Graham Cluley’s blog

I've been sick for a day or two. One of the drawbacks of being tucked up in bed with a fever is that my wireless signal doesn't quite make it that far up the stairs - and so the blog can be interrupted and emails left unanswered.

Anyroad, in case you missed it check out Vanja's post on the SophosLabs blog about a new example of Apple Mac OS X malware that we have encountered.

In many ways the malware, which Sophos detects as OSX/Jahlav-A, is very similar to the RSPlug financially-motivated malware that we first saw this time last year.

Like other malware campaigns engineered by this particular gang, a bogus webpage is created claiming to contain a video. Visiting the site produces a message saying that you don't have the correct codec installed to watch the video - whereupon the site offers you an EXE if you run Windows, and a DMG (Disk Image) file if you are using an Apple Mac.

Of course, installing the code is a very bad idea - whichever operating system you use.

Coincidentally, news of this latest piece of Mac OS X malware follows close on the heels of the computer vendor publishing a support advisory underlining the importance of all Apple users to run anti-virus software.

Posted on November 27th, 2008 by Graham Cluley, Sophos
Filed under: Apple, Malware

                                         

Free virus scan - Download the Sophos Threat Detection Test

Related posts

• Critical security flaws discovered in Adobe Flash Player - are you patched?
• Zero day vulnerability in Microsoft Office Web Components discovered
• Snow Leopard malware protection in action
• Mac malware adopts porn video disguise
• Leighton Meester sex video lure spreads Mac and Windows malware to Twitter users