madison

Zero Day

Ryan Naraine and Dancho Danchev
Home / News & Blogs / Zero Day

New Mac OS X malware disables Apple's malware protection

By | October 19, 2011, 4:33am PDT

Summary: Security researchers from F-Secure have spotted a Mac OS X malware that disables Snow Leopard’s XProtect.plist antivirus signatures updates.

Kick off your day with ZDNet's daily e-mail newsletter. It's the freshest tech news and opinion, served hot. Get it.

More from “Zero Day”

Topics

Apple Macintosh, Malware, Spyware, Adware & Malware, Cyberthreats, Apple Mac OS X, Apple Mac OS, Viruses And Worms, Security, Operating Systems, Software, Dancho Danchev

Dancho Danchev is an independent security consultant and cyber threats analyst, with extensive experience in open source intelligence gathering, malware and cybercrime incident response.

Disclosure

Dancho Danchev

More details on Dancho Danchev's current and past professional affiliations, can be found in his LinkedIn profile.

Biography

Dancho Danchev

Dancho Danchev is an independent security consultant and cyber threats analyst, with extensive experience in open source intelligence gathering, and cybercrime incident response. He's been an active security blogger since 2007, and maintains a popular security blog sharing real-time threats intelligence data with the rest of the community on a daily basis. More details on Dancho Danchev's current and past professional affiliations, can be found in his LinkedIn profile. You can also follow him on Twitter

Talkback Most Recent of 65 Talkback(s)

  • RE: New Mac OS X malware disables Apple's malware protection
    Really? How long till Mac users need a full fledged anti-virus product?
    ZDNet Gravatar
    xpect
    19th Oct
  • never
    @xpect
    these "warnings" from the av-peddlers have been around since mac os x is around. trojans as well. still, no viruses after more than a decade. these scare tactics "messages" from the windows av companies desperately trying to sell into the growing mac market are getting old.
    ZDNet Gravatar
    bannedfromzdnetagainandagain
    19th Oct
  • RE: New Mac OS X malware disables Apple's malware protection
    @bannedfromzdnetagainandagain You know, except there aren't really any viruses for Windows anymore either. Most malware is socially engineered nowadays.
    ZDNet Gravatar
    Aerowind
    19th Oct
  • RE: New Mac OS X malware disables Apple's malware protection
    @bannedfromzdnetagainandagain trojans as well. still, no viruses after more than a decade.

    Yep because we all know Viruses are the only danger to a Mac. Trojans... nah... As long as it isn't a Virus, you're good to go!
    ZDNet Gravatar
    Badgered
    19th Oct
  • RE: New Mac OS X malware disables Apple's malware protection
    @bannedfromzdnetagainandagain
    I think we are talking about trojans here and not viruses. Viruses aren't really the problem of the day unless you woke up from a 10 year coma or something, but anyway trojans are just as dangerous as they will suck out your private info for use to steal your identity and what not. I would recommend you get you an AV package and get some piece of mind.
    ZDNet Gravatar
    OhTheHumanity
    19th Oct
  • @aerowind
    you mean except for that nasty little bluetooth exploit in Windows 7 a few months ago. You know, the one where your machine could get pwned and you never know it by anyone within bluetooth range. Yep. Take your laptop to a Starbucks and get pwned while drinking your latte.
    ZDNet Gravatar
    baggins_z
    19th Oct
  • What was the name of the exploit?
    @baggins_z: you mean except for that nasty little bluetooth exploit in Windows 7 a few months ago.

    I know there was a vulnerability but I'm not aware of any exploit.
    ZDNet Gravatar
    ye
    19th Oct
  • RE: New Mac OS X malware disables Apple's malware protection
    @bannedfromzdnetagainandagain So despite every shred of evidence, despite the fact that Apple has released and maintained an anti-malware solution for the Mac OS you still refuse to acknowledge that there are any Mac malware issues. Despite everything you are still keeping your head in the sand. Got it.
    ZDNet Gravatar
    Pete "athynz" Athens
    19th Oct
  • That was the most lame excuse I've seen today
    @bannedfromzdnetagainandagain

    trying to cover for Apple

    You shouldn't try making an excuse if you're really not going to put your heart into it. It's insulting.
    ZDNet Gravatar
    William Farrell
    19th Oct
  • RE: New Mac OS X malware disables Apple's malware protection
    @bannedfromzdnetagainandagain

    You are not well informed. My brother is requred to use a MAC for business purposes because some of the best AV (Audio Video) software runs on MAC. He had many, many problems with his system a few months ago and I suggested he investigate AV (Anti Virus) software for the MAC and run a scan. He did, and found that his MAC was infected. The software cleaned up the issues and he is now a happy camper.

    Next time comment on subject you are educated to comment on. Regards
    ZDNet Gravatar
    toomuchtime
    19th Oct
  • RE: New Mac OS X malware disables Apple's malware protection
    @Badgered LOL grin Thanks for the laugh and a half.
    ZDNet Gravatar
    MrElectrifyer
    19th Oct
  • RE: New Mac OS X malware disables Apple's malware protection
    @xpect Forever, until/unless they go back to big-endian PPC!
    ZDNet Gravatar
    Starman35
    19th Oct
  • RE: New Mac OS X malware disables Apple's malware protection
    @xpect

    From the F-Secure page "To complete its installation/infection, Flashback.C requires the user to key in the administrator password."

    As with any OS that allows the user to install programs, it's only as secure as the person operating it!
    ZDNet Gravatar
    cbennett111
    19th Oct
  • RE: New Mac OS X malware disables Apple's malware protection
    @cbennett111

    Yup.. I have literally seen people click on something or download something and the computer warn it is not safe and they click OK anyway.
    ZDNet Gravatar
    bobiroc
    19th Oct
  • RE: New Mac OS X malware disables Apple's malware protection
    @cbennett111 None of our OS X users have their administrator password, because all programs run just fine without it. You only need the password if something needs to be installed on the Mac. Therefore I think we all are pretty much immune to this particular piece of trash as well as others like it.
    ZDNet Gravatar
    arminw
    19th Oct
View More Comments

Talkback - Tell Us What You Think

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]
Click Here

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity

Blog Roll

Blog Archive

White Papers, Webcasts, & Resources