Apple Event: May 7th at 7 am PT

Learn more

Add to your calendar 

Looks like no one’s replied in a while. To start the conversation again, simply ask a new question.

User profile for user: Daggilarr
Daggilarr Author
User level: Level 1
4 points

What is the best AV program for Macs

Seems to be a growing threat, I wondered what experience of AV software anyone has had.

iMac, Mac OS X (10.7.3)

Posted on Apr 6, 2012 11:36 AM

Reply
22 replies
User profile for user: WZZZ
WZZZ
User level: Level 6
13,226 points

Apr 6, 2012 6:18 PM in response to Csound1

Csound1 wrote:


1 of the variants may be able to install in a limited fashion without intervention that is true, that is when the user turns to the current backup they always keep.

No may about it.


that is when the user turns to the current backup they always keep.

Don't understand what this means. Please clarify.

Reply
User profile for user: WZZZ
WZZZ
User level: Level 6
13,226 points

Apr 6, 2012 6:22 PM in response to Csound1

Just do some basic reading. It's all over the place. Here's one of hundreds. And it's been in numerous threads here and all over the Snow Leopard forum.


What makes this outbreak especially chilling is that the owners of infected Macs didn’t have to fall for social engineering, give away their administrative password, or do something stupid. All they had to do was visit a web page using a Mac that had a current version of Java installed.


http://www.zdnet.com/blog/bott/new-mac-malware-epidemic-exploits-weaknesses-in-a pple-ecosystem/4726

Reply
User profile for user: Csound1
Csound1
User level: Level 9
59,973 points

Apr 6, 2012 6:28 PM in response to WZZZ

The ZDnet article is just press hysterics so I moved on to the independent Lab' link, which may or may not be quoting Kapersky (the article is attributed to Dr. Web). I selected this paragraph as it is the only one quoted to even mention distribution/installation.


It is being distributed via infected websites as a Java applet that pretends to be an update for the Adobe Flash Player. The Java applet then executes the first stage downloader that subsequently downloads and installs the main component of the Trojan. The main component is a Trojan-Downloader that continuously connects to one of its command-and-control (C&C) servers and waits for new components to download and execute.


I don't see mention of whether it bypasses the usual java update request for permission to install or not.


So, nicely


Attribution please

Reply

What is the best AV program for Macs

Welcome to Apple Support Community
A forum where Apple customers help each other with their products. Get started with your Apple ID.
Learn more Sign up