Think that Windows Vista is insecure, just because it's the latest iteration of the Windows line of operating systems and lack of security is taken inherently as a default characteristic? Well, here is your chance to have a look at Mac OS X. At the bottom of this article you will be able to find a video with the effects of the OSX/DNSChanger on Mac OS X, courtesy of F-Security. DNSChanger was initially detected by Intego, at the end of October 2007, and comes in a variety of versions targeting both Windows and Mac OS X operating systems.
"Social engineering techniques are used to persuade the user into downloading and running
this trojan. Websites hosting video (often elicit) claim that the video cannot be viewed without installing a new codec. The user is prompted to install the 'needed' codec. Once the fake codec is installed, the video will play so as not to raise suspicion. During the installation, the local machine's DNS settings are adjusted to point towards a malicious server," F-Secure revealed.
The DNSChanger Trojan horse is designed to infect both Mac OS X 10.4 Tiger and Mac OS X 10.5 Leopard. On top of this, variants of the malware are also able to compromise Windows. Depending on the operating system run by the users visiting malicious websites set up to drop DNSChanger, either the Windows or the Mac OS X version is delivered. In the end, the attack emphasizes the vulnerability of both platforms to social engineering schemes.
"The trojan changes the OS X network settings to use a different DNS server. DNS Settings are made with a tool called scutil. After installation, the script sends back an HTTP message with information that it successfully infected the system. The message contains the operating system version and the host name. The install script adds a crontab (a configuration file that specifies shell commands to run periodically on a given schedule) to a script to verify the malicious DNS servers remain unchanged," F-Secure warned.
Am sa scriu in romana pentru ca oricum nici cand am scris in engleza nu a folosit la nimic. Ba da... acum nu se mai pot posta comentarii direct la acest articol. Bravo! Domnul Marius Olaga, se pare ca nu aveti pic de moralitate. Sunteti actionar la Softpedia? Site-ul asta traieste din bani de la Micosoft? Cum de puteti mentine acelasi tip de articole in care prezentati cat de prost este MacOS X, iar Windows (Vista in special) este cel mai tare din parcare. Fiecare are dreptul sa isi spuna punctul de vedere. Dar ceea ce faceti aici este dezinformare si manipulare. Este cat se poate de transparenta atitudinea pro Microsoft, ori pentru un redactor este foarte grav sa fie partinitor. Banuiesc ca nu sunt singurul care am avut ceva de spus pe tema asta si sunt convins ca nu o sa va afecteze cu nimic ce am scris. Oricum mai mult ma interesa verticalitatea celor din stuff-ul Softpedia care va lasa sa scrieti asa. Nu pot sa va spun dacat atat: sa va fie rusine! A... si inca ceva... cat timp ziceti ca ati lucrat in OSX ca sa aveti dreptul sa va dati cu parerea???
Comment #2 by Bruce Rutland on 2008-01-22, 12:41 GMT
Guys - fair enough its a trojan on the Mac, as Apple's market share grow the script kiddies and there friends write malicious code, to grab their share of this growing market - This type of attack is nothing new in the PC World, PC users have been dealing with these for ages - But as with ALL attacks of this nature they require the User to download the code - and significantly execute it (Stupid). In preverse way all it proves is that Apple's market share is growing - its a sort of compliment
Digg this!
Slashdot it!
Add to del.icio.us
Stumble!
Submit to Reddit
Add to Technorati
Furl
PDF
| 7 vote(s) so far |
Cast your vote:
Comment #1 by 
SHARE YOUR OPINION ABOUT 
DO YOU WANT TO CONTACT US?