All the latest UK technology news, reviews and analysis
|
|
|
28 Nov 2006
Security researchers have found proof-of-concept code for an adware program that targets Apple's OS X operating system.
According to security firm F-Secure, the application does not target a security flaw or bug in the operating systems code. Instead, the adware installs itself through a feature in OS X that allows system libraries to be installed without notifying the user.
While installers require user permission to run in Mac OS X, system library files can be copied onto a machine without ever prompting the user for permission, according to David Frazer, F-Secure's director of technology services.
"It can be seamlessly installed," Frazer told vnunet.com. "When you install the library it doesn't require administrator rights."
The proof of concept that F-Secure tested would automatically launch a browser window every time the user opened an application. It could potentially be used to expose users to unwanted advertisements.
F-Secure has not released details about how the exploit works or what components it targets in the hope that Apple will fix the issue before any malware reaches the public.
"The idea behind this is that there is a vulnerability that right now isn't exploited as such, but it has the potential," said Frazer.
The company hopes that Apple will issue an update for Mac OS X that will force the system to get user permission before it installs system libraries on the machine.
F-Secure's posting comes in a month that has seen the release of several other pieces of proof-of-concept code targeting Mac OS, challenging the common notion that Apple's operating system is less vulnerable to malware attacks.
"For a long time now Mac users have had the feeling that malware is only going to the PC market. This could potentially open the risk for scams that Mac users never see," said Frazer.
Apple did not return requests for comment.
Latest stories from Security
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
Order Processing Specialist - 12 Month Fixed Term Contract...
Great opening with one of the worlds leading information...
JAVA J2EE Developer required with RIA, web services...
Hi, Job Title : Linux Admin Location : Brussels...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
RTFM
RE: Robbie. Secunia isn't mentioned anywhere in the story. Nor is it called a "virus". Have you been sniffing glue again?
Posted by: pete 29 Nov 2006
They didn't "find" it
The so-called researchers (Secunia) didn't "find" this piece of software, they wrote it. Actually, the software is NOT a "virus" as Windows users would understand it. It uses a script to open a browser window. The software itself can be removed with a single mouse click... some Windows adware requires a disk reformat to remove. pure FUD.
Posted by: robbie 28 Nov 2006