Intego Warns of New Mac Trojan Horse

December 3rd, 2008 at 8:47 AM - News by Jeff Gamet

Antivirus software developer Intego claims to have discovered a new Trojan horse threat for Mac OS X dubbed OSX.RSPlug.E. The file attempts to trick users into installing an application that could let a malicious attacker install additional files without the user's knowledge.

OSX.RSPlug.E is a variant of a Trojan horse that was first reported in October 2007. It is apparently showing up on several pornographic Web sites and displays a warning that states "Video ActiveX Object Error," and includes an option to download the "missing Video ActiveX Object."

Once installed, a remote attacker could potentially add other files to the user's hard drive without their knowledge or permission. Like other Trojan horse threats, this one relies on user action and is not a virus threat that takes advantage of security weaknesses in Mac OS X.

For now, this potential exploit appears to be limited to the subset of surfers that visit pornography Web sites, but that doesn't mean it couldn't be adapted for other sites as well. The biggest threat OSX.RSPlug.E poses so far is that takes advantage of the trusting nature found in many Web surfers.

Related Entries
- Apple Store Offline

4 Observer Comments

wilf53 said on December 3rd, 2008 at 9:59 AM:

One way for Apple to counter such threats, would be to skip the QT Pro-idea and as they have done regarding most major graphics formats, implement a system-wide support for most video-formats. Thus, I think users would be more suspecting if they would be asked to install something like this. As it is now, a Macuser is being accustomed to QT asking you to install this and that since Mac OS doesnʼt support a variety of video formats etc. as it is, without add ons, some of which costs.

mactoid said on December 3rd, 2008 at 11:37 AM:

“For now, this potential exploit appears to be limited to the subset of surfers that visit pornography Web sites…”

subset? SUBSET?!?!? Don’t these people know the electronic prime directive??

“The Internet IS for Porn”. Just ask “Avenue Q”.

BeachMac said on December 3rd, 2008 at 1:26 PM:

It’s a very ominous sign when an antivirus software developer starts warning the public!

Any occasionally-awake computer science major, serious programmer, and all the freelance hackers in the world know who is really responsible for developing and distributing exploits, malware, spyware, viruses and such. If there is money to be made in such a business, there must be stuff to protect against!

deasys said on December 3rd, 2008 at 3:26 PM:

This trojan exploits a perfect storm of stupidity.

Sometimes you just have to let go…

Page 1 of 1 pages

Commenting is not available in this section entry.

Recent Headlines - Updated February 10th

Tue, 9:09 PM: Games - Gameloft’s GT Racing Motor Academy Arrives at App Store
6:27 PM: iPad - Apple Job Posting Hints at a Camera in Future iPads
6:22 PM: Product News - Apple Releases Digital Camera RAW Compatibility Update 3.0
6:18 PM: Product News - Apple Updates iLife ‘09 with Aperture 3 Support, Slideshow Performance
4:53 PM: News - Google Introduces “Buzz” Social Information Sharing Service
4:19 PM: Just a Thought - iPad: A Reason For Being
3:28 PM: News - Google Lowers Nexus One “Equipment Recovery Fee” to $150
2:27 PM: Deal Brothers - Refurbished 13” MacBook 2.13GHz Intel Core 2 Duo: $749
1:31 PM: Jeff Gamet's Blog - Macworld Expo: It’s Our Show, Not Apple’s
10:38 AM: Quick Look Review - Texas Tea for the iPhone and iPod touch
10:25 AM: News - Apple Rolls Out Aperture 3 Video Tutorials
10:00 AM: Hot Forum Topic - Backing Up Your iPhoto Library

The Mac Observer Reader Specials

TypeStyler For Mac OS X is Now Shipping! Download The Free Fully Functional 60 Day Tryout at www.typestyler.com
RamJet Memory: Mac Pro 8GB Kit $275.99, Mac Pro 4GB Kits $145.99! Sale on MacBook and MacBook Pro 8GB kits $459.99! MacBook, MacBook Pro, iMac Mac mini 4GB Kits for $113.99! 1TB SATA Hard Drives for $109.99! Click here
If you own a car, you need CarMD! Catch problems, estimate repairs and more. Now for Mac. $98.99 at www.CarMD.com Save $10 with code TMO1.
If you're using a Mac, then you've gotta check out Full Tilt Poker for Mac. This Full Tilt Poker bonus code does the unthinkable, it actually rewards!
For the latest Apple products use Ciao, a price comparison website, to find laptops like MacBook Air. Then find the best prices on MP3 players and use our comparison tool to evaluate mobile phones like the Apple iPhone.
Laptop Hardware Provided by TechRestore - Overnight Mac & iPod Repairs.