Your favorite Apple, iPhone, iPad, iOS, Jailbreak, and Cydia site.
10-31-2011, 02:56 PM #1
New Macintosh Trojan – Dangerous Processing Power Thief [Yawn]
Yup... another one.
So recently, two big trojans were discovered by Sophos, a security company. One of them attacked and shut down your Apple Anti-Malware system, and one of them used your computer as a virtual tank that could shoot down websites with the power of DDoS from a remote control source. Now there's another one to be careful of. A new Mac OS X Trojan has been found which steals a video/graphics card's processing power to create Bitcoins. I know what a lot of you are going to ask. What's a Bitcoin?
Basically it's electronic currency. You can buy things online with them, or share money using them.
So.. it's a trojan that gives me virtual money? Where can I get it?
No. It doesn't give you virtual money. It steals virtual money and there is absolutely nothing to gain from it. You don't want to get it.
Originally Posted by Intego
So.. why the sudden interest in Bitcoins?
Bitcoins are pretty valuable little hashes. They are virtual currency, so it's obvious why hackers want to get their hands on them. They are an easy pickpocket. "One Bitcoin is currently valued at around $3.20," (Macworld) which is a great profit to be made. Collecting $3.20 per pop will add up quickly and definitely sparks interest for malicious hackers. Bitcoins aren't only good for criminal hackers but also for legitimate users. Since a user can transfer Bitcoins, they are a virtual means of money and like any other form of currency they add up.
So.. you've rambled on about Bitcoins, but what does the trojan actually do?
The trojan makes use of your GPU to create Bitcoins, even in the background. The GPU or graphics processing unit (the graphics/video card) is used to buffer graphics faster using either your RAM memory or its own built in dedicated memory. Because this trojan uses your GPU, your computer will become much hotter during use, and also you will notice slower gaming graphics rendering, video buffering, and image loading. In order to make use of the GPU, it also has to use your CPU or central processing unit (the processor of your computer). The trojan levels out your performance and renders your machine hot and sluggish; the same thing that would happen if you tried running a video game and compiling video in Final Cut Pro at the same time.
Just a little warm.. that's it?
No not really. It's more than a trojan. It's also spyware. Graham Cluley, a Sophos senior technology consultant explained how the little infection can also, "spy on you by taking screen captures and stealing your usernames and passwords" in the background of whatever you are doing. So not only are the cyber thieves making a pocket full of Bitcoins but they also get to see everything you're doing and enter all of your accounts (including banking) which opens the door to even more money, or confidential information. Cluley also says, "In addition, it runs a script that copies information to a file called dump.txt regarding truecrypt data, Vidalia (TOR plugin for Firefox), your Safari browsing history and .bash_history."
How are people getting this infection?
The program was discovered in a BitTorrent download of GraphicConverter 7.4, a popular image editor for Mac OS X. BitTorrent isn't a very highly advised program anyway – it opens ports on your computer to unknown sources. Not to mention that it's used for piracy more than three quarters of the time. But just because the infection was discovered in this specific program download, Macworld warns that it could be existent in many other downloads as well.
The big question. How can I protect myself?
People rocking Macs thinking that everything's 'all good' because of their market share need to open their eyes. Market share isn't a legitimate reason for security. It's not a reason at all; it's an excuse.
My recommendation for Mac users is to download an Anti-Virus and to be careful of what you download and when you enter your password. Never enter your password under any conditions unless you specifically meant for the prompt to appear. If a random window ever comes up asking for it, you should never enter it. Instead close the prompt.
There are two very good and free Anti-Virus programs for Mac. Both are beautiful, and both are very light on resources:
Sophos Anti-Virus for Mac OS X
PCTools iAntivirus for Mac OS X
Alternatively, if you want to pay for premium protection, I recommend Intego:
Intego VirusBarrier X6 for Mac OS X
So everyone, be careful. Don't download suspicious files and most importantly, download something to protect yourself from being hit in the head with a brick. With the a new Macintosh trojan being discovered every week, you can never protect yourself enough.
10-31-2011, 03:06 PM #2
I thought Mac's didn't need a antivirus program.
10-31-2011, 03:31 PM #3
So this could be why my computer has been running slow the last 8ish days, how do u know for certain if u have it and how do u delete it without reformatting your hard drive?
10-31-2011, 03:32 PM #4
10-31-2011, 04:04 PM #5
10-31-2011, 05:07 PM #6
I still don't get what a Bitcoin is. ;p
10-31-2011, 05:14 PM #7
OMG so many trojans!!!
10-31-2011, 05:30 PM #8
I think I had it. My MacBook pro was getting hot as hell and was running sluggish. It took for ever to get to the desk top and even locked up sometimes. Websites would take longer then normal to load up and it even reset my computer a few times. Think i had it for over a month before I took action. I reformatted my hard drive and now it works like the day I bought it.
10-31-2011, 05:57 PM #9
So awesome, to bad there isn't much money to be made with BC's anymore. Glad I sold off my gear when I did.
10-31-2011, 07:15 PM #10
it broked it all!
10-31-2011, 07:48 PM #11
I think I may have it cause it's very slow and the only way to get it out of a freeze is to slightly readjust the screen 2 inch forward then back then it's fine for awhile
This doesn't make since but why does it work for me?
10-31-2011, 08:25 PM #12
10-31-2011, 10:10 PM #13
10-31-2011, 10:39 PM #14
So for the past few months my MacBook pro has been freezing randomly during use mainly during online surfing using safari and especially during YouTube use. Now it's also happening while playing a game on the Mac. How old is this threat? Could this be a possibility? How could you get rid of this? Complete install of the os?
10-31-2011, 10:56 PM #15
Last edited by spazturtle; 10-31-2011 at 11:02 PM.
10-31-2011, 11:18 PM #16
10-31-2011, 11:21 PM #17
Market share is not as big of an attraction as most think. It is somewhat but not huge reason. Think about back when OS9 was out. That had smaller market share yet had actual viruses and malware that would almost rival some of windows totals.
11-01-2011, 10:17 AM #18
11-02-2011, 10:15 AM #19
11-04-2011, 06:31 PM #20
Will my ESET Cybersecurity antivirus software detect this new Trojan?