Linked by Thom Holwerda on Tue 21st Feb 2006 17:59 UTC
Mac OS X "[Last week], we reported on a Trojan horse for Mac OS X that is just like the entry for Earth in the Hitchhiker's Guide to the Galaxy in that it is mostly harmless. A new vulnerability targeted at Apple's home-grown web browser, Safari, is another matter entirely. A German security firm appears to have been the first to discover the Safari flaw, which allows for shell scripts to be executed after clicking a link."
Permalink for comment 97900
To read all comments associated with this story, please click here.
Second new worm for MAC
by rakamaka on Tue 21st Feb 2006 18:53 UTC
rakamaka
Member since:
2005-08-12

I am computer literate and I use debian pure with everything configured myself.
----------------------------
http://news.yahoo.com/s/nm/20060221/tc_nm/apple_worm_dc
Welcome to the land of worms, so far owned by MS.
It just boosts hackers confidence that MAC can be broken and pulls hair of MAC/Linux devs thinking what will happen when market share rises to 90%?
Don't give me past security performance of OSS, any kid can write #rm -rf / script virus and destroy your system.
is there any easy to use good data synchronizing program for OSS?
----------------------------
SAN FRANCISCO (Reuters) - A new computer worm targeting Apple Computer Inc.'s (Nasdaq:AAPL - news)
Macintosh computers has been identified for the second time in one week, security experts said.
ADVERTISEMENT


The new worm, called OSX.Inqtana.A, spreads through a vulnerability in Apple's
OS X operating system via Bluetooth wireless connections, antivirus company Symantec said.

"We have speculated that attackers would turn their attention to other platforms, and two back-to-back examples of malicious code targeting Macintosh OS X ... illustrate this emerging trend," said Vincent Weafer, senior director at Symantec Security Response.

The latest virus follows OSX/Leap-A, which was identified last week and believed to be the first such virus targeting the Mac platform. That worm attempts to spread via Apple's iChat instant messaging program, which is compatible with America Online's popular AIM instant messaging program.

Symantec said the latest worm attempts to use Bluetooth connections to spread by searching for other Bluetooth-using devices that will accept requests for a connection when the computer is restarted.

Bluetooth is a wireless technology used to transmit data among devices at short distances.

The worm spreads via a vulnerability in the OS X operating system called the Apple Mac OS X BlueTooth Directory Traversal Vulnerability.

If a Bluetooth connection is made, the worm attempts to send itself to those remote computers. However, the worm itself does not appear to pose an immediate threat.

"While this particular worm is not fully functional, the source code could be easily modified by a future attacker to do damage," Weafer said, adding that Mac users should install available software patches to their operating systems to prevent such attacks.

The latest worm was identified on Friday. Both worms are ranked a Level 1 threat on a scale of 1 to 5, with 5 being the most severe, Symantec said.

Reply Score: 3