Mac OS X Isn’t Safe Anymore: The Crapware / Malware Epidemic Has Begun

64 点作者 nithinr6大约 10 年前

21 条评论

As an aside: Everyone who read this article, please keep in mind that the process injection model used by these pieces of adware is exactly what your typical "keylogger" uses also.No malware literally logs keys typed anymore. I cannot stress that point enough. Instead they log form submissions (e.g. POST requests) which give the malware author much more useful information they can data mine in an automated way (e.g. URL, named parameters, etc). This works even on a "secure" page (e.g. HTTPS with extended certificate).I'm super tired of supposed power users or "geeks" telling others to copy/paste in their username/passwords to improve security. That's not how this works, it isn't how any of this works. Nobody reads raw key-streams, they're completely useless because they fail to contain CONTEXT (i.e. where you typed what).Sorry, just a pet peeve of mine. The term "keylogger" is largely a misnomer. A more accurate name would be "credential hijacking" or "form submission theft." A lot of malware actually use standard injected JavaScript to add event hooks to a page, to fire the data back to a evil browser extensions.

评论 #9116157 未加载

评论 #9114072 未加载

coldtea大约 10 年前

>Mac OS X Isn’t Safe Anymore: The Crapware / Malware Epidemic Has BegunYeah, not really. Like it hadn't began all the other times in those last 14 years that such articles appeared.I've used Windows for decades (still do ocassionally), and had lost count of malware, adware and viruses I had to battle. So, don't tell me about "malware epidemic" on OS X with a straight face...

评论 #9113885 未加载

评论 #9116084 未加载

评论 #9116763 未加载

smackfu大约 10 年前

Part of the problem is that a lot of legitimate freeware / open source software is not signed. I assume because people don't want to pay the $100 a year just to support OS X. So people get used to installing unsigned software, and then end up installing malware.

评论 #9113727 未加载

评论 #9116349 未加载

abrowne大约 10 年前

I've seen a lot of Mac users with adware in the last few months. I've found Adware Medic[1] to remove nearly all of it pretty easily.[1]:<a href="http://www.adwaremedic.com/" rel="nofollow">http://www.adwaremedic.com/</a>

评论 #9113759 未加载

joncameron大约 10 年前

How about a non-Apple App Store: something like homebrew with a friendly GUI that's easy to navigate? I started using Homebrew Cask recently, and it seems like a perfect workflow for the average user who just wants to download VLC or whatever.I'm imagining Grandma pulling up the "Application Warehouse", let's say, and clicking a download button under a VLC icon. It gets downloaded from a trusted source over HTTPS, gets checked against a hash, symlinked and Gran's ready to go, all without the hassle of shady installers from the search engine shitpile.

评论 #9113803 未加载

评论 #9113747 未加载

评论 #9113956 未加载

评论 #9113913 未加载

amalag大约 10 年前

I cleaned some crapware off an acquintances computer. She is around 70 and didn't know why the computer was not behaving correctly. It was really easy compared to windows crapware. When my dad's Windows computer had malware I had to reformat . But with OSX I deleted a plist or two and it was done.

评论 #9113801 未加载

protomyth大约 10 年前

"Examining further comes up with something curious… the person who wrote this malware wanted to give special thanks to his mom."That's the old default Credits.rtf.

JohnTHaller大约 10 年前

Now that Mac OS X has hit about 7% of internet users, it's profitable enough for adware/malware folks to target.Most of the infections on Windows aren't due to some huge security issue on Windows that Macs are magically immune to. They are due to the users themselves installing adware or malware-infected software from sites online. Now that there are more Macs out there, the reward is greater. So, there is more revenue to be made form adware-laden software and a better return for the time investment/risk of creating malware for Macs (to send out spam, be used in DDoS attacks, sniff for and steal financial info and passwords, etc).

评论 #9113675 未加载

评论 #9113729 未加载

评论 #9113781 未加载

tedunangst大约 10 年前

> It wasn’t that long ago that you could install almost anything for OS X from almost any website, and you didn’t really have to worry about what you clicked on.Full stop. That's a ridiculous statement to make. Are we really pining for a return to such an oblivious mentality? Good riddance.

评论 #9113823 未加载

评论 #9113664 未加载

评论 #9113736 未加载

stephenr大约 10 年前

Breaking news: Free download sites like Download.com are shit. More at 11.

JamesBaxter大约 10 年前

"We’d love to see Apple fix some of the App Store issues and make everybody use it."I agree with the first part of this but not the second.

MBlume大约 10 年前

That's a really damning Yahoo screenshot and it matches my experience pretty well. Yahoo is not an acceptable search platform and I'm really confused about why Mozilla thinks otherwise.

评论 #9115374 未加载

raverbashing大约 10 年前

I click on all MacKeeper ads I see, repeatedlyLet the fuckers pay for that

评论 #9113936 未加载

coldcode大约 10 年前

I've been a Mac developer since 1984 and the last time I ever saw a virus was 1988 I think. It's not impossible to get irritation-ware if you download random crap from these download sites but genuine malware is extremely difficult to produce. Saying "Mac OS X Isn’t Safe Anymore: The Crapware / Malware Epidemic Has Begun" is beyond stupid.

评论 #9114051 未加载

trebor大约 10 年前

As a Mac user who migrated from Windows, I had no doubt that it was only a matter of time before Macs became more lucrative targets. Anyone who thinks that their OS of choice is unassailable is fooling themselves.

geoelectric大约 10 年前

"If you do stick to the App Store, you have nothing to worry about. We’d love to see Apple fix some of the App Store issues and make everybody use it."Yeah, that'd be just awesome.

评论 #9114032 未加载

ocdtrekkie大约 10 年前

Apple was never good at security, they just weren't a big target. Now they're both bad at security AND a big target.

jkot大约 10 年前

OSX will become walled garden just as IOS. I am personally happy for that, many developers will return to Linux.

评论 #9113813 未加载

评论 #9113665 未加载

goblin89大约 10 年前

Recently was surprised to discover that the official uTorrent distribution, downloaded straight from utorrent.com, has some Spigot stuff in it. Was I tricked somehow or pre-hijacked already into downloading a non-authentic installer, or do they make money that way now—not yet completely sure.

cmurf大约 10 年前

Pretty sure the "Allow apps downloaded from:" has been set to "Mac App Store and identified developers" since 10.8? Maybe 10.7?

stcredzero大约 10 年前

This is a big problem. Are there browser extensions that can block crapware?