Aug26 |
6:42 am (UTC-7) | by
Bernadette Irinco (Technical Communications) |
Before the August 28 official release of Apple’s OS X Snow Leopard, cybercriminals are already hitchhiking on this to proliferate their malicious activities. Earlier today, Advanced Threat Researcher Feike Hacquebord discovered several fake sites that supposedly give Mac users free copies of the newest version of the Mac OS, Snow Leopard. However, accessing these malicious sites land users to a DNS changer Trojan detected by Trend Micro as OSX_JAHLAV.K.
Once executed, OSX_JAHLAV.K decrypts codes, which include a script that downloads other malicious scripts. The said script then alters the DNS configuration and includes two additional IP addresses in its DNS server. Users are thus possibly redirected to phishing sites and other fraudulent sites. In fact, some of these bogus sites are reportedly hosting FAKEAV (rogue antivirus) variants and components.
As of this writing, all malicious URLs are already blocked by Trend Micro. Users are strongly advised to get only the latest Snow Leopard update directly from the Apple site, as well as consider using Trend Micro Smart Surfing for Macs.
Share this article |
 |
        |
Pingback: Beware fake Snow Leopard sites « R Web Security
Pingback: Beware fake Snow Leopard sites - Design Street
Pingback: 76’s » Blog Archive » Searching for Snow Leopard? Careful.
Pingback: Trojaner in illegalen Downloads von Snow Leopard
Pingback: Gullible tempted with ‘free’ Snow Leopard, get trojan instead - MAC.BLORGE
Pingback: Free Virus Filled Mac Snow Leopard Or $29 Upgrade | Technicapped
Pingback: Tech Thoughts Daily Net News – August 30, 2009 « Bill Mullins’ Weblog – Tech Thoughts
Pingback: Criminosos atacam fãs de Mac com malware « :.:Hazael Cahungo:.:
Pingback: Beware fake Snow Leopard sites « Friendly Computers Virus Alerts
Pingback: RetroNet » Blog Archive » Descargas ilegales de Snow Leopard con troyanos
Pingback: Linkpost | 8.28.2009 - L&C Tech Talk
Pingback: Tech Thoughts Daily Net News – August 28, 2009 « Bill Mullins’ Weblog – Tech Thoughts
Pingback: Raubkopie von Snow Leopard bringt Trojaner mit | macforlife - think different? be different!
Pingback: Notizen vom 28. August 2009
Pingback: Achtung – Trojaner « Mac » Freak
Pingback: Trend Micro alerta usuários de Mac sobre sites maliciosos que oferecem update para o Snow Leopard | MacMagazine
Pingback: Warnung vor kostenlosen Snow Leopard Versionen | Apfelphone.net - ’cause it’s not just a phone
Pingback: Snow Leopard | curtis schweitzer (dot) net
Pingback: Searching for Snow Leopard? Careful. | csmonitor.com
Pingback: Mac OS X 10.6 Snow Leopard » snow leopard, update, vorbestellen, preis, mac os x, apple store » Apps News
Pingback: Apple anti-malware? Snow joke! » CounterMeasures
Pingback: En elak Snöleopard | jobbdator.se
Pingback: Trend Micro Warning — Bogus Snow Leopard Update Site Lead to DNS Changers | Your Home PC Helpdesk
Pingback: Bogus Snow Leopard Update Sites Lead to Malware | Malware Blog | Trend Micro « Jared Rimer’s Technology blog and podcast