Rare Mac Trojan exploits Apple

http://www.theregister.co.uk/2008/06/23/mac_trojan/

A rare Mac OS X Trojan has been spotted on the internet. The AppleScript-THT Trojan horse exploits a vulnerability within the Apple Remote Desktop Agent to load itself with root privileges onto compromised Mac machines.

All OSs are vulnerable in more or less degree, just not Windows alone.

[emperordarius]

Quote:

Originally Posted by Arup

http://www.theregister.co.uk/2008/06/23/mac_trojan/

All OSs are vulnerable in more or less degree, just not Windows alone.

True. I think that the most terrible virus EVER was on a Mac OS. I don't remember the exact name, but it was often called "666", it changed the colours of the screen at a very high frequency, causing first strong headaches and, after a prolonged staying, cerebral hemorrhage...death.
A computer virus that "infects" humans...can any virus be worst than that?

Mac viruses may be rare but often destructive...

[PiCo]

Quote:

Originally Posted by emperordarius

True. I think that the most terrible virus EVER was on a Mac OS. I don't remember the exact name, but it was often called "666", it changed the colours of the screen at a very high frequency, causing first strong headaches and, after a prolonged staying, cerebral hemorrhage...death.
A computer virus that "infects" humans...can any virus be worst than that?

Mac viruses may be rare but often destructive...

Omg is this true? Does such a thing exist in Windows too?

[Rmus]

Those posting comments in the article are dismissing this vulnerability because it is not truely remote code execution. From the article,

Quote:

Despite the use by the Trojan of a recently-discovered Apple Mac vulnerability, users need to download and open the Trojan horse before they become infected.

However, note this comment in the sans.org diary yesterday:

Apple Remote Desktop Root Privilege Escalation Vulnerability
http://isc.sans.org/diary.html?storyid=4604

Quote:

Most people may discount this as not that notable due to the lack of remote exploitation. However, I would like to remind our readers that local exploits like this can be leveraged into the second phase of a remote exploit through a web browser, or other user level application vulnerability. Additionally, in a multi-user/server based environment (and especially those of us in university or library environment where we check out laptops or manage computer labs), a dishonest student or insider could use this exploit to gain elevated access and wreck all types of havoc.

----
rich

[emperordarius]

Quote:

Originally Posted by PiCo

Omg is this true? Does such a thing exist in Windows too?

Yes, it's true...but it only infected old Mac OS computers. No problem in Mac OS X, Windows, Linux or any other OS AFAIK

[jrmhng]

Quote:

Originally Posted by emperordarius

True. I think that the most terrible virus EVER was on a Mac OS. I don't remember the exact name, but it was often called "666", it changed the colours of the screen at a very high frequency, causing first strong headaches and, after a prolonged staying, cerebral hemorrhage...death.
A computer virus that "infects" humans...can any virus be worst than that?

Mac viruses may be rare but often destructive...

Sounds like an urban legend to me.

[emperordarius]

Quote:

Originally Posted by huangker

Sounds like an urban legend to me.

Lol that's what I thought too at the beginning...
But it is true, some people had died...
And another thing, at that time Antiviruses couldn't detect the virus because they couldn't get a sample of the virus, because the virus would self destruct if an antivirus would try to quarantine it (I think that it made a copy of itself somewhere else first, to continue the work).
I don't know it's name, but, I know that Today's antiviruses for Mac do detect it.

Edit: Also known as SevenDust or Graphics Accelerator, wikipedia's page http://en.wikipedia.org/wiki/SevenDust_(computer_virus)

[jrmhng]

Quote:

Originally Posted by emperordarius

Lol that's what I thought too at the beginning...
But it is true, some people had died...
And another thing, at that time Antiviruses couldn't detect the virus because they couldn't get a sample of the virus, because the virus would self destruct if an antivirus would try to quarantine it (I think that it made a copy of itself somewhere else first, to continue the work).
I don't know it's name, but, I know that Today's antiviruses for Mac do detect it.

Edit: Also known as SevenDust or Graphics Accelerator, wikipedia's page http://en.wikipedia.org/wiki/SevenDust_(computer_virus)

None of the AV vendor sites mention the dangerous (and in some cases even fatal). A google search turns up nothing. I also looked at the wikipedia history. This page http://en.wikipedia.org/w/index.php?...ldid=215429584 clearly shows that on the 3rd of June YOU ADDED IN THE COMMENTS ABOUT MEDICAL SYMPTOMS.

[emperordarius]

Quote:

Originally Posted by huangker

None of the AV vendor sites mention the dangerous (and in some cases even fatal). A google search turns up nothing. I also looked at the wikipedia history. This page http://en.wikipedia.org/w/index.php?...ldid=215429584 clearly shows that on the 3rd of June YOU ADDED IN THE COMMENTS ABOUT MEDICAL SYMPTOMS.

I've heard that thing in a documentary talking about computer viruses...

[jrmhng]

Quote:

Originally Posted by emperordarius

I've heard that thing in a documentary talking about computer viruses...

How many times did you edit your post? Every time I went to quote you, it picked up something different. Anyways you did point me to this link http://www.sss.ca/sensible/home.nsf/...d?OpenDocument that is evidence that the medical symptoms aspect of the SevenDust virus is UNTRUE.

[emperordarius]

Quote:

Originally Posted by huangker

How many times did you edit your post? Every time I went to quote you, it picked up something different. Anyways you did point me to this link http://www.sss.ca/sensible/home.nsf/...d?OpenDocument that is evidence that the medical symptoms aspect of the SevenDust virus is UNTRUE.

Well it's not sure if this exists or not yet, if you see here
http://www.raven1.net/cwrussia.htm

Quote:

There are reports that the Russians have developed "Virus 666," which displays certain color and number combinations on a computer screen to affect bodily processes. According to a Russian report delivered by a scientist from the renowned Russian Baumann Technical institute at an information Warfare conference in Washington, DC, Virus 666 has been responsible for shutting down the bodily functions of more than 50 people, resulting in their deaths. 18"

3rd paragraph:

"Can such things happen? Americans are doubtful, because there is no proof computer screens can be used to control or kill people. Most believe such reports are not credible, even though Russian scientists, supported by highly influential people close to Russian leadership, are responsible for the information. Is Virus 666 a Russian manipulation effort to make the United States spend money on counter measures research and development? Perhaps. Yet in hindsight, man once could not comprehend electricity either, and we should at least consider the possibility of this phenomenon. As the Russians have noted on several occasions, he who makes the first inroads into this area will control the destiny of mankind in the near future."

I guess I'll have to believe less to Discovery Channel

[jrmhng]

Yes sometimes they need to sensationalize their content.

Cheers
Jeremy

PS Maybe you want to do something with the wikipedia article on sevendust.

[emperordarius]

Quote:

Originally Posted by huangker

PS Maybe you want to do something with the wikipedia article on sevendust.

Fixed alredy

[PiCo]

I believe it could be possible for a virus today to pass hidden messages through the screen, or mess up sth else that you can't notice.

I don't how that can affect a person though, but i would be very interesting!

[aigle]

Quote:

Originally Posted by emperordarius

True. I think that the most terrible virus EVER was on a Mac OS. I don't remember the exact name, but it was often called "666", it changed the colours of the screen at a very high frequency, causing first strong headaches and, after a prolonged staying, cerebral hemorrhage...death.

Excuse me but it,s a totally baseless story. Brain hemorrhages don,t come like this.

People are so innocent. They believe in every thing.

[snowbound]

Quote:

Originally Posted by aigle

Excuse me but it,s a totally baseless story. Brain hemorrhages don,t come like this.

I agree. At worst maybe Mary Hart Syndrome but brain hemorrhaging? I very much doubt that.



snowbound

[aigle]

Don,t doubt. It,s aboslutely wrong.

[Dark Shadow]

Quote:

Originally Posted by emperordarius

True. I think that the most terrible virus EVER was on a Mac OS. I don't remember the exact name, but it was often called "666", it changed the colours of the screen at a very high frequency, causing first strong headaches and, after a prolonged staying, cerebral hemorrhage...death.
A computer virus that "infects" humans...can any virus be worst than that?

Mac viruses may be rare but often destructive...

Tell me your joking please.

[lodore]

Sophos have also reported on this
link

[Dark Shadow]

Quote:

Originally Posted by PiCo

I believe it could be possible for a virus today to pass hidden messages through the screen, or mess up sth else that you can't notice.

I don't how that can affect a person though, but i would be very interesting!

Its sound far feteched to me but one thing I can say for sure a person that has epoleptic seizures can have a seizure from flashing lights such as strobes from a dance club even some lights on emergency vehicles.