All the latest UK technology news, reviews and analysis
|
|
|
17 Feb 2006
Security experts have reported a new Mac OS X proof-of-concept virus that spreads using a known vulnerability in the way that the Apple operating system handles Bluetooth wireless communications.
F-Secure referred to the worm as OSX/Inqtana, and emphasised that it is only a proof of concept and is unlikely to cause any damage.
"Inqtana.A has not been seen in the wild and uses the Bluetooth library that is locked into a specific Bluetooth address and the library expires on 24 February 2006. So it is quite unlikely that Inqtana.A would be any kind of threat," said Jarno Niemela, a researcher at F-Secure's laboratory.
Apple provided a security patch for the exploited vulnerability in June 2005. The worm poses only a limited risk as the user is prompted to accept the file.
On infection the online pest installs itself in a directory where it is automatically activated on the next system reboot.
F-Secure urged OS X 10.4 users to upgrade their systems, and posted instructions on its website on how to remove the worm. The security vendor does not offer any Mac antivirus products.
Inqtana.A is the second virus in as many days to target Apple's OS X. Last Thursday virus companies reported seeing the Leap-A worm in the wild.
Individuals on Mac forums blasted the report, claiming that Leap-A was a Trojan and not a worm. Apple also argued against the 'worm' moniker because it requires the user to download the application and manually execute the file.
But several security vendors, including F-Secure, Symantec and Sophos, persisted in describing the pest as a worm because it self-propagates using the iChat instant messaging client.
Critics also downplayed the report because the worm did not exploit any software vulnerabilities but relied on social engineering to infect systems.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Sneak peek at the forthcoming glass-based machine
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
Support Engineer - Cisco - LINUX - ISP - NOC - £30-40k...
Netapp Storage Engineer - NCDA - NCIE - Unix/ Linux Skills...
Cisco ISP Pre-sales consultant - CCNA - CCNP - CCIE...
Netapp Storage Engineer - NCDA - NCIE - Unix/ Linux Skills...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
Fraudulent Business
I do not understand how the company making anti-virus software, can create viruses as a marketing tool to sell its product. Is this not fraudulent business. It sounds vary similar to a car mechanic breaking a part to then charge you for a new one. I cant see how this is legal or why the have not gotten sued. To top it of the created it on software that is over a year old, and the computers automattically check for updates.
Posted by: Harry Tiffany 22 Feb 2006
Again this is hardly a threat
Your system has to be 8 months out of date to be vulnerable and you have to accept the file in order to be infected! Both of these malware proof of concepts for OS X require the user to infect themselves!
Posted by: Dave Mac 22 Feb 2006
This headline is pretty misleading...
Shouldn't the headline be, "Second Possible Virus exploits flaw that was fixed a year ago, so nobody cares"? Seriously, you've buried the fact that this virus isn't viable in like the seventh paragraph. It's like the local news: "Can pasta make your hair fall out? Find out at 11!"
Posted by: Wil Shipley 18 Feb 2006