Snow Leopard Antimalware Feature Gaining Publicity [Updated]

by

131726 snow leopard antimalware

As we briefly mentioned yesterday, antivirus vendor Intego notes that it has received multiple tips that Apple's forthcoming Snow Leopard operating system appears to contain at least some rudimentary antimalware capabilities. According to screenshots of warning dialog boxes submitted by Snow Leopard users, the operating system is able to warn users that a downloaded file contains malware, specifically the OSX.RSPlug.A Trojan Horse first discovered in October 2007.

We're not sure yet exactly how this works, but the above screen shot shows this feature working with a download made via Safari, detecting a version of the RSPlug Trojan horse in a downloaded disk image.

MacRumors received the first report of this Snow Leopard feature in February 2009, soon after the release of developer build 10A261. But while the feature appears to have been present in Snow Leopard builds since that time, little is known about the functionality and from where Snow Leopard is drawing its information for identifying malware.

Intego's posting regarding the feature implies that Apple is not licensing the information from that company, while ZDNet has confirmed that Apple is not using the open-source ClamAV engine. It is possible that Apple is licensing the functionality in part from another commercial antivirus company or developing its own system, but Apple has not revealed any details about the feature on its extensive security page for OS X Snow Leopard, referring only to the existing standard scan of downloaded files to determine if an application is included in a given package.

Update: The Register notes that Apple has simply included information on two Trojan Horses, OSX.RSPlug.A and OSX.Iservice, in one of Snow Leopard's system files, identified to MacRumors as the following:

/System/Library/CoreServices/CoreTypes.bundle/Contents/Resources/XProtect.plist

While Apple could certainly update this file with identifying information for new threats that arise in the future, there does not appear to be a full-fledged antivirus package with regularly-updated virus definitions deployed in Snow Leopard.

Popular Stories

iOS 18

Apple Releases iOS 18.5 With New Wallpaper, Screen Time Changes, Carrier Satellite Support for iPhone 13 and More

Monday May 12, 2025 10:06 am PDT by
Apple today released iOS 18.5 and iPadOS 18.5, the fifth updates to the iOS 18 and iPadOS 18 operating systems that came out last September. iOS 18.5 and iPadOS 18.5 come a little over a month after Apple released iOS 18.4 and iPadOS 18.4. The new software can be downloaded on eligible iPhones and iPads over-the-air by going to Settings > General > Software Update. The iOS 18.5 update has a...
Read Full Article54 comments
iPhone 17 Pro Blue Feature Tighter Crop

WSJ: Apple Weighing Price Hikes for iPhone 17 Lineup Without Blaming Tariffs

Monday May 12, 2025 3:36 am PDT by
Apple is considering raising prices for its upcoming iPhone 17 models set to release this fall, according to people familiar with the matter cited by The Wall Street Journal. The company reportedly aims to pair the potential price hikes with new features and design changes to justify the increased cost to consumers, rather than attributing them to U.S. tariffs on goods from China. The...
Read Full Article106 comments
tvOS 18 Feature

Apple Releases tvOS 18.5

Monday May 12, 2025 10:01 am PDT by
Apple today released tvOS 18.5, the latest version of the tvOS operating system. tvOS 18.5 comes a little over a month after the launch of tvOS 18.4, and it is available for the Apple TV 4K and Apple TV HD models. tvOS 18.5 can be downloaded using the Settings app on the ‌Apple TV‌. Open up Settings and go to System > Software Update to get the new software. ‌Apple TV‌ owners who have...
Read Full Article15 comments
macOS Sequoia Feature

Apple Releases macOS Sequoia 15.5

Monday May 12, 2025 10:10 am PDT by
Apple today released macOS Sequoia 15.5, the fifth major update to the macOS Sequoia operating system that launched last September. macOS Sequoia 15.5 comes a little over a month after the launch of macOS Sequoia 15.4. Mac users can download the ‌‌‌macOS Sequoia 15.5‌‌‌ update through the Software Update section of System Settings. It is available for free on all Macs able to run ...
Read Full Article68 comments
iOS 18

iOS 18.5 Expected This Week With These New Features

Monday May 12, 2025 7:20 am PDT by
Following more than a month of beta testing, Apple is expected to release iOS 18.5 to the general public this week. While the software update is relatively minor, it still includes a handful of new features and changes for iPhones. Below, we recap everything new in iOS 18.5. Pride Wallpaper Apple recently announced its 2025 Pride Collection, including a new Apple Watch band, watch face,...
Read Full Article31 comments
Apple Logo Spotlight Blue

Report: Apple Preparing to Launch Mind-Control Support for iPhones

Tuesday May 13, 2025 6:18 am PDT by
Apple is planning to allow users to natively control iPhones, iPads, and other devices using brain signals later this year, The Wall Street Journal reports. The initiative involves a partnership with Synchron, a neurotechnology startup that produces an implantable brain-computer interface (BCI) device called the Stentrode. The Stentrode enables users with severe motor impairments, such as...
Read Full Article78 comments

Top Rated Comments

dwman Avatar
dwman
205 months ago
Exactly. The last two "Get a Mac" ads referred to "viruses and headaches." Not "malware",

I'm sure most people would consider malware a "headache" ;)
Score: 1 Votes (Like | Disagree)
bytethese Avatar
bytethese
205 months ago
No one with knowledge about macs has ever denied the fact that macs get viruses. It is just a marketing strategy of Apple to say they don't get viruses. But the fact is they are not effected by the same viruses that inflict damage on Windows systems.

Strange, I have knowledge of Macs yet I deny that they ever get viruses. Can they be carriers? Sure. But they do not get infected. Perhaps I don't exist...

On another note, it makes it ironic that Apple commissioned the Mac vs PC commercial where the security guy for Vista was saying "Cancel or Allow" and OS X will now be doing this. :)
Score: 1 Votes (Like | Disagree)
greenhero Avatar
greenhero
205 months ago
If they start acknowledging the very premise on which they've built their "Macs don't get viruses" message since 2006, MS fanboys will start howling at the perceived hypocrisy.

Time for a new ad campaign.:D

Personally I think the aple adverts should focus on the features Macs have rather than all the flaws windows pcs have. Because if you dont want the windows issues you install Linux for free. Yes the fanboys of PCS, mainly Dells have already started to stir up trouble. Personally I have a strong dislike of Dell machines.
Score: 1 Votes (Like | Disagree)
Read All Comments