Uh oh!

I had a feeling it wasnt going to take long for this to happen; with all the new stuff Apple is putting out, the popularity was going to strike interest in those who like to harm information of others. (click on below for extra links in the news page). Make sure your Antivirus is updated or you have one.

FYI:

Mac OS X Trojan Horse (http://news.yahoo.com/s/macworld/20060216/tc_macworld/oompa20060216)

Peter Cohen - MacCentral
Thu Feb 16, 5:04 PM ET

Reports indicate that someone has let loose a “Trojan horse” or worm for Mac OS X users. The program is hidden within a package that purportedly contains screenshots of Apple’s as-yet unannounced next major revision to Mac OS X. Whether it’s a Trojan horse or worm seems to vary depending on the source of the information. The code has also elicited a response from Apple, and a warning to its customers.

The package, called “latestpics.tgz,” first surfaced recently on a Mac rumors Web site. Independently verified by Ambrosia Software president Andrew Welch, he’s dubbed it the “Oompa-Loompa Trojan,” because the files in question check for the presence of an attribute called “oompa” — an apparent reference to the movie and book “Charlie and the Chocolate Factory.”

Welch provides extensive details on the Ambrosia Software discussion forums.

When unpacked, the archive includes an application that resembles a JPEG file. When it’s clicked on, the file executes and attempts to propagate itself via the buddy list of Apple’s instant messaging software iChat.

Welch is careful to point out that this should probably be considered a Trojan horse, rather than a virus, “because it doesn’t self-propagate externally.”

So-called Trojan horses are differentiated from viruses because they masquerade as a regular application or file and do not replicate themselves arbitrarily.

Anti-virus software maker Sophos takes issue with this description, claiming this is the “first ever virus for Mac OS X.”

“OSX/Leap-A is programmed to use the iChat instant messaging system to spread itself to other users. As such, it is comparable to an email or instant messaging worm on the Windows platform. Worms are a sub category of the group of malware known as viruses,” said Sophos in a statement.

Symantec similarly classifies it as a worm, and classifies its threat containment and removal as “easy.” McAfee, makers of Virex, also call the code, which they refer to as “OSX/Leap,” as a worm.

Intego, makers of VirusBarrier, also confirmed the trojan horse’s existence. Because the code is distributed by iChat, Intego said, people are more likely to presume the file is legitimate. Intego advised users to update their virus definition files and “never open files received by e-mail or iChat unless they are sure that these files are safe.”

Sophos, Symantec, McAfee and Intego have all added the code’s description to their Mac anti-virus software files, which can be downloaded from each publisher’s respective Web site.

OSX/Leap-A, Oompa-Loompa, or whatever else you want to call it, also requires an admin password if you’re not running as an admin, said Ambrosia’s Welch.

Additionally, Ambrosia’s Welch said the software has a bug in its code that prevents it from working and prevents infected applications from launching. Still, he strongly advises users that find the “latestpics.tgz” file to avoid downloading or running it.

Apple also commented on the release of the code in a statement provided to Macworld.

“Leap-A is not a virus, it is malicious software that requires a user to download the application and execute the resulting file,” said Apple. “Apple always advises Macintosh users to only accept files from vendors and Web sites that they know and trust. We have a guide to safely handling files received from the Internet at http://docs.info.apple.com/article.html?artnum=108009.”

Updated Feb. 16 2006 5:00 PM: Added comments from Apple.
Updated Feb. 16 2006 2:05 PM: Added comments from Intego.

Popularity is security's antidote. Always was, always will be.

True.

virus protection on a mac? never had anything on one yet, dont think I will for a while either

Why not? Just because there hasnt been an outbreak of virus's for the mac doesnt mean there isnt any already out that have been created.

ive had it with apple, you all know my stance on them, so no need to get long winded, but its about damn fookin time they started attacking apple users. i would be happy if the whole company went down the tubes personally.

LOL D-frag, I've never liked the mac either, I've just tollerated them.

When I lost 6hrs of work in class because of the mac's crashing on me. they couldnt handle 3 programs opened. /shrug. yeah its not a good impression of what the high end macs can do.

Lets say someone offered you a glass of milk, something you never really had before, then it ends up being sour milk, that glass it will take along time before you want to attempt drinking milk again.

This is why I dont like macs.

Why not? Just because there hasnt been an outbreak of virus's for the mac doesnt mean there isnt any already out that have been created.

this is one virus, I not gonna go buy antivirus stuff that sometimes screws up a system more for one virus.
and not open any file that comes along

LOL D-frag, I've never liked the mac either, I've just tollerated them.

When I lost 6hrs of work in class because of the mac's crashing on me. they couldnt handle 3 programs opened. /shrug. yeah its not a good impression of what the high end macs can do.

Lets say someone offered you a glass of milk, something you never really had before, then it ends up being sour milk, that glass it will take along time before you want to attempt drinking milk again.

This is why I dont like macs.

how did you lose 6 hours worth of work?

This isn't even a virus, it's insulting to other virii to call it that.

It's an .app file with a jpeg icon. That's it.

To get this to work, you have to be dumb enough to:

1.Download a .tpz file
2.Ignore Safari's warning that you are unzipping an application
3.Type in your root password when you open the file (you should be slightly suspicious about why a jpeg would need a root password to open)

Sorry Mac haters/Windows lovers, you still lose. The Kama Sutra trojan was much more advanced than this pathetic attempt to break through OSX's security.

At least the Kama Sutra was actually a jpeg file with malicious code in it.

Oh wait, that wouldn't work on OSX either. Hmph, guess they'll have to try a little harder. Windows has made these damned hackers lazy over the years.

mmmmmmm macs
http://www.easi.net.nz/images/homer.gif

they couldnt handle 3 programs opened. /shrug. yeah its not a good impression of what the high end macs can do.

Lets say someone offered you a glass of milk, something you never really had before, then it ends up being sour milk, that glass it will take along time before you want to attempt drinking milk again.



Been a long time since them OS 9 (and earlier) days. They even support two+ button mice now ;)

Been a long time since them OS 9 (and earlier) days. They even support two+ button mice now ;)

Heheh, yeah. That's like claiming that Windows sucks because that one time you used Windows 98 first edition, it crashed. And please don't try to claim that 98 didn't crash constantly...

how did you lose 6 hours worth of work?

I had 3 programs opened at once, Photoshop, Quark, and Illustrator. well 4, and safari browser. sorry my school has OS X on there systems

*EDIT* I was just relaying a piece of news, take it for what its worth. I dont care.

On my pc laptop, I can have: 2 files opened in Autocad2006, 3-4 files opened in Illustrator, 2 files in Quark, 1 in Indesign, about 5 large image files in Photoshop, 4 browser windows, and 3 file folders opened, while i at+tab through each one doing different things, and never crash.

I had 3 programs opened at once, Photoshop, Quark, and Illustrator. well 4, and safari browser. sorry my school has OS X on there systems

*EDIT* I was just relaying a piece of news, take it for what its worth. I dont care.

On my pc laptop, I can have: 2 files opened in Autocad2006, 3-4 files opened in Illustrator, 2 files in Quark, 1 in Indesign, about 5 large image files in Photoshop, 4 browser windows, and 3 file folders opened, while i at+tab through each one doing different things, and never crash.

I've been using OS X since it was released.

On a typical day, I have these programs running at the same time:

Safari
Fetch
Illustrator
Photoshop
Indesign
Golive
iTunes
Mail
iPhoto

And this is with my dual processor G4 at work. You don't even want to know the abuse I heap upon my Core Duo iMac at home.

Do you know how many times during those five years I've used OSX that I've had a critical failure that caused me to lose work?

ZERO.

Sounds like you either had a hardware failure or a freak occurance.

I had 3 programs opened at once, Photoshop, Quark, and Illustrator. well 4, and safari browser. sorry my school has OS X on there systems

*EDIT* I was just relaying a piece of news, take it for what its worth. I dont care.

On my pc laptop, I can have: 2 files opened in Autocad2006, 3-4 files opened in Illustrator, 2 files in Quark, 1 in Indesign, about 5 large image files in Photoshop, 4 browser windows, and 3 file folders opened, while i at+tab through each one doing different things, and never crash.

so you never save your files or what?

on my *EMAC* g4 at home i regularly run;
ps
illy
indesign
itunes
quicken

an have never had a problem
I used to have issues at school, with the OS9 g4's there, but they were abused regularly and the computer lab was directly above the ceramics kiln, so it was always hot in there...

I had 3 programs opened at once, Photoshop, Quark, and Illustrator. well 4, and safari browser. sorry my school has OS X on there systems

*EDIT* I was just relaying a piece of news, take it for what its worth. I dont care.

On my pc laptop, I can have: 2 files opened in Autocad2006, 3-4 files opened in Illustrator, 2 files in Quark, 1 in Indesign, about 5 large image files in Photoshop, 4 browser windows, and 3 file folders opened, while i at+tab through each one doing different things, and never crash.

lol your the first person I know to know Exactly how many things they have open

so you never save your files or what?

HELLO!? Ever hear of processing images and transfering them via layers say in photoshop. I was doing this within quark. Editing them in photoshop, "SAVING THEM", bringing them into quark. Then the MAC's crashed.

2 hr sessions 3 diffrent class times (2x3=6hrs).

http://www.eqluclin.com/forum/images/smiles/banghead.gif @you.

lol your the first person I know to know Exactly how many things they have open

That means, I can control my multitasking with knowledge of what "things" are doing what. Or just maybe I just know what I'm doing? :eek:

There are several schools here that dont have the high end macs that some firms have. All they have are these (http://mmm.mbhs.edu/~chmullig/images/emacs.jpg)

There was nothing I could have done till I could have afford my own laptop (took a few weeks to get check from my grants). Thats after I lost the work and time.

Oh and rockem, quit being an a**hole

not being an ahole trying to see how you lost six hours worth of work? The whole computer crashed three times? So you had to reinstall everything or the the programs crashed?

They are SCHOOL macs (http://mmm.mbhs.edu/~chmullig/images/emacs.jpg). I dont have authorization to install anything. only thing i would install if given the chance, would be a chain, and use the stupid things as a boat anchor.

go get your eyes checked (http://www.lenscrafters.com/Home/Home.cfm).

^ ooh, I like that idea. But I was going to do that with my BOSS.

They are SCHOOL macs (http://mmm.mbhs.edu/%7Echmullig/images/emacs.jpg). I dont have authorization to install anything. only thing i would install if given the chance, would be a chain, and use the stupid things as a boat anchor.

go get your eyes checked (http://www.lenscrafters.com/Home/Home.cfm).

I understand they were school eMacs, just wondering what crashed the whole system, or the programs?

I understand they were school eMacs, just wondering what crashed the whole system, or the programs?

Well when the programs crash giving the error, once I clicked okay on the error for some god forsaken reaason the system restarted on its own, so I guess you could say it was both.

Am I gonna have to make you two go to your rooms for awhile :D

ok im confused

Am I gonna have to make you two go to your rooms for awhile :D

Can we box? I just signed 30 years of my life away for a house last night, so this weekend I hope.. I get to move. The In-laws! OY!

That is very strange, Navian... Over the past five years, I've used these computers extensively:

G3 Powerbook
G4 Powerbook
G3 iMac
G4 Powermac
G4 iBook
iMac Core Duo

And never once did I suffer a complete failure. Sounds like you either had a crap administrator or a Mac with bad hardware.

lmao @ Kool!

Sounds like you either had a crap administrator or a Mac with bad hardware.

Could be both.

That is very strange, Navian... Over the past five years, I've used these computers extensively:

G3 Powerbook
G4 Powerbook
G3 iMac
G4 Powermac
G4 iBook
iMac Core Duo

And never once did I suffer a complete failure. Sounds like you either had a crap administrator or a Mac with bad hardware.

Well, on a note, that's what I've never liked about schools years ago, they continued to run crappy hardware (from the dark days of the mid 90s) and students / kids pick up on this and base their Apple opinions on that as opposed to the current hardware. Or what they heard from friends. I'll admit it, when I was a teenager I bashed the Mac hard (and in a lot of cases in the 90s, Apple deserved it). But I really hadn't used them very much until college when I changed my tune.

Oddly, all of the above mentioned hardware falls within Apple's better years though...

I have been able to kernal panic OS X and bring the entire system down (it is a UNIX-based system, after all), but I can count on one hand how many times that happened to me (and mostly during the period between OS X 10.0 and 10.2).

The only time I haven't been able to run simultaneous programs was back in the OS 9 days when I first got my Powerbook G3 with something like 96MBs of RAM. It could only launch two graphics programs at a time, if even that. Bumping the RAM helped out considerably. I don't miss those days of horrible memory management of OS Classic at all.

Heh, the reason I listed that hardware is because it's the only Apple hardware I've owned.

I hated OS9 and earlier OSes... I preferred Windows and used that instead. It wasn't until OSX that I really started to enjoy the "Apple experience".