Earlier this week, Russian security firm Dr. Web published a blog post announcing the discovery of a new OS X trojan horse known as "Trojan.SMSSend.3666". The malware masquerades as an installer for various software titles, but tricks users into signing up for subscriptions through their mobile devices.
When a user starts such an installer, they see the interface that imitates the installation wizard of a corresponding application. In order to continue the "installation" fraudsters ask that the victim enter their cellphone number into an appropriate field and then specify the code found in a reply SMS. By performing these actions the user agrees to terms of a chargeable subscription and a fee will be debited from their mobile phone account on a regular basis.
Similar trojans have affected Windows and even Android platforms for some time, but the tactic is now being used to target Mac users.
Apple has moved quickly to address the threat, adding definitions for the malware to its "Xprotect.plist" blacklist, which is part of the basic anti-malware tools Apple launched with OS X Snow Leopard in 2009. In its original incarnation, users were required to update definitions manually, but as malware threats against OS X grew, Apple last year instituted automatic daily checks to keep users' systems updated. The anti-malware tools automatically detect when a user has downloaded a file matching the signature of known malware, alerting the user of the threat and advising them to discard the downloaded file.
And people always defended OSX for being virus/spyware free... LOL. Welcome to reality. Hopefully Apple can keep up with the variations that are no doubt going to be roaming out in the wild based on this.
LOL welcome to reality - this isn't a virus at all. It's a fake installer that asks for your cell phone number. It's not an infection - it's a poor phishing attempt.
Again, like I always say, the only virus you can get on OSX is one you install yourself. This just prevents the user from hurting him/herself. This isn't a "virus" like everyone is saying - it's a program that phishes your personal info. It can't escalate itself privelidge-wise like with a Windows virus and become "above" your system to prevent removal or uninstallation. Nothing can do that in OSX due to it's unix base.
Also, great job Apple for staying so on top of this :D
And people always defended OSX for being virus/spyware free... LOL. Welcome to reality. Hopefully Apple can keep up with the variations that are no doubt going to be roaming out in the wild based on this.
Since this application is neither a virus nor spyware I'd say people are quite right.
And people always defended OSX for being virus/spyware free... LOL. Welcome to reality. Hopefully Apple can keep up with the variations that are no doubt going to be roaming out in the wild based on this.
From wikipedia:
A computer virus is a computer program that can replicate itself[1] and spread from one computer to another.
Spyware is a type of malware (malicious software) installed on computers that collects information about users without their knowledge.
Anything that requires me launching an installer and than requiring me to type in my password and cell phone number is not scary at all - its a lame phishing attempt that I laugh about.
I would be worried if it installs automatically in the background and than accesses my address book to get my cell phone number - but even than I would not respond to that SMS to get charged money.
Honestly, I don't get the people that did type in their cell phone number - it is almost impossible to protect those people from their own stupidity.
Anyway, glad to see that Apple is trying to protect people from their own stupidity.
But really, it seems to me this is an issue phone service providers should handle. Why is the money that they handle handled so insecurely? Shouldn't our provider send us some sort of message for us to confirm that some company is going to start leaching money via our phone bill and shouldn't they block companies that they find frequently commit this kind of fraud?
Sunday September 25, 2022 2:27 pm PDT by Sami Fathi
A YouTuber has put Apple's claims for the durability of the Apple Watch Ultra to the test by putting it up against a drop test, a jar of nails, and repeated hits with a hammer to test the sapphire crystal protecting the display.
TechRax, a channel popular for testing the durability of products, first tested the Apple Watch Ultra by dropping it from around four feet high. The Apple Watch...
Sunday September 25, 2022 10:57 am PDT by Sami Fathi
As we approach the end of a busy product release season for Apple with only new iPads and Macs left to be announced over the next month or so, we're also setting our sights on 2023. Apple is rumored to have several major products in the pipeline for next year, including new Macs, a new HomePod, a VR/AR headset, and so much more.
Other than new iPhones and Apple Watches, which are expected...
An Apple Watch Ultra user has modified their new device's casing to add a brushed finish and remove the orange color of the Action Button in an effort to make it more visually appealing.
The Apple Watch Ultra offers the first complete redesign of the Apple Watch since the product line's announcement in 2014, and while the design has been met with praise from many users, some have criticized...
Monday September 26, 2022 7:34 am PDT by Sami Fathi
Today marks exactly two weeks since Apple released iOS 16 to the public. Besides the personalized Lock Screen, major changes in Messages, and new features in Maps, the update has also seen its fair share of bugs, performance problems, battery drain, and more.
After major iOS updates, it's normal for some users to report having issues with the new update, but such reports usually subside in...
Monday September 26, 2022 7:52 am PDT by Joe Rossignol
Earlier this month, Apple announced that iOS 16.1 will enable a new Live Activities feature that allows iPhone users to stay on top of things that are happening in real time, such as a sports game or a food delivery order, right from the Lock Screen. On the iPhone 14 Pro and Pro Max, Live Activities also integrate with the Dynamic Island.
Premier League match in Dynamic Island via Paul Bradford ...
Monday September 26, 2022 6:23 am PDT by Sami Fathi
iPhone 14 Pro customers on the Verizon network in the U.S. are reporting issues with slow and unreliable 5G cellular connections and calls randomly dropping.
Several threads on Reddit (1,2,3) and the MacRumors forums chronicle issues faced by Verizon customers and Apple's latest iPhone. According to user reports, signal strength on the iPhone 14 Pro is unreliable and weak, while other...
Sunday September 25, 2022 6:50 am PDT by Sami Fathi
Apple may decide to release its remaining products for 2022, which include updated iPad Pro, Mac mini, and 14-inch and 16-inch MacBook Pro models, through press releases on its website rather than a digital event, according to Bloomberg's Mark Gurman. In his latest Power On newsletter, Gurman said that Apple is currently "likely to release its remaining 2022 products via press releases,...
Tuesday September 27, 2022 10:24 am PDT by Juli Clover
The most recent beta of iPadOS 16.1 expands the controversial Stage Manager feature to older iPads, allowing it to work with iPad Pro models that have an A12X or A12Z chip, according to information Apple provided to Engadget.
The beta also removes the external display support from Stage Manager for the current time, with the feature set to return in a later iPadOS 16 update. Apple's...
Tuesday September 27, 2022 11:36 am PDT by Juli Clover
Apple today released new betas of iOS 16.1 and iPadOS 16.1 to developers, tweaking some of the functionality that's been introduced in prior betas and in the case of iPadOS 16.1, adding a major new feature to Stage Manager.
We've rounded up everything new in both betas below.
Wallpaper Updates
Apple has updated the Wallpaper section of the Settings app to allow users to swap between...
Monday September 26, 2022 4:42 am PDT by Tim Hardwick
Apple Watch Ultra has been endorsed by American musician and famous watch collector John Mayer, who has been showing off the new device on his Instagram account.
"Been wearing the Apple Watch Ultra for a week... and it's great," writes Mayer over a photo of the watch. "The first Apple Watch that excited me as a mechanical watch collector." "It's loaded with capability and what I call...
Apple on September 12 released iOS 15.7 and iPadOS 15.7, delivering important fixes for multiple security vulnerabilities, including at least one that has been actively exploited.
Apple's latest mainstream iPhone models come in two sizes with A15 chip, car crash detection, satellite connectivity, and more. iPhone 14 is available now, while iPhone 14 Plus launches on October 7.
Top Rated Comments
LOL welcome to reality - this isn't a virus at all. It's a fake installer that asks for your cell phone number. It's not an infection - it's a poor phishing attempt.
Also, great job Apple for staying so on top of this :D
Since this application is neither a virus nor spyware I'd say people are quite right.
From wikipedia:
This is neither. Its a plain old scam.
Anything that requires me launching an installer and than requiring me to type in my password and cell phone number is not scary at all - its a lame phishing attempt that I laugh about.
I would be worried if it installs automatically in the background and than accesses my address book to get my cell phone number - but even than I would not respond to that SMS to get charged money.
Honestly, I don't get the people that did type in their cell phone number - it is almost impossible to protect those people from their own stupidity.
Anyway, glad to see that Apple is trying to protect people from their own stupidity.
But really, it seems to me this is an issue phone service providers should handle. Why is the money that they handle handled so insecurely? Shouldn't our provider send us some sort of message for us to confirm that some company is going to start leaching money via our phone bill and shouldn't they block companies that they find frequently commit this kind of fraud?