Other Sites
President Nicholas Raba stated, "The increased number of threats, security advisories, and security updates is an indication that Mac users must pay attention to computer security issues. As Apple's market share continues to grow, so will security research and hack attempts against OS X."
The Trojan horse runs hidden on the system, and allows a malicious user complete remote access to the system, can transmit system and user passwords, and can avoid detection by opening ports in the firewall and turning off system logging. Additionally, the AppleScript.THT Trojan horse can log keystrokes, take pictures with the built-in Apple iSight camera, take screenshots, and turn on file sharing. The Trojan horse exploits a recently discovered vulnerability with the Apple Remote Desktop Agent, which allows it to run as root.
The Trojan is distributed as either a compiled AppleScript, called ASthtv05 (60 KB in size), or as an application bundle called AStht_v06 (3.1 MB in size). The user must download and open the Trojan horse in order to become infected. Once the Trojan horse is running, it will move itself into the /Library/Caches/ folder, and add itself to the System Login Items.
Protection: To protect your system against this threat, run MacScan 2.5.2 (MacScan is a product of SecureMac) with the latest Spyware Definitions update (2008011), dated June 19th, 2008. SecureMac recommends that users download files only from trusted sources and sites.
MacScan quickly detects, isolates, and removes spyware from Macintosh computers using both real-time spyware definition updating and unique detection methods. The software also manages Internet-related clutter on your computer. It is designed for OS 10.2.4 and later, and is compatible with OS 10.5 Leopard.
For more information, visit:
http://macscan.securemac.com
Tags: Software Updates ď Software News ď Security ď
