 
crazediamond
That's Dr. Craze to you
Premium
join:2002-01-19
Germantown, MD | lies all lies clearly this is propoganda from the microsoft camp.
haha im just kidding, this actually made my day. | |
|
 | 
Bulldawg
join:2001-02-14
Harwood Heights, IL | Re: lies all lies Must be just the ones with the Intel chips, it can't happen to the "real" Macs !!:o | |
|
| | 
barnett25
join:2004-01-26
Huntington, WV | Re: lies all lies Actually it's a PPC binary. | |
|
| | | 
rogue_
I Have A Secret Window
Premium
join:2001-10-17
Lake Hiawatha, NJ | Re: lies all lies superb craze! | |
|
| | | | deepblackmag
join:2004-12-27
99999 | Re: lies all lies Hardly a worm, i heard it requires the idio...erm user to enter the administrators password. Thats sure a worm. | |
|
| taar
join:2000-11-21 | Made my day too! | |
|
| 
fartness
Computersoc Dot Com
Premium
join:2003-03-25
Look Outside
clubs: | What do they do to patch it? Where's the patch? | |
|
| 
tempnexus
Premium
join:1999-08-11
Boston, MA | Wait Wait Mac's are now useing INtel and intel is for PC...so hmmm YEAH THAT'S IT, INTEL INFECTED MY COMPUTER!  :o:o:o | |
|
Xzibit
Wtf Mate?
Premium
join:2002-04-19
Santa Clara, CA
clubs: | Not so safe "We use macs, nothing can ever get to us!"
hehe why am i evily laughing? | |
|
Default_Uzer
join:2006-02-13
Springville, NY
clubs: | was only a matter of time dont count your chickens before they hatch! | |
|
GoodyearMark
Premium
join:2001-05-02
Goodyear, AZ
 ·Cox HSI
| Hmm Well it's about time someone tried to get me to infect my Mac with a social engineering project.
Nice try. I was hoping it would have been better coded than it is. Maybe a better cracker will come along.
--
Just because a word has an S in it doesn't mean it needs an apostrophe too. | |
|
| 
RadioDoc
Sortofadog
Premium,ExMod 2000-03
join:2000-05-11
Chicago, IL | Re: Hmm Sorry about that...I was in a hurry. Next time I'll do better.
--
Toolmaster of La Grange. | |
|
nolancj
join:2002-06-30
Long Beach, CA
·Charter Pipeline
| More or less a non event You guys should really read the article and the background (not Sophos, their account is not accuract) to this. It's not a Virus, more malware. Requires user action. Requires admin password to be typed, requires a file to manually be opened and to manually be run.
Check this for more info: »www.macrumors.com/c.php?u=http%3···40126001
Please let me know when someone get a virus or malware that comes even close to the crap that infects windows...
non event | |
|
| 
AthlGrond
Premium,MVM
join:2002-04-25
Aurora, CO
·Comcast
| Re: More or less a non event said by nolancj  :non event Essentially.
--
You are now free to paint your hair wild colors and run around naked. -dg2 | |
|
| | |
| | |
AthlGrond
Premium,MVM
join:2002-04-25
Aurora, CO
·Comcast
edit:
February 16th, @05:36PM
| Re: More or less a non event I have no idea how to use a Mac, nor do I want to. (Playing computer games is too important to me to go that route.)
This is just not nearly as serious a problem as what Windows users face on a daily basis where hooking the computer up to the internet can get your computer hijacked.
So this worm that requires user interaction is on the level of an Outlook VB script vulnerability, not very exciting.
Sorry.
[Edit]
I agree on one point though, because it's on a Mac it doesn't matter! 
[/Edit]
--
You are now free to paint your hair wild colors and run around naked. -dg2 | |
|
| 
TK Junk Mail
Go ahead, make my day
Premium
join:2002-03-03
Margate City, NJ
clubs:
·Comcast
| said by nolancj :It's not a Virus, more malware. Requires user action. Requires admin password to be typed, requires a file to manually be opened and to manually be run. Please let me know when someone get a virus or malware that comes even close to the crap that infects windows... Seems not everyone agrees with you:
»www.macobserver.com/article/2006···.9.shtml
Oompa-Loompa only affects Macs with PowerPC processors running Mac OS X v10.4, according to Intego. The company also pointed out that a password won't be required if a user who's logged in as an administrator opens the file. Intego believes Oompa-Loompa is actually "a combination of all three types of malware. First, it is a Trojan horse: an executable hidden inside a file disguised as a graphic file. Then it is a virus, as it replicates in other applications on a user's computer. Finally, it is a worm, when it sends itself, via iChat, to other users." --
--
Join Red Room Forum
My Web Page
Conrail Photo Album | |
|
| |
crazediamond
That's Dr. Craze to you
Premium
join:2002-01-19
Germantown, MD | Re: More or less a non event obviously you're wrong. this stuff doesn't exist for macs. haven't you been reading their comments in this thread? | |
|
| | |
| | |
TK Junk Mail
Go ahead, make my day
Premium
join:2002-03-03
Margate City, NJ
clubs:
·Comcast
edit:
February 16th, @06:17PM
| Re: More or less a non event That is very good security practice. But most users don't do that. They logon with admin access so they can install all the free software and games out there.
--
--
Join Red Room Forum
My Web Page
Conrail Photo Album | |
|
| | | |
nolancj
join:2002-06-30
Long Beach, CA | Re: More or less a non event Do you use a Mac? You don't need admin to install Most software (only stuff I can think of that does is VPN clients, and possibly a driver for a device). It's not like a PC. | |
|
| | | | |
TK Junk Mail
Go ahead, make my day
Premium
join:2002-03-03
Margate City, NJ
clubs:
·Comcast
| Re: More or less a non event said by nolancj :Do you use a Mac? You don't need admin to install Most software (only stuff I can think of that does is VPN clients, and possibly a driver for a device). It's not like a PC. No. The only thing I do on Macs is help people hooking up to wireless routers and setting up wireless security settings.
--
--
Join Red Room Forum
My Web Page
Conrail Photo Album | |
|
| | | | | |
| | | | 
novaflare
The Dragon Was Here
Premium
join:2002-01-24
Barberton, OH
| said by TK Junk Mail :That is very good security practice. But most users don't do that. They logon with admin access so they can install all the free software and games out there. Yep sort of like all the preconfigured macs that the local compusa sales here heh. Every one of them are set up to auto log in the buyer as ooops you guessed it admin. Friend of mine had a mac given to him guess what? Yuup you guessed it auto logged in as admin.
Considering most macs that are out there come from the likes of bestbuy and compusa type stores guess what most of them will be default weak in secuirty just like pcs.
Infact id bet alot more on a purely percent based number would be badly set up. You dont build a mac after all because you cant go to your local mom and pop comp shop buy the parts and build your self.
--
DSLR security chat at us.ausirc.net chanel #dslr_sec lets pack this channelopen source dns server for *nix and windows »powerdns.com | |
|
| 
Hangmn
Don't Fight It...It's Inevitable
Premium
join:2000-04-08
Philadelphia, PA | OMG most all virii require user action...this is just the beginning
--
»davescustompc.com | |
|
| vernalex
Premium
join:2000-10-19
Willimantic, CT
| Sorry to inform you but a virus is malware.
»www.vernalex.com/guides/malware/···#viruses
But, to be exact you are right about it not being a virus It is instead a trojan worm. A trojan because it requires user action to execute, but a worm since it spreads itself.
And this is how most malware is installed on Windows. | |
|
| | 
sporkme
drop the crantini and move it, sister
Premium,MVM
join:2000-07-01
Budd Lake, NJ
·Optimum Online
| Re: More or less a non event said by vernalex :And this is how most malware is installed on Windows. Really? A user needs to be tricked into downloading a gzipped tarfile, unzip, untar, click an icon, and then enter a password?
Wow. I had no idea..
--
Nothing in all the world is more dangerous than sincere ignorance and conscientious stupidity | |
|
| | | vernalex
Premium
join:2000-10-19
Willimantic, CT
| Re: More or less a non event said by sporkme :said by vernalex :And this is how most malware is installed on Windows. Really? A user needs to be tricked into downloading a gzipped tarfile, unzip, untar, click an icon, and then enter a password? Wow. I had no idea.. Yes, really.
A lot of worms come attached as compressed executables. And I like how you make it sound hard to download and to twice double click a file, as you would with any compressed imaged on OS X. The only difference is the password since Windows, by default, won't ask to run as a higher privileged user and instead execution will just fail, whereas on the Mac will ask for the password. Although I will admit that more users run as a limited user on OS X, I still know plenty that do not and many of them would be quite willing to type a password to see the next offering from Apple. | |
|
| | | |
sporkme
drop the crantini and move it, sister
Premium,MVM
join:2000-07-01
Budd Lake, NJ
·Optimum Online
| Re: More or less a non event said by vernalex : And I like how you make it sound hard to download and to twice double click a file, as you would with any compressed imaged on OS X. A .tgz is not a disk image, it's more akin to a zipfile.
People generally don't distribute Mac stuff as tarfiles.
Warning sign number 1. 
said by vernalex :The only difference is the password since Windows, by default, won't ask to run as a higher privileged user and instead execution will just fail, whereas on the Mac will ask for the password. Although I will admit that more users run as a limited user on OS X, I still know plenty that do not and many of them would be quite willing to type a password to see the next offering from Apple. I saw this on another message board that had less teenagers going "OMG! Teh Maxor is Haxor!":
"That's not a trojan, it's an I.Q. test."
--
Nothing in all the world is more dangerous than sincere ignorance and conscientious stupidity | |
|
| | | | | vernalex
Premium
join:2000-10-19
Willimantic, CT
| Re: More or less a non event I know what a tarball is. I never said it was a disk image, I said it appears to be a compressed image(-d).
The problem is that the extensions are hidden, and most Mac users don't even know what a file extension is anyhow. And while most Mac users may not use a tarball to send files, so they won't be too surprised by a compressed image. So, while I would have been suspicious of the file, I could see how most users wouldn't be. | |
|
| 
John Galt
Premium
join:2004-09-30
Oceanside, OR
| said by nolancj :...a file to manually be opened and to manually be run. Reminds me of this:
DEAR RECEIVER,
You have just received a Taliban virus. Since we are not so technologically advanced in Afghanistan, this is a MANUAL virus. Please delete all the files on your hard disk yourself and send this mail to everyone you know.
Thank you very much for helping me.
Chief Hacker
Taliban
--
A is A | |
|
| 
FLea973
Premium
join:2001-02-27
Morristown, NJ
clubs:
| said by nolancj :Please let me know when someone get a virus or malware that comes even close to the crap that infects windows... OK, I'll take you up on that... just let me know when Mac OS X has anywhere near the same market penetration as windows does.... After all, if you're hunting then you're more likely to aim at and HIT an elephant than you are a mouse. | |
|
|
novaflare
The Dragon Was Here
Premium
join:2002-01-24
Barberton, OH
| said by nolancj :You guys should really read the article and the background (not Sophos, their account is not accuract) to this. It's not a Virus, more malware. Requires user action. Requires admin password to be typed, requires a file to manually be opened and to manually be run. Check this for more info: » www.macrumors.com/c.php?u=http%3···40126001Please let me know when someone get a virus or malware that comes even close to the crap that infects windows... non event Ok it has happened its this very email worm cause well put simply 99% of all viri trojans or worms require the user to download and run the file to infect them selves.
Worms and viruses that infect all on their own are extreamly rare to the point of almost no existing at all for any os.
In worms we got msblaster sasser nimda and code red. In spyware area ive realy never seen any true 100% drive by downloads. Trust me my idiot brother has infected him self with every thing out there at one point or another. I had put keyloggers and other things on his com to see just exactly what he did. At one point he had over 90 infections live at one time and the keylogger i used also recorded things such as mouse position and mouse button presses. After going over these logs i was able to find out that all but a small and questionable infection required him to click yes multiple times. The one questionable spyware app in qestion btw was wild tangent. I know from experiance this is only installed by 2 meahtods bundled software or by clicking install prompts
Im still waiting to see a true no user interaction drive by download.
--
DSLR security chat at us.ausirc.net chanel #dslr_sec lets pack this channelopen source dns server for *nix and windows »powerdns.com | |
|
| 
MeanPeepsSuk
mmmMMMeaty
join:2004-11-21
Muddy Field
| I read the article.. and it says:
"Despite much confusion on this detail, most users were not prompted for the administrator password before the file modifications took place. (The Application directory is writable by the Admin accounts which most Mac OS X user accounts are established as, by default.)"
And as the file needing to be manually opened, how many viruses do you know that doesn't start with some user action?
Could be more of an event that you want to believe.
--
"There are no victories against stupidity; only battles." | |
|
Buckazznaked
Premium
join:2001-02-24
Vidor, TX
| Wait and see. Now this seems like it happened before, if I remember correctly it was another Ant-virus company out there that was trying to get itself in the market of Mac users. I myself would have to see it to believe it. Correct me if I'm wrong but it will still need me to enter my administrative password in order to install. Guess we will have to see if it strikes any ATM members or simply another ploy to sell useless software to Mac users.
--
The Greatest Site of all Time »www.setexasonline.com/index.html | |
|
| DarkSithPro
join:2005-02-12
Huntington Beach, CA
edit:
February 16th, @04:48PM
| Re: Wait and see. Hurry Apple users. Turn this into a M$ bashing thread like you guys always do whenever Apple gets negative media attention... | |
|
| |
nolancj
join:2002-06-30
Long Beach, CA
·Charter Pipeline
| Re: Wait and see. said by DarkSithPro :Hurry Apple users. Turn this into a M$ bashing thread like you guys always do whenever Apple gets negative media attention... Big difference between MS bashing and facts.
No need to bash MS, they do that handily all by themselves. | |
|
| 
BloodRoses
The Purple Faerie
Premium
join:2003-03-17
edit:
February 16th, @04:50PM
| Oh no'z they're going to steal my mega hurts by conning me into running something that deletes a few torrents I downloaded last night.
*yawn*
--
- Stephie | |
|
Nezmo
The name's Bond. James Bond.
Premium,MVM
join:2004-11-10
Coppell, TX | LOL Here we go again. Cabaret time. | |
|
Pv8man999
@in.us
| It's about God dam time....Sick of some of my friends that use MAC always talking about how a MAC is superior to the PC because it's "Security is impenetrable". Now they are the same as us and must now officially shut the fuck up.
No offence to Non-cocky MAC users. | |
|
|
See 7 replies to this post |
|
Dread
Mark for moderation
Premium
join:2005-02-28
irc | Ha This is great, now all the mac retards will go out of their way to defend OS X | |
|
|
See 6 replies to this post |
|
pv8man17
join:2003-10-07
Hammond, IN | It's about dam time....Sick of some of my friends that use MAC always talking about how a MAC is superior to the PC because it's "Security is impenetrable". Now they are the same as us and must now officially shut up.
No offence to Non-cocky MAC users. | |
|
|
nolancj
join:2002-06-30
Long Beach, CA
·Charter Pipeline
| Re: It's about said by pv8man17 :dam time....Sick of some of my friends that use MAC always talking about how a MAC is superior to the PC because it's "Security is impenetrable". Now they are the same as us and must now officially shut up. No offence to Non-cocky MAC users. I think anyone with 1/2 a brain knows that there is not a single piece of software out there that is 100% secure.
And, it's inevitable that eventually there will be "real" viruses with the Mac.
But, as I said before, this really is a not terribly significant. It's not a virus. It "might" be considered malware... but that's even a stretch. | |
|
| | 
Rothan Tik
Destroyer of worlds
Premium
join:2000-11-07
Danvers, MA
 ·Verizon FIOS
 ·Verizon Online DSL
edit:
February 16th, @05:17PM
| Re: It's about said by nolancj :said by pv8man17 :dam time....Sick of some of my friends that use MAC always talking about how a MAC is superior to the PC because it's "Security is impenetrable". Now they are the same as us and must now officially shut up. No offence to Non-cocky MAC users. I think anyone with 1/2 a brain knows that there is not a single piece of software out there that is 100% secure. And, it's inevitable that eventually there will be "real" viruses with the Mac. But, as I said before, this really is a not terribly significant. It's not a virus. It "might" be considered malware... but that's even a stretch. Making a virus for a MAC has never been worth it in the first place. It's a smaller percentage of people overall, so the hackers go for the highest amount of people they can infect.
It's fun to watch Mac's fall on their asses by themselves anyways.
Nothing is invincible. It's only a matter of time. | |
|
| JSRoman
Premium
join:2005-03-10
Callahan, FL
| said by pv8man17 :No offence to Non-cocky MAC users. Sorry but I don't think those exist. | |
|
clickie
join:2005-05-22
Monroe, MI
| Letsee... In order for it to work, you have to download it yourself, un-gzip it, un-tar it and click on a link. In order for it to do much else, you have to GIVE it permission by typing your password.
I hardly consider this a virus -- it's malware that uses social engineering to fool the user into starting its engine. Same thing exists on Windows except it gains a much much larger foothold on the machine with far less clues that something is happening. | |
|
|
See 8 replies to this post |
|
pv8man17
join:2003-10-07
Hammond, IN
| Wait a minute Shoulden't this be the picture at the top? | |
|
| 
DrewCapu
Giant Diehard
join:2001-12-19
California
clubs: | Re: Wait a minute Nice graphic change.
cute. | |
|
| |
Carl
Premium
join:2004-07-21
Krotz Springs, LA | It does not matter. I do not use iChat (AdiumX rocks!) nor do I accept file transfers. So essentiall this does not apply to me. | |
|
|
barnett25
join:2004-01-26
Huntington, WV
| Re: It does not matter. No, it couls still apply if you download a compressed file, uncompress it, click on it, and enter your Username/password.
I think I'll write a Windows virus... write a script that deletes the C: drive, give it the same icon as a .jpg file, and name it "133tVISTAscreenies". And the best part is that the window's users won't even have a chance, because by default they would not be asked for a username/password. | |
|
| | 
toadlife
Premium
join:2004-05-03
Coalinga, CA
·AT&T Yahoo
| Re: It does not matter. said by barnett25 :And the best part is that the window's users won't even have a chance, because by default they would not be asked for a username/password. Actually, your fancy-smanshy script would fail miserably if I ran it on my Windows machine. | |
|
| | 
kamm
join:2001-02-14
Brooklyn, NY
 ·Packet8
| said by barnett25 :No, it couls still apply if you download a compressed file, uncompress it, click on it, and enter your Username/password. I think I'll write a Windows virus... write a script that deletes the C: drive, give it the same icon as a .jpg file, and name it "133tVISTAscreenies". And the best part is that the window's users won't even have a chance, because by default they would not be asked for a username/password. Too bad that your funny false ideas about Windows just proved you're obviously way too clueless to write anything. | |
|
| | |
barnett25
join:2004-01-26
Huntington, WV | Re: It does not matter. The point I was trying to make was that this "virus" is nothing but a program with a different icon. If this was on Windows it would be scoffed at, and everyone would be making fun of the virus writer rather than the users effected. | |
|
|
novaflare
The Dragon Was Here
Premium
join:2002-01-24
Barberton, OH
| said by Carl :I do not use iChat (AdiumX rocks!) nor do I accept file transfers. So essentiall this does not apply to me. Same is true for a solid 90% of windows worms viri and trojans for a large majority of users any how. I dont use much of windows default stuff. Simply put its not for security reasons its because i just like being diffrent than any one else. Pluss it keeps my idiot brothers from even trying to use my computer lol. I use aston desktop at moment. Basically for me i find apps to replace default windows ones that are more a match for me. Shells filemanagers etc. In some cases its a slight loos on functionality more often its a gain of new fetures and functions.
--
DSLR security chat at us.ausirc.net chanel #dslr_sec lets pack this channelopen source dns server for *nix and windows »powerdns.com | |
|
Guru
join:2005-12-01
Canada
| It just shows This just shows that the reason Mac never had to face a virus problem wasn't because it's fundamentally safer than others, but it's just because Mac wasn't used widely.
So it's been quite pointless for hackers/virus-makers to dedicate their time for making troublesome computer virus for Macs, whereas the same computer virus can damage SO MUCH MORE computers based on Windows. | |
|
| vernalex
Premium
join:2000-10-19
Willimantic, CT
| Re: It just shows It isn't even so much that a Mac worm would damage less than one written for Windows, but more related to the fact that in order for a worm to spread it needs to reach a critical mass. And this is a problem if 90% of the computers it scans are Windows computers, and another few percent are other operating systems besides OS X.
However, I predict that trojans and worms will get more popular on the Mac. OS X isn't invulnerable, and I find its users even less competent than PC users. | |
|
|
| 
boog
Premium
join:2000-07-24
Trenton, OH
| Re: OK Guys time to come clean!!! be proud?
really, all this comes down to is that everyone needs to do "smart computing"
like, don't run as administrator. That is the default setting for all *nix's (including Mac's). You can be just as secure in windows running this way (again smart computing), the problem is programs that expect administrator rights, so everyone just accepts the fact that you have to be admin all the time......not so smart in alot of instances.
Hopefully vista will fix that and force programmers to write programs for users and not admin. unless of course it is to administer the computer!
also, smart computing is not clicking every file that comes along!
hope this makes sense, and everyone realises that I am not bashing any OS, just users that accept the fact that running as administrator is just fine.
btw, I use windows, linux, and mac on a daily basis, all are virus free!
no one should be proud of writing a "virus" wether it is well/poorly written. | |
|
| | 
ShootToThril
Tell The Truth
Premium
join:2004-06-07
Sherman Oaks, CA
clubs: |
|
First Worm for Mac OS X
