Aug23
8:36 pm (UTC-7)   |   by Jonathan Leopando (Technical Communications)

While still low-intensity compared to the PC platform, malware attacks against Macs are definitely becoming more prevalent. Trend Micro researcher Ivan Macalintal has found another new variant of the JAHLAV family hosted on known malicious domains. The new variant is detected as OSX_JAHLAV.I and, like other JAHLAV variants, poses as pirated versions of legitimate applications and modifies the system’s DNS settings, allowing malicious users to be victimized by phishing attacks, or surreptitiously redirecting them to sites which might harbor malicious exploits .

Unlike the earlier variants which only posed as versions of QuickTime, this one also poses as pirated versions of Foxit Reader and several antivirus applications. In addition, like the June variant of JAHLAV—OSX_JAHLAV.B—at least one website hosting OSX_JAHLAV.I could also deliver malware onto Windows systems, although the said file is no longer available from the said website.

Both Mac and Windows users are protected by the Smart Protection Network against this threat, as the websites involved are already blocked and the malicious files are detected as noted above.

If you're new here, you may want to subscribe to our RSS feed. Thanks for visiting!



This entry was posted on Sunday, August 23rd, 2009 at 8:36 pm and is filed under Malicious Sites, Malware, Security . Both comments and pings are currently closed.



17 Responses to “More Mac Malware In The Wild”

Trackbacks

  1. Linkpost | 8.24.2009 - L&C Tech Talk
  2. TrendMicro (TrendMicro)
  3. _third (third marquez)
  4. HazelHassan (Hazel Hassan)
  5. Más malware en OS X | Anuncios en Lineup
  6. kevinleb (Kevin Le Bouthillier)
  7. Linkpost | 8.24.2009 - L&C Tech Talk
  8. gryffyn (gryffyn)
  9. iia_security (Terry Walls)
  10. Mac+ » Descoberta nova variante de malware para Mac
  11. Mac OS X ganha nova variante do malware Jahlav | MacMagazine
  12. Snow Leopard to fight viruses? | Midjam.info
  13. Mac malware poses as popular freeware PDF viewer
  14. Mac DNS trojan poses as Foxit PDF viewer
  15. Mac malware poses as popular freeware PDF viewer - ICT News
  16. Mac OS X: Snow Leopard could level security playing field - My Les Paul Forums
  17. Product reviews and software downloads, tutorials and tech news - AliSheryn



 
TrendWatch Hijack This Web Protection Add-On
Free Online Virus Scan Rootkit Buster Submit Suspicious Files
Global Malware Map RUBotted? Trend Micro