We are getting a screen indicating that there are 71 items that need attention as part of an Apple Security Alert. The screen indicates that it is part of Apple Security Center. It asks to click ok to remove the offending objects (virus, malware). Is this legitimate apple software or will it introduce a virus?
iMac, Mac OS X (10.6.7)
just one more question and then I will stop bothering you. Do you also browse etc from a standard account instead of an administrative account. I have read alot about this and conflicting ideas. I am leaning towards a standard account but its sounding like this thing still needs to have you install it. and with Firefox I ought to be able to prevent it from downloading, much like you did. I was following that thread with a lot of interest.
laverne's mom
Message was edited by: laverne's mom
I haven't been keeping a close eye on this topic anymore - it's just strayed too far off topic and had the conversation go off in some ridiculous directions. However, I noticed you and babowa talking about logging in and out of e-mail and tabs refreshing, and thought you probably ought to be aware of a security exploit called tabnabbing:
http://krebsonsecurity.com/2010/05/devious-new-phishing-tactic-targets-tabs/
This could potentially be used by this malware, though it would more typically be used to steal an account password. I haven't heard anything about this exploit being used with the MacDefender trojans, but it's possible.
that's what happens when this site logs me out. not that its nabbed. but I have to relog in periodically. and from what I understood from the article above (and granted I just read it very quickly), that is the type of thing that would occur, for example on the gmail site. Looks like I've been logged out, but really haven't been, and they get my gmail password. that one wouldn't be awful. i don't use it for much, but could be on other sites. I do routinely close not just the tabs, but also the browser whenever I am doing finances since I really don't want anyone getting those passwords.
have you added something about this on your website?
laverne's mom
have you added something about this on your website?
Not yet, but I'll have to review some of the things that have been written about tabnabbing and, if I feel I can say something useful to clarify or condense or whatever, then I'll add that to the list of topics I'm planning to write articles about.
Do you also browse etc from a standard account instead of an administrative account. I have read alot about this and conflicting ideas.
I've been using one account only for years (except a severaly restricted test account for trouble shooting purposes or if I have to take it in for repair - only access to some necessary system files, nothing else). So I've been complacently relying on the fact that I have to enter my admin password for installs no matter what..... hopefully that won't slap me in the face...
I assume you meant can't be blocked, rather than can.
Mostly because it's a constantly moving target. Here's just one page showing the block of numbers they're using in (Korea?). Scroll down a bit. There's hundreds.
http://www.fpsjzx.cn/hd/18008714.html
If enough scam complaints come in and a number gets blocked, they just use another one, and create more as needed.
And as WZZZ noted, that's not even the real originating number.
Same deal, here's a current shot
I just sent you an e-mail with a link I got today for the attached alert. Thank goodness for this forum or I very well could've installed something.
Someone needs to do something about these low lives!
If you did not install anything, you should be OK. Please see the notice at the top of Mac OS X v10.6 Snow Leopard (among others) for removal info if you did.
STOP!
Post a screenshot please
There is no such animal as the "Apple Security Center." If this is from a website link then ignore it.
sorry bout that. way too tired. won't do that again.
Been taken care of already. 🙂
Just email it to Linc Davis at the email address above, "attention malware" 🙂
is apple security center safe?
