Trojan infects Mac OS X, with users consent
This post was published 2 years 9 months 27 days ago. Therefore, it is likely to be outdated and may no longer be valid.
A trojan horse has been identified that can affect (and infect) Mac OS X.
Intego has named this malware the OSX.RSPlug.A Trojan Horse (Intego’s press release).
It has been found on several pornography web sites, claiming to install a video codec necessary to view free pornographic videos on Macs. If installed, it changes the Mac’s DNS server (the server that is used to look up the correspondences between domain names and IP addresses for web sites and other Internet services). When this new, malicious, DNS server is active, it hijacks some web requests, leading users to phishing web sites (for sites such as Ebay, PayPal and some banks), or simply to web pages displaying ads for other pornographic web sites. In the first case, users may think they are on legitimate sites and enter a user name and password, a credit card, or an account number, which will then be hijacked. In the latter case, it seems that this is being done solely to generate ad revenue.
Please leave a comment or subscribe to the feed and get future articles delivered to your feed reader or inbox.
I am
Comments
No comments yet.
Leave a comment