14 DAY TRIAL // A few days ago, it was reported that a new Mac OS X malware was discovered on the web, aiming to modify the DNS server settings on Apple's computers. Security company Sophos said today that it already provides protection for the infected file, adding that clients' security applications were updated since 01:12 GMT on 1 November 2007. The OSX/RSPlug-A Trojan horse is the latest threat for the Macintosh computers although the list of the dangerous files for the Apple system is pretty small and contains only a limited number of threats. However, it's quite important to remain up-to-date with the latest virus definitions which would allow you to keep the information stored on the computer safe and secure.
"What's important to realise is that this Trojan doesn't exploit a vulnerability in OS X, Leopard, Tiger, or any Apple code. This Trojan exploits the vulnerability within the person sitting in front of the keyboard. It's the Mac user who is giving permission for the code to run and allowing their computer to be infected," said Graham Cluley, senior technology consultant for Sophos.
"This is not a red alert, but it is a wake-up call to Mac users that they can be vulnerable to the same kind of social engineering tricks as their Windows cousins. The truth is that there is very little Macintosh malware compared to Windows, but clearly criminal hacker gangs are no longer shy of targeting the platform."
OSX/RSPlug-A is a Trojan horse which attempts to spread through web downloads and affects only the Macintosh computers. According to security company Sophos, all its versions of the antivirus software are already able to discover the threat and remove it. The Trojan tries to modify computer's DNS settings in order to redirect the user to malicious websites which are supposed to infect the system with all kinds of files.