New Variant of 'Mac Defender' Quickly Evades Apple's Security Update as Cat-and-Mouse Game Begins
As we noted yesterday, Apple released Security Update 2011-003 for Mac OS X Snow Leopard, a system update addressing the "Mac Defender" malware threat that has been running in the wild under several different variants for the past month. The update provides tools for automatically removing the malware, as well as protection against future infections. But as reported by ZDNet, a new variant of the malware capable of circumventing Apple's update has already appeared. popping up within hours of Apple's software release.
Hours after Apple released this update and the initial set of definitions, a new variation of Mac Defender is in the wild. This one has a new name, Mdinstall.pkg, and it has been specifically formulated to skate past Apple's malware-blocking code.
The file has a date and time stamp from last night at 9:24PM Pacific time. That's less than 8 hours after Apple’s security update was released.
Top Rated Comments
(View all)
I'm amazed people are still stupid enough to manually download and run this considering all the press coverage it has received.
I'm amazed people have nothing better to do than create viruses and malware all day. Imagine what could be achieved if people used their time and skills to do something useful for society. Hope they goof up, get traced and held accountable.
Props to those guys beating Apple at this.
As much as you can hate windows, MS has been very serious about security on Windows with a much tighter security system in Windows 7. Not saying that they had already not needed that, but they have been very careful and have come strong on viruses and malware.
Apple, you need to tighten up here.
Nice troll attempt. If MS was serious about security they would start by removing the registry.
Doesn't scare me. I don't install what I don't know. Malware is just annoying.
Props to those guys beating Apple at this.
As much as you can hate windows, MS has been very serious about security on Windows with a much tighter security system in Windows 7. Not saying that they had already not needed that, but they have been very careful and have come strong on viruses and malware.
Apple, you need to tighten up here.
The thing is, Malware is user initiated. Unless MS, Apple or whoever knows about a specific threat, you can't stop someone from offering a user the opportunity to download something. If they say yes, they invite the crooks in. Viruses is another story. These have to go around security in the OS to install themselves and extract information or change system settings to cause harm. Obviously the second is way more dangerous because you don't see it coming.
I only point this out because what the heck is Apple suppose to do any different? If you don't know what to not allow, or look for, you can't stop someone from wanting to install software.
Makes you wonder if nokia/ms are behind this! :)
LOL!
I've always wondered is the Virus protection companies aren't the ones that hire suspect engineers from places like Russia to keep the need for them rolling. Wouldn't be too surprising if it was true.
Props to those guys beating Apple at this.
As much as you can hate windows, MS has been very serious about security on Windows with a much tighter security system in Windows 7. Not saying that they had already not needed that, but they have been very careful and have come strong on viruses and malware.
Apple, you need to tighten up here.
What is Microsoft doing that Apple is not that would currently prevent a Mac Defender type attack? Daily definition updates of an anti-malware scanner is the most appropriate strategy. Outside of preventing the user from installing unapproved applications, I'm not sure what else you can do.
I'm amazed people are still stupid enough to manually download and run this considering all the press coverage it has received.
I wonder, you'd say the same thing if your mom or dad would have caught up with this.
Not everybody is smart or a genius.
Nice troll attempt. If MS was serious about security they would start by removing the registry.
Just because someone disagrees with you doesn't make them a troll. If you disagree, state your reasons why and move on.
Let's keep MacRumors a civil place!
I wonder, you'd say the same thing if your mom or dad would have caught up with this.
Not everybody is smart or a genius.
Or obsessively reading mac news articles...
[ Read All Comments ]
Wired points to a recent Technology Review interview with IBM chief information officer Jeanette Horan highlighting the issues of the "bring your own device" trend in which employees choose...
Apple today released Digital Camera RAW Compatibility Update 3.10, bringing RAW image support to Aperture and iPhoto for a number of new cameras.
This update adds RAW image compatibility for the...
As noted by ifoAppleStore, Apple is continuing its trickle of retail store openings this week with a new location opening on Friday, May 25 in Paris. The new Les Quatre Temps store will be...
TiVo owners can control their devices via an iOS app on the iPhone and iPad, but -- for the moment -- can only watch shows on their television.
But that's all going to change in a few months....
Binary Nights has dropped the price of its file-transfer app ForkLift to $0.99, down from $29.99, for a limited time.
ForkLift is a well-reviewed file management app that offers FTP, SFTP,...
