HomeHome  CalendarCalendar  FAQFAQ  SearchSearch  RegisterRegister  MemberlistMemberlist  UsergroupsUsergroups  Log in  
Share | 
 

 J the Hugget said it was only a matter of time...

View previous topic View next topic Go down 
AuthorMessage
LL

avatar

Location : KCMO
Registration date : 2007-12-29

PostSubject: J the Hugget said it was only a matter of time...   Wed May 25, 2011 7:34 pm


...and he was right. Twisted Evil (For those of you who don't know, his day job is Resident Computer Security Wizard for a suitably impressive outfit)

If you're running an Apple machine, and haven't heard about the recent mess regarding them, you need to read this:

http://www.ibtimes.com/articles/152245/20110525/this-mac-malware-thing-is-really-scary-now.htm


Back to top Go down
View user profile
jhuggett
BoB's Pioneer & Founding Father
avatar

Age : 45
Location : Olympia, WA
Registration date : 2007-12-09

PostSubject: Re: J the Hugget said it was only a matter of time...   Thu May 26, 2011 2:23 pm

I'm actually surprised it took as long as it did but now that its here it seems to evolving pretty quickly. It was only a couple weeks ago when reports started surfacing about Mac Defender which used pure social engineering as the exploit, now it's evolved into a drive by install. They also discovered the first "crime kit" for OS X, which makes creating malware a point and click activity... No hacker skills necessary.

It's still in the infantile stage and the attacks are pretty basic but if it continues along this pace expect to see AV evading techniques being employed and them making more use of 0 day exploits as the avenue of infection. They also start employing techniques that make removal very difficult if not impossible buy randomizing the executable names and packages, setting triggers to spawn new processes once one is killed. They are quite ingenious really.

Start making good back ups of your data now and keep your OS media available. Once it gets to that point it's often better to just start with a clean OS installation.

_________________
Jason

"Freedom, Security, Convenience: Choose Two"
"For me, I will take freedom over security and I will take security over convenience." ~ Dan Geer
Back to top Go down
View user profile http://www.brothersofbriar.com
jhuggett
BoB's Pioneer & Founding Father
avatar

Age : 45
Location : Olympia, WA
Registration date : 2007-12-09

PostSubject: Re: J the Hugget said it was only a matter of time...   Thu May 26, 2011 2:26 pm

Forgot to add Sophos has a free AV solution and I've heard it's pretty good.

I have worked with that company for years and they are probably my favorite endpoint security solutions.

_________________
Jason

"Freedom, Security, Convenience: Choose Two"
"For me, I will take freedom over security and I will take security over convenience." ~ Dan Geer
Back to top Go down
View user profile http://www.brothersofbriar.com
LL

avatar

Location : KCMO
Registration date : 2007-12-29

PostSubject: Re: J the Hugget said it was only a matter of time...   Fri May 27, 2011 8:37 pm


The official fix (for now):

http://support.apple.com/kb/HT4650

Back to top Go down
View user profile
LL

avatar

Location : KCMO
Registration date : 2007-12-29

PostSubject: Re: J the Hugget said it was only a matter of time...   Wed Jun 01, 2011 6:12 pm

jhuggett wrote:

It's still in the infantile stage and the attacks are pretty basic but if it continues along this pace expect to see AV evading techniques being employed and them making more use of 0 day exploits as the avenue of infection. They also start employing techniques that make removal very difficult if not impossible buy randomizing the executable names and packages, setting triggers to spawn new processes once one is killed. They are quite ingenious really.

You be right again, j:

http://www.appleinsider.com/articles/11/06/01/mac_defender_variant_quickly_thwarts_apples_mac_os_x_security_update.html
Back to top Go down
View user profile
jhuggett
BoB's Pioneer & Founding Father
avatar

Age : 45
Location : Olympia, WA
Registration date : 2007-12-09

PostSubject: Re: J the Hugget said it was only a matter of time...   Thu Jun 02, 2011 5:28 pm

That's the problem with definition based malware detection. They will have to start using behavior based host intrusion detection techniques as well if they plan on keeping their heads above water. Unfortunately it puts Apple in a tough position as it progresses. They will have to stop supplying end user support for removal and I think that will make a lot of their customers very unhappy. Not so bad for the savvy users as the fix is usually a Google search away but for all the people who were sold on the "it just works" idea it probably won't set too well.

_________________
Jason

"Freedom, Security, Convenience: Choose Two"
"For me, I will take freedom over security and I will take security over convenience." ~ Dan Geer
Back to top Go down
View user profile http://www.brothersofbriar.com
 
J the Hugget said it was only a matter of time...
View previous topic View next topic Back to top 
Page 1 of 1
 Similar topics
-
» Sion Jenkins refused compensation - IMO he's Innocent....
» Over 100 oz. available-one time donation
» Shipping options for those who work full time?
» Leonor Cipriano’s lesions weren’t all caused at the same time - Sol
» One time donation - Wentworth by the Sea

Permissions in this forum:You cannot reply to topics in this forum
Brothers of Briar :: Community :: The Round Table-
Jump to: