the system, can transmit system and user passwords, and can avoid detection by opening ports in the firewall and turning off system logging. Additionally, the AppleScript.THT Trojan horse can log keystrokes, take pictures with the built-in Apple iSight camera, take screenshots, and turn on file sharing. The Trojan horse exploits a recently discovered vulnerability with the Apple Remote Desktop Agent, which allows it to run as root.
Yeah, thats one hell of a trojan… Let’s look at the one Intego found. The trojan disguises itself as “PokerGame”
The Trojan horse, when run, activates ssh on the Mac on which it is running, then sends the user name and password hash, along with the IP address of the Mac, to a server. It asks for an administrator’s password after displaying a dialog saying, “A corrupt preference file has been detected and must be repaired.” Entering the administrator’s password enables the program to accomplish its tasks. After gaining ssh access to a Mac, malicious users can attempt to take control of them, delete files, damage the operating system, or much more.
You have to say to yourself, how is this possible after so long that there has been no trojans or viruses? Is Leopard less secure? No, it’s even more secure than Tiger. How is it easier to make viruses for Macs? The answer is that it is not easier, it is just that there are more people to figure out Mac OS X’s flaws.
There is no OS in the world that is perfect. They all have hidden openings and flaws. Once all the hackers and virus makes get frustrated because no one is downloading their viruses, they will switch over and study Mac OS X. It’s only a matter of time until Apple has to really get serious about security on their operating system. With Snow Leopard coming out in about a year, supposedly having major security updates, maybe this will hold the hackers back a while.
As you can see, AppleScript is very dangerous, so you better start downloading your anti-virus now… I suggest ClamXav.
If you found this page useful, consider linking to it.
Simply copy and paste the code below into your web site!
June 21st, 2008 at 5:43 pm
Although I’m a mac fan, the commercials have always bothered me. The only reason the mac doesn’t have viruses is because it owns less than 10% of the market share. Why make a virus to hit less than a tenth of the people when you could make one that could hit nine tenths of the people? Like you said, as Apple gains more and more market share in the computer industry, sooner or later people will convert and start making viruses for the mac. It’s only a matter of time.
June 22nd, 2008 at 11:35 am
bcvbcvbcb