Trojan horse hits Macs through pirated iWork 09


— 11:21 AM on January 26, 2009

As the popularity of Macs continues to grow, so does the amount of attention they attract from malware writers. Some Mac users who downloaded illicit copies of iWork 09 must have come to that realization, because as NewsFactor reports, pirated versions of the productivity suite include a Trojan horse.

OSX.Trojan.iServices.A sneaks its way onto Macs as part of the cracked iWork installer, which conveniently asks the user for his administrative password. Once the Trojan has broken in, it resides in "/System/Library/StartupItems/iWorkServices" and automatically starts up with the operating system. The malware has full administrative privileges and allows third parties to connect to the infected Mac and "perform various actions"—more or less like a Windows Trojan, in other words.

This news comes less than two months after Apple deleted a knowledge base article that advised users to run anti-virus software. An Apple spokesman then commented, "The Mac is designed with built-in technologies that provide protection against malicious software and security threats right out of the box. . . . However, since no system can be 100 percent immune from every threat, running antivirus software may offer additional protection."

Like what we're doing? Pay what you want to support TR and get nifty extra features.
Top contributors
1. GKey13 - $650 2. JohnC - $600 3. davidbowser - $501
4. cmpxchg - $500 5. DeadOfKnight - $400 6. danny e. - $375
7. the - $360 8. rbattle - $350 9. codinghorror - $326
10. Ryu Connor - $325
   
Register
Tip: You can use the A/Z keys to walk threads.
View options

This discussion is now closed.