madison
Home / News & Blogs

Hackers port trojan from Linux to OS X

Michael Lee, ZDNet Australia | October 26, 2011 7:43 AM PDT

Summary

Security researcher report hackers have gone out of their way to port an old Linux backdoor Trojan to the Apple Mac OS X platform.

Topics

Researcher, Trojan Horse, Hacker, Linux, Apple Mac OS X, Spyware, Hacking, Operating Systems, Security, Viruses And Worms, Software, Apple Mac OS, Adware & Malware

Security researchers at ESET and Sophos have discovered that hackers have gone out of their way to port an old Linux backdoor Trojan to the Apple Mac OS X platform, extending their reach of computers that they can use as part of their botnets.

According to the researchers, the Trojan, named Tsunami, connects to an IRC channel and awaits commands from hackers. Those commands include instructions to flood a server with requests, which combined with the efforts of other compromised computers results in a distributed denial-of-service (DDoS) attack.

It can also download files to the compromised machine, allowing it to update itself or install additional malware and has the ability to execute any command of the attacker's choosing, essentially giving them complete control.


Part of the original C source code for Tsunami, then known as Kaiten.

For more on this story, read Hackers port trojan from Linux to OS X on ZDNet Australia.

Talkback Most Recent of 104 Talkback(s)

  • RE: Hackers port trojan from Linux to OS X
    UH OH!!

    Now to wait for the Anti-Windows Crowd to come in and repeat over and over on how OS X and Linux are so secure and do not get viruses. Of course intelligent people know that trojans and other forms of Malware are more prevalent today compared to viruses and worms.
    ZDNet Gravatar
    bobiroc
    26th Oct
  • RE: Hackers port trojan from Linux to OS X
    @bobiroc You beat me to it you bugger! The best part about this, is the fact that it is an OLD Linux trojan. But of course Mac and especially Linux are air tight and nothing can ever hurt them.
    ZDNet Gravatar
    Bates_
    26th Oct
  • You said it. Why even waste their time?
    @Bates_

    Wouldn't this be like the Greeks giving Troy an empty horse?
    ZDNet Gravatar
    William Farrell
    26th Oct
  • RE: Hackers port trojan from Linux to OS X
    @Bates_

    It's foolish if you think any OS is air tight
    ZDNet Gravatar
    YouCanDoItAgain
    26th Oct
  • RE: Hackers port trojan from Linux to OS X
    @Bates_

    What planet you on. In every hackers competition the pro's go to the Mac and they are the first one they're able to hack into falling victum to the actacker. Because there are so many vulnerabilities.

    No brainer, you got some Trojan in your system and don't know it. LOL
    ZDNet Gravatar
    tripplec
    26th Oct
  • RE: Hackers port trojan from Linux to OS X
    @tripplec

    Seems to me that the hackers you are referring to are almost always using OSX or linux machines to do there work. I think it was Black Hat 2009 that they had the laptop competition where the Mac fell first followed by windows about 20 minutes later and the Ubuntu machine never did get cracked. If you know what you are doing you can get under the hood in OS X and lock it down as tight as the afore mentioned Ubuntu machine owing to it's root in Free BSD. Windows on the other hand has it's source code locked down tight thus tying the hands of users and forcing them to wait for redmond to put out a one size fits all generic solution. Any OS is vulnerable, at least Linux and FreeBSD grant you the capability to be proactive. Windows is for people who need somebody else to coddle them.
    ZDNet Gravatar
    visgodred
    26th Oct
  • Hackers port trojan from Linux to OS X
    @tripplec
    And then you install the latest ubuntu and it takes you down without even needing a trojan or virus.
    ZDNet Gravatar
    oterrya
    26th Oct
  • RE: Hackers port trojan from Linux to OS X
    @Bates_ Well, I'm using linux now. My Windows went down and I'm too busy to try and get it fixed right now. Linux is fine and with the exception of a couple of proprietary programs rarely miss windows. But I'm not one of those worshippers at the Linux shrine, nor am I stupid enough to believe that somehow a linux OS is air tight. Linux and Apple have been fairly virus free just because they weren't big enough or visible enough for the hackers to care. Now, apple is getting a lot of buzz mostly from there Ipad and Iphone, but they are visible again. And more government agencies and a growing number of businesses are finding it economical to install open source software and work in the cloud, so Linux has grown enough to catch their attention.

    Security still comes down to having some good anti-virus software up to date on your machine, and being careful of the links you click and the email attachments you open.
    ZDNet Gravatar
    webservant2003@...
    26th Oct
  • RE: Hackers port trojan from Linux to OS X
    @Bates_ Tight as Virgin happy
    ZDNet Gravatar
    thandermax
    27th Oct
  • A Trojan - So Not Passively Installed
    @Bates_
    You do realize that, as bobiroc actually alluded to, a Trojan has to be actively installed, right? Trojans will always succeed as long as you can trick system administrators into installing them. They don't reflect on system security one way or the other.
    ZDNet Gravatar
    CFWhitman
    27th Oct
  • RE: A Trojan - So Not Passively Installed
    @CFWhitman

    You do realize that, as bobiroc actually alluded to, a Trojan has to be actively installed, right? Trojans will always succeed as long as you can trick system administrators into installing them. They don't reflect on system security one way or the other.

    Which is why viruses and worms do not get on a Windows Machine today (and have not for years) unless a Trojan or some other Malware tricks the user into installing it and then opens up the door to viruses and worms. It is either that or if a machine has had it's security disabled or behind on patching. The problem is that many people are stuck on the term virus when it is Trojans and other forms of Malware that are the dominant force in infecting computers today because it is easier to trick the operator of the computer than trying to circumvent the security of the OS.
    ZDNet Gravatar
    bobiroc
    31st Oct
  • RE: Hackers port trojan from Linux to OS X
    @oterrya - I'm running the latest Ubuntu on my desktop and laptop, and they run just fine. Did you have a point in there somewhere?
    ZDNet Gravatar
    LeonBA
    3rd Nov
  • RE: Hackers port trojan from Linux to OS X
    I think the real big deal will be when malware begins affecting iOS, as the industry is predicting that the iOS is going to dominate Internet by 2013 and continue through 2017.
    ZDNet Gravatar
    razworks
    26th Oct
  • RE: Hackers port trojan from Linux to OS X
    @razworks actually no, IOS is not dominating, is no2 and is loosing margins... no1 is android and is gaining margins.
    ZDNet Gravatar
    Cosminv
    26th Oct
  • RE: Hackers port trojan from Linux to OS X
    @razworks
    ow! you made me snort coffee out my nose!
    ZDNet Gravatar
    john-whorfin
    27th Oct
View More Comments

Talkback - Tell Us What You Think

Formatting +
BB Codes - Note: HTML is not supported in forums
  • [b] Bold [/b]
  • [i] Italic [/i]
  • [u] Underline [/u]
  • [s] Strikethrough [/s]
  • [q] "Quote" [/q]
  • [ol][*] 1. Ordered List [/ol]
  • [ul][*] · Unordered List [/ul]
  • [pre] Preformat [/pre]
  • [quote] "Blockquote" [/quote]

The best of ZDNet, delivered

ZDNet Newsletters

Get the best of ZDNet delivered straight to your inbox

Facebook Activity