Apple quietly adds anti-malware in Snow Leopard update | InSecurity Complex – CNET News

by on with No Comments

Apple has updated the file that contains signatures of malware that targets the Mac in its Snow Leopard update.

(Credit: Sophos)

In the latest update to Snow Leopard, Apple included software to protect Mac computers from a Trojan horse that has been distributed by attackers disguised as iPhoto, but which opens a back door on the machine, security firm Sophos said on Friday.

When Apple released OS X 10.6.4 on Tuesday, the company said it addressed certain compatibility issues with VPN connections and other things, but failed to mention anything about adding an anti-malware update.

But buried in the code is an update to the XProtect.plist file, which contains signatures of malware written to target the Mac. The signatures now detect malware dubbed “HellRTS,” Graham Clulely of Sophos wrote in a blog post.

HellRTS, which Sophos detects as “OSX/Pinheard-B,” is a Trojan that has been around several months. It lets attackers use infected computers to send spam, take screenshots, access files, and pretty much take control of the computer, Sophos said.

“Unfortunately, many Mac users seem oblivious to security threats which can run on their computers. And that isn’t helped when Apple issues an anti-malware security update like this by stealth, rather than informing the public what it has done,” Clulely writes. “You have to wonder whether their keeping quiet about an anti-malware security update like this was for marketing reasons. “Shh! Don’t tell folks that we have to protect against malware on Mac OS X!”

Representatives from Apple did not immediately return e-mails seeking comment late on Friday.

via news.cnet.com

Posted via web from paulhugel’s posterous

Follow Paul Garrett Hugel:

Technology Test Pilot

In 1995 At Maui High Performance Computing Center The Maui Scientific Analysis & Visualization of the Environment Program was first incubated. I was the principal investigator of this independant research project which was a joint development between MHPCC, Silicon Graphics Computers (SGI) & NKO.ORG. Using SGI Cosmo Worlds software, we pioneered the development of Internet based 3D virtual reality GIS based interactive worlds. In 1996 with a network of seven high performance SGI workstations we pioneered development of live streaming MPEG-1, MPEG-2, MPEG-4, Real Video and QuickTime Streaming Server utilizing Kassenna MediaBase software. In Maui 2002 we pioneered and tested the first wireless live streaming video using laptop computers and Maui Sky Fiber's portable 3G wireless device. In Maui we pioneered live streaming video using usb modems from AT&T , Verizon as well as live streaming from iPhone 3 over 3G wireless networks. Today The Maui S.A.V.E. Program has diversified into storm tracking including visualization and analysis of large, memory-intensive gridded data sets such as the National Hurricane Center's wind speed probabilities. I volunteer my services to numerous Disaster Services Organizations. In June 2013 I returned from Hurricane Sandy deployment as a computer operations service associate with the Disaster Services Technology Group assisting as The American Red Cross migrated from a Disaster Response Operation to Long Term Recovery Operations. Pioneering the production/editing and Internet distribution of HD video to sites like Youtube.com and Vimeo.com we are shining the light towards environmental and peace efforts of humans across the globe. Since 1992 I have held the vision of establishing Maui, Hawaii as the environmental sciences center of the world. After His Holiness the 14th Dalai Lama of Tibet came to Maui This vision has expanded to establishing Maui as the environmental & peace center of the world.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.