SecureMac Documents Mac OS X Trojan Horse || The Mac Observer

Skip navigational links

Choose text size:

DealsOnTheWeb Daily Deal: Computer Geeks' Ho Ho Holiday Deals - Save Up to 80%

SecureMac Documents Mac OS X Trojan Horse

by , 2:05 PM EDT, June 20th, 2008

SecureMac has posted an advisory about a Mac OS X Trojan Horse that exploits a vulnerability in the Apple Remote Desktop Agent and allows the malware to run as root. The vulnerability is rated critical.

The Trojan Horse runs hidden on the system and allows a malicious user complete remote access to the system. It can transmit system and user passwords and can avoid detection by opening ports in the firewall and turning off system logging. It can also do unwanted things like take pictures, take screenshots and turn on file sharing.

"The Trojan is distributed as either a compiled AppleScript, called ASthtv05 (60 KB in size), or as an application bundle called AStht_v06 (3.1 MB in size). The user must download and open the Trojan horse in order to become infected," according to Nicholas Raba at SecureMac.

The vulnerability is rated "Critical" and applies to OS X Tiger and OS X Leopard.

Regarding a remedy, Mr. Raba told TMO that MacScan 2.5.2 with the Definitions Update 2008011 will deal with the Trojan Horse if the user feels that they need an immediate solution. Other companies that supply anti-virus and security products will likely be providing updates soon, and Mac users should contact their favorite vendor for details.

The vulnerability has been reported to other more general tracking sites such as Secunia.com.

Intego, which first reported the vulnerability on Thursday, also posted an alert with suggestions for blocking the Trojan Horse.

Observer Comments

Show: Subjects Only | Full Comments

Close Name:coaten Posts: 3069 Joined: 10 Oct 2001
Fri Jun 20, 2008 8:44 pm Subject:

Thanks for the heads-up, but I would like to know this trojan's visibility and vector. Is it clearly an email attachment, an invisible attachment? Is it socially engineered? More detail would be good.

Remember, practise safe hex.

Reply | Quote

Comment on this Article

Guest Posts Visible. Hide Them.
Back to top Page 1 of 1

You cannot edit your comments. You cannot delete your comments.

Recent Headlines - Updated Wednesday, November 19th, 2008

Wed., 10:45 AM: Hot Forum Topic - Picking the Big Players in the Tech Stock World
10:20 AM: KeyCue 4.3 Improves Activation Controls, More
9:45 AM: TMO Quick Tip - iCal: Automated Custom Email Reminders
8:40 AM: Judge Dismisses Pystar Antitrust Claims Against Apple
7:50 AM: QuickerTek Unveils New MacBook Juicz Battery and Charger

Tue., 5:45 PM: TMO Opens 2009 Editors Choice Awards Submissions
5:25 PM: Propellerhead Announces Pascal Gabriel's Melophobia Machine ReFill for Reason
4:40 PM: iPodObserver - Google Officially Adds Voice Search to Google Mobile on iPhone
3:45 PM: First Look Review - Life With Microsoft Vista in Parallels Desktop 4
3:05 PM: iPO Gaming News - National Geographic to Bring Games to Mac, iPhone, Other Platforms
2:50 PM: TMO's DealsOnTheWeb.com - MacBook Air 1.6GHz Core 2 Duo with Parallels: $1149
1:25 PM: TMO Reports - Apple's DisplayPort Includes Digital Copy Protection
11:40 AM: AccountEdge 2009 Gets New Business Tracking, Daylight Support
11:15 AM: Hot Forum Topic - Reader Reactions: Yahoo! CEO Stepping Down
10:50 AM: FontAgent Pro Server 3 Adds Replicated Server Support
10:30 AM: iPO Review - Bejeweled 2 for iPhone
10:05 AM: iPodObserver - Chip Lawsuit Aims to Block iPod Imports
9:10 AM: Apple Rolls Out QuickTime, iChat Compatibility Fix
8:40 AM: Apple Releases Glass Trackpad Update for MacBook, MacBook Pro
8:15 AM: iPO Review - Star Wars: The Force Unleashed
7:50 AM: Yahoo! CEO Yang Stepping Down

The Mac Observer Reader Specials

Download Typestyler, still the Ultimate Styling Tool for Internet, Print and Video Graphics. Works great in Classic with a Native OS X Version on the way. Free Tryout: www.typestyler.com
New MacPro Memory 800Mhz With Apple Spec Heat Sink - 2GB $72 / 4GB $104 / 8GB $204. Click to Maximize your Macs...
Mac observers can now play Party Poker for Mac as well as Mac casino games by going to MacPokerOnline.com.
RamJet Memory: Mac Pro FB-DIMMs: 2Gig kit $95, 4Gig Kit $179, 8Gig Kit $355! MacBook 2Gig Kit $78, 4Gig Kit $149! Click here
For the latest Apple products use Ciao a comparison website to find laptops like MacBook Air. Then find the best prices on MP3 players and use our comparison tool to evaluate cell phones.
Laptop Hardware Provided by TechRestore - Overnight Mac & iPod Repairs.

Special Report: iPhone
__________
Help TMO Grow
Macworld Expo - Hotel Deal
Podcast: Mac Geek Gab
Podcast: Apple Weekly Report
TMO on Twitter!

Apple Stock Quote

AAPL: $89.10. Change Today: -0.81.
(Prices delayed up to 20 minutes.)
Discuss in our Apple Finance Board

Hot Topics

What's the buzz? These articles have TMO readers talking.

LCD Screen Makers Plead Guilty in Price Fixing Case - (50 Comments)
Apple LCD Suppliers Plead Guilty to Price-Fixing - (28 Comments)
The Fastest Mac Compared to Today's Supercomputers - (11 Comments)
Judge Dismisses Pystar Antitrust Claims Against Apple - (7 Comments)
Apple's DisplayPort Includes Digital Copy Protection - (6 Comments)
nova media Unveils GlobeSurfer III 3G Wireless Router - (5 Comments)

Top Deals From DealsOnTheWeb

© The Mac Observer, Inc. -- All rights reserved. All information presented on this site is copyrighted by The Mac Observer, Inc. except where otherwise noted. No portion of this site may be copied without express written consent. Other sites are invited to link to any aspect of this site provided that all content is presented in its original form and is not placed within another frame. The Mac Observer is an independent publication and has not been authorized, sponsored, or otherwise approved by Apple, Inc.