> Gimme some answers, Apple.
You do realize that Apple doesn't live here, right? They might drop by unofficially to browse in their spare time, but rarely comment and never openly or officially.
Safarii crashes and occassionally redirects to ad sites are about the only thing users are reporting today and some noticed nothing at all. There were many crashes in the early days, but it would seem they've worked out most of the bugs.
Intego wrote the only analytic report I have found that alleges capture and reporting of username/password pairs. They even figured out that reporting goes out over Twitter. But so far there has only been one report, that I've heard about, of fraudulent credit card activity around the time of infection. Maybe they just haven't gotten ariund to the exploitation phase yet.
As was mentioned, this malware has a backdoor, so could be configured to do most anything.