Q: FlashPlayer Virus
So, I was browsing the interwebs about an hour ago (just took this long to get around to posting this) and I clicked a link that didn't take me to the page I expected, and that I think I visiting with the same link a few minutes earlier; anyways, it prompted me to download an update to Adobe Flash player, however the update window openned and downloaded the update automatically, which I know it doesn't do, also the updater looked the one on Windows, just with a Mac's title bar at the top, might look like that on Macs too, but I can't remember ever updating it so... Also, there was a spelling mistake, and I am very particular about those sorts of things, so I noticed it, and I know that the real one doesn't have that, so anyways, the updater thingy was in the browser window, it just looked like a seperate window.
The webpage that I ended up getting directed to and that downloaded the file is: http://adobe****hplayer.rr.nu/8f/
The file is named: FlashPlayer-11-MacOSX.pkg
Well, I never openned it because of the obvious (in my opinion) fake... ness... but what concerned me was that after doing a Bing search (because I switched from Google last week, and even though I checked Google, I didn't find helpful results as fast) I found that there was such a virus before, not too long ago that I figured, it was after the MacDefender virus, but I didn't read the date on the article I read about it.
Anyways, what concerned me was that the thingy (XProtect I believe it is) allowed the file to be downloaded at all. I just checked and the thingy is set to update the "safe downloads list" automatically, so...
Anyways, is there a reason that it may have been allowed?
More importantly, does this potentially need reporting?
This is the webpage that downloaded the file
< Link Edited By Host >
MacBook Pro, Mac OS X (10.7.2), Mid 2010 model
Posted on Apr 8, 2012 9:58 AM
Yes, it's a trojan, and this is why you can't rely on any automated protection from malware -- neither Apple's nor anyone else's. The attackers are always ahead of the defenders. The XProtect database doesn't yet include this item. The only effective defense against malware is common sense, which is what saved you in this case. I'm not aware of any way you can report malware to Apple.
Posted on Jan 20, 2012 6:44 PM
