Got a tip for us? Share it...

New in OS X: Get MacRumors Push Notifications on your Mac

Resubscribe Now Close

New Variant of 'Mac Defender' Quickly Evades Apple's Security Update as Cat-and-Mouse Game Begins


As we noted yesterday, Apple released Security Update 2011-003 for Mac OS X Snow Leopard, a system update addressing the "Mac Defender" malware threat that has been running in the wild under several different variants for the past month. The update provides tools for automatically removing the malware, as well as protection against future infections. But as reported by ZDNet, a new variant of the malware capable of circumventing Apple's update has already appeared. popping up within hours of Apple's software release.
Hours after Apple released this update and the initial set of definitions, a new variation of Mac Defender is in the wild. This one has a new name, Mdinstall.pkg, and it has been specifically formulated to skate past Apple's malware-blocking code.

The file has a date and time stamp from last night at 9:24PM Pacific time. That's less than 8 hours after Apple’s security update was released.
Apple has prepared for this eventuality by including automatic daily updates of malware definitions with the software update, enabling it to quickly deploy protection as new variants and entirely different pieces of malware surface. Consequently, Apple should be able to respond to the new threat relatively quickly, although the speed with which the new variant appeared suggests that those responsible for the malware will not be going away easily.

Top Rated Comments

(View all)

42 months ago
Props to those guys beating Apple at this.

As much as you can hate windows, MS has been very serious about security on Windows with a much tighter security system in Windows 7. Not saying that they had already not needed that, but they have been very careful and have come strong on viruses and malware.

Apple, you need to tighten up here.
Rating: 75 Votes
42 months ago

I'm amazed people are still stupid enough to manually download and run this considering all the press coverage it has received.


I'm amazed people have nothing better to do than create viruses and malware all day. Imagine what could be achieved if people used their time and skills to do something useful for society. Hope they goof up, get traced and held accountable.
Rating: 40 Votes
42 months ago

Props to those guys beating Apple at this.

As much as you can hate windows, MS has been very serious about security on Windows with a much tighter security system in Windows 7. Not saying that they had already not needed that, but they have been very careful and have come strong on viruses and malware.

Apple, you need to tighten up here.


Nice troll attempt. If MS was serious about security they would start by removing the registry.
Rating: 40 Votes
42 months ago

Nice troll attempt. If MS was serious about security they would start by removing the registry.


Troll?

:(

I use Windows 7 for some of my work. My main machines are OS X and SunOS.

What I am trying to say that MS has showed a lot of effort on the security side which Apple has not, yet.

If you think I'm wrong, fine. But I don't see how I am biased towards Microsoft in this regard.
Rating: 35 Votes
42 months ago

Props to those guys beating Apple at this.

As much as you can hate windows, MS has been very serious about security on Windows with a much tighter security system in Windows 7. Not saying that they had already not needed that, but they have been very careful and have come strong on viruses and malware.

Apple, you need to tighten up here.


This would have to be the dumbest, most ignorant post I have read all week on here. Apple has addressed the first instance, and is now doing rolling updates pushing them straight through to your Mac to update the malware/virus definitions.

"Join date May 2011" next to your name tells me everything I need to know. Just another late comer who thinks he knows everything. I'm sure you will concoct some story as ignorant as your statement above.
Rating: 31 Votes
42 months ago
LOL! Funny.... looks like the crooks are hard at work to stir the pot on the Mac side.

Doesn't scare me. I don't install what I don't know. Malware is just annoying.
Rating: 27 Votes
42 months ago

I'm amazed people are still stupid enough to manually download and run this considering all the press coverage it has received.


Most of this news is on tech orientated sites, the average consumer base likely to fall for this software most likely aren't going to visit these sites.


Nice troll attempt. If MS was serious about security they would start by removing the registry.


Stating Microsoft take security seriously is a troll attempt? And what do you have against the registry, I'd prefer an easily searchable central registry of files rather than a million .ini files scattered the length and breadth of my hard drive.
Rating: 24 Votes
42 months ago

I'm amazed people are still stupid enough to manually download and run this considering all the press coverage it has received.


I wonder, you'd say the same thing if your mom or dad would have caught up with this.

Not everybody is smart or a genius.
Rating: 23 Votes
42 months ago
I guess it's time for Apple to catch up to Microsoft by including Microsoft Security Essentials on OS X.
Rating: 22 Votes
42 months ago

This would have to be the dumbest, most ignorant post I have read all week on here. Apple has addressed the first instance, and is now doing rolling updates pushing them straight through to your Mac to update the malware/virus definitions.

"Join date May 2011" next to your name tells me everything I need to know. Just another late comer who thinks he knows everything. I'm sure you will concoct some story as ignorant as your statement above.


And you are a newbie?

I may be a late comer but I do have a life like most others and haven't been able to get an account and chat with you all.

I am 39 years old; that does not mean I am new to Apple or their products.

Suddenly, when I have an opinion against Apple, I am wrong? I think, they are not as serious about security as Microsoft are. Simple.

I maybe wrong, but that's how I feel.
Rating: 20 Votes

[ Read All Comments ]