Intego Spots Malware Blocker in Snow Leopard

August 25th, 2009 at 5:40 PM - Snow Leopard by Bryan Chaffin

Snow Leopard contains a malware blocker, according to Mac antivirus software developer Intego. The company posted a screenshot of a warning dialog box on its blog that it said was from Snow Leopard, the Mac OS X 10.6 upgrade Apple is shipping on Friday.

"We're not sure yet exactly how this works," the firm wrote, "but the above screen shot shows this feature working with a download made via Safari, detecting a version of the RSPlug Trojan horse in a downloaded disk image."

If the screen shot is legit, it would suggest that Apple has added some form of malware scanner into the operating system. Malware is typically used to describe applications that either tag along with otherwise legit downloads (or in pirated software), or are simply not the download they are purported to be.

The news coincides with the introduction of two new commercials from Apple that tout the Mac platform as being the answer for people tired of dealing with "thousands of viruses" and other hassles on their PCs.

While there are no known Mac viruses in the wild, there has been an increase in trojan horse malware aimed at Mac pirates in the last year. Such a tool in Snow Leopard could well further protect Mac users out of the box.

Malware Blocker Screenshot
Screenshot posted by Intego showing Snow Leopard finding malware in a dis image, and recommending it be trashed

6 Observer Comments

Khaled said on August 25th, 2009 at 4:54 PM (Edited: 12/08/2009 4:11 PM):

never hurts to have it =)

can’t wait to hear what the haters would say

Dean Lewis said on August 25th, 2009 at 5:20 PM:

I just started using Leopard with a new Mac I just got (my old Mac couldn’t handle Leopard) and I was surprised to see it tell me a file had been downloaded, when, from where, and did I want to run it or not. It even seemed to work whether I had unZIPped the file, moved it from the disk image that was downloaded, and more. It impressed the hell out of me, especially since I hadn’t heard about it, and my Windows using friend thought it looked very useful. Adding on malware detection to give one more reason not to run or install something downloaded is very very cool.

computerbandgeek said on August 25th, 2009 at 6:58 PM:

The ironic thing about this is that one of the only ways of getting this Trojan was by stealing Apple software…

iJack said on August 25th, 2009 at 8:24 PM:

Tell us ComputerBandGeek, what are the other ways?

vpndev said on August 25th, 2009 at 9:22 PM:

The other ways were stealing non-Apple software

I think Adobe CS4 was high on the list

jbruni said on August 25th, 2009 at 9:44 PM:

OS X Server has had ClamAV for quite some time. There is a “clamav” user defined in regular OS X as well. I’d bet that Apple has simply integrated clamav with the same download validation framework already used by Safari/iChat/Mail.

Just like Safari’s parental controls are implemented using the built-in apache web server configured in proxy mode to implement white-listing, Apple seems to figure out how to leverage the open source software already present in really cool ways.

Now if only they would integrate GnuPG with Mail…

Page 1 of 1 pages

Commenting is not available in this section entry.

Recent Headlines - Updated February 9th

Tue, 4:53 PM: News - Google Introduces “Buzz” Social Information Sharing Service
4:19 PM: Just a Thought - iPad: A Reason For Being
3:28 PM: News - Google Lowers Nexus One “Equipment Recovery Fee” to $150
2:27 PM: Deal Brothers - Refurbished 13” MacBook 2.13GHz Intel Core 2 Duo: $749
1:31 PM: Jeff Gamet's Blog - Macworld Expo: It’s Our Show, Not Apple’s
10:38 AM: Quick Look Review - Texas Tea for the iPhone and iPod touch
10:25 AM: News - Apple Rolls Out Aperture 3 Video Tutorials
10:00 AM: Hot Forum Topic - Backing Up Your iPhoto Library
9:35 AM: Product News - Notebook, iThoughts Add TextExpander touch Support
9:00 AM: Hidden Dimensions - The Killer Surprises Waiting for Steve Ballmer
8:50 AM: Product News - Aperture 3 Adds Faces Support, More [Updated]
8:30 AM: TMO Quick Tip - Fixing iPhone and MobileMe Sync Headaches

The Mac Observer Reader Specials

TypeStyler For Mac OS X is Now Shipping! Download The Free Fully Functional 60 Day Tryout at www.typestyler.com
RamJet Memory: Mac Pro 8GB Kit $275.99, Mac Pro 4GB Kits $145.99! Sale on MacBook and MacBook Pro 8GB kits $459.99! MacBook, MacBook Pro, iMac Mac mini 4GB Kits for $113.99! 1TB SATA Hard Drives for $109.99! Click here
If you own a car, you need CarMD! Catch problems, estimate repairs and more. Now for Mac. $98.99 at www.CarMD.com Save $10 with code TMO1.
If you're using a Mac, then you've gotta check out Full Tilt Poker for Mac. This Full Tilt Poker bonus code does the unthinkable, it actually rewards!
For the latest Apple products use Ciao, a price comparison website, to find laptops like MacBook Air. Then find the best prices on MP3 players and use our comparison tool to evaluate mobile phones like the Apple iPhone.
Laptop Hardware Provided by TechRestore - Overnight Mac & iPod Repairs.