The Mac Observer

Intego Spots Malware Blocker in Snow Leopard

August 25th, 2009 at 5:40 PM - Snow Leopard by Bryan Chaffin

Snow Leopard contains a malware blocker, according to Mac antivirus software developer Intego. The company posted a screenshot of a warning dialog box on its blog that it said was from Snow Leopard, the Mac OS X 10.6 upgrade Apple is shipping on Friday.

"We're not sure yet exactly how this works," the firm wrote, "but the above screen shot shows this feature working with a download made via Safari, detecting a version of the RSPlug Trojan horse in a downloaded disk image."

If the screen shot is legit, it would suggest that Apple has added some form of malware scanner into the operating system. Malware is typically used to describe applications that either tag along with otherwise legit downloads (or in pirated software), or are simply not the download they are purported to be.

The news coincides with the introduction of two new commercials from Apple that tout the Mac platform as being the answer for people tired of dealing with "thousands of viruses" and other hassles on their PCs.

While there are no known Mac viruses in the wild, there has been an increase in trojan horse malware aimed at Mac pirates in the last year. Such a tool in Snow Leopard could well further protect Mac users out of the box.

Malware Blocker Screenshot
Screenshot posted by Intego showing Snow Leopard finding malware in a dis image, and recommending it be trashed

6 Observer Comments

   Actions Khaled said on August 25th, 2009 at 4:54 PM (Edited: 12/08/2009 4:11 PM):

never hurts to have it =)

can’t wait to hear what the haters would say wink

I just started using Leopard with a new Mac I just got (my old Mac couldn’t handle Leopard) and I was surprised to see it tell me a file had been downloaded, when, from where, and did I want to run it or not. It even seemed to work whether I had unZIPped the file, moved it from the disk image that was downloaded, and more. It impressed the hell out of me, especially since I hadn’t heard about it, and my Windows using friend thought it looked very useful. Adding on malware detection to give one more reason not to run or install something downloaded is very very cool.

The ironic thing about this is that one of the only ways of getting this Trojan was by stealing Apple software…

Tell us ComputerBandGeek, what are the other ways?

The other ways were stealing non-Apple software smile

I think Adobe CS4 was high on the list

OS X Server has had ClamAV for quite some time. There is a “clamav” user defined in regular OS X as well. I’d bet that Apple has simply integrated clamav with the same download validation framework already used by Safari/iChat/Mail.

Just like Safari’s parental controls are implemented using the built-in apache web server configured in proxy mode to implement white-listing, Apple seems to figure out how to leverage the open source software already present in really cool ways.

Now if only they would integrate GnuPG with Mail…

Login. Need an account? Register here.



Auto-login on future visits

Show my name in the online users list

Forgot your password?

Commenting is not available in this section entry.
 

Recent Headlines - Updated September 9th

Wed, 4:51 PM
Product News - Apple Releases iPhone Configuration Utility 3.1
3:55 PM
Tips - iOS 4.1: Digging Past The Release Notes
3:44 PM
Product News - iMovie 1.1 Adds 4th Gen iPod touch Support
3:07 PM
How-To - Up and Running with Game Center
1:01 PM
Product News - Apple Releases iOS 4.1
11:32 AM
News - Oracle Calls HP Lawsuit “Vindictive”
10:56 AM
News - iFixit Guts 4th Gen iPod shuffle
10:37 AM
TMO Appearances - Ted Landau Discusses iPods, Apple TV, Ping on MacNotables
10:05 AM
Hot Forum Topic - Forum Poll: When Will You Install iOS 4.1?
9:38 AM
Apple Stock Watch - Analyst: iPad Sales Could Top 28M in 2011
9:02 AM
Product News - MobileMe iDisk Update Improves Keynote Support
8:47 AM
Product News - Find My iPhone Adds New iPod touch Support
 

The Mac Observer Reader Specials
  • Buy Stuff, Support TMO!
  • Read TMO on Kindle
  • TMO on Twitter!

Apple Stock Quote

  • AAPL: $262.92. Change: 0.00.
  • (Prices delayed up to 20 minutes.)
  • Discuss in our Apple Finance Board

Hot Topics

What's the buzz? These articles have TMO readers talking.

TMO Express

Join the TMO Express Daily Newsletter to get the latest Mac headlines in your e-mail every weekday. Find out more!

Top Deals From DealBrothers.com

Recent Features

Get the latest installments of TMO Columns, Podcasts, & Blogs.

Support The Mac Observer

We noticed you may be running AdBlock on your computer. It takes real money to run this site and to deliver the news, tips, and opinions you love to read.

If you wish to block the ads that pay for the creation of our content, we ask that you instead support TMO Directly, either with a $5 monthly recurring contribution, or a one-time donation of any amount of your choice. Thanks!

Subscribe with Paypal Donate with Paypal