ESET detect Mac threats?

Update 2761 (20080102)2008-01-02 13:59

Mac/Rootkit.Weapox.A, Win32/Adware.CDN, Win32/Adware.SearchSpy (2), Win32/Agent.NOQ (2), Win32/Agent.QT (2), Win32/AutoRun.FH, Win32/IRCBot.ABT, Win32/PSW.Agent.NEC, Win32/PSW.Agent.NGY, Win32/PSW.OnLineGames.DTR, Win32/PSW.OnLineGames.DVV, Win32/PSW.OnLineGames.HCV (5), Win32/PSW.OnLineGames.KDP, Win32/PSW.OnLineGames.MST (2), Win32/PSW.OnLineGames.NFL (10), Win32/PSW.OnLineGames.YA (2), Win32/Rootkit.Vanti.NAI, Win32/Rustock.NDA, Win32/Scramble.A, Win32/SpamTool.Agent.NAO, Win32/Spy.Banker.OOL, Win32/Theals (4), Win32/TrojanDownloader.Agent.NUE (2), Win32/TrojanDownloader.Banload.BDA, Win32/TrojanDownloader.Banload.GAF (2), Win32/TrojanProxy.Small.NAS


?

[jmc777]

Yeah, that caught my eye too.

[nodyforever]

Also curious because of knowing.....


Will it be that the Eset is developing a version for MAC next future ?

[The Hammer]

I don't think so. Eset doesn't have a version that works on the Mac OS that I know of.

[nodyforever]

Quote:

Originally Posted by The Hammer

I don't think so. Eset doesn't have a version that works on the Mac OS that I know of.

It still has not but it will be able to come to have, nobody will be able to say if the Eset is going to bet on the branch of the MAC OSX.

[nodyforever]

Mac Malware

Quote:

In the fall of 2007, we observed one of the first attacks (apart from some macro viruses) targeting both PCs running Microsoft’s Windows and Apple Macintosh computers running OS X. The infection vector for this attack was a fake codec that was only effective when the user was tricked into downloading and executing it. For more details on fake codecs and social engineering techniques, see the following analysis of this common approach to tricking computer users into running malware.

The malware attack targeting OS X resembled W32/Zlob, but was udimentary, compared to cutting-edge Windows malware. It consisted of a dmg installer package that only worked if double-clicked and installed by the user. The malware used the installation script to change critical configuration on the victim system. The payload of this malware was to change the Domain Name Server (DNS) configuration and redirect all DNS queries to a server hosted on the Russian Business Network. Once in control of the DNS information, the attacker could redirect queries to banking and online trading websites in order to steal the victims account information.

David Harley pointed out in his Securiteam blog at Http://blogs.securiteam.com/index.php/archives/1029 that informal research by Roger Grimes suggests that malware which works by “social engineering” — tricking the victim into running malicious software, in this case — is more “successful” than malware that relies on exploiting software vulnerabilities. There are still those who claim that Mac users are smarter than Windows users, and won’t be fooled by social engineering (curiously, the same people often seem to believe that Windows malware is all about exploits, not social engineering). At the moment, though, Mac users with no particular security knowledge may be particularly vulnerable if they believe that their systems are so intrinsically secure out of the box that they don’t need to know or to do anything about security. He also commented that “Whatever happens next, and whether or not this is the tipping point where Mac users start, to suffer like Windows users, I’m convinced that this is not the time for partisan bickering from either side of the Mac/Windows divide. This is a time to watch and learn, and seek out fact rather than prejudice.”


by Eset Labs