iServices Trojan Makes its Way to Pirated Photoshop

| News

The iServices trojan horse that first appeared in pirated copies of iWork '09 appears to have been added to a cracking application that adds serial numbers to stolen copies of Photoshop CS4. The new variant of the trojan horse has been dubbed OSX.Trojan.iServices.B, according to the security company Intego.

The cracking application that installs the trojan horse is bundled with copies of Photoshop CS4 that are available via BitTorrent sites. When run, it creates a backdoor with Root user privileges into the user's Mac, alerts a remote server, and allows a remote attacker to execute commands on the user's Mac.

Like the OSX.Trojan.iServices.A trojan that this new variant copies, it is not a virus and requires user interaction for installation. Avoiding this trojan horse is simple: Don't install software that you don't legitimately own, and avoid Web sites, like pirated software and warez sites, that aren't trustworthy.


Popular TMO Stories



Sounds almost like a booby trap, doesn’t it.

Imagine that.

Paul R.

I’m sorry, but I have a hard time caring about a trojan that is showing up in software that people are stealing. Yes, I understand that at some point it is a possibility that it could show up in a commercial install, but then I would have to ponder the legitimacy of the developer.


You know, when people say Windows has viruses, they don’t mean just viruses by that statement. They mean everything from malware to worms. So while the appropriate definition of OSX.Trojan.iServices is that of a trojan, in popular lexicon it qualifies under the catchall term “virus.”

Further, where do you think Windows viruses originated from? There weren’t people at bioware writing viruses and attaching them to their for sale software, mostly viruses that came on marketed items (like the ipods that came with their very own ivirus) came about through unintentional infection from an unsecured source computer. This problem is endemic and so far the only thing that has shielded Mac users has been their relatively small numbers, but as more people use Macs worldwide, there will be more attacks of this nature that will take advantage of OS X’s userbase’s poor understanding of how “viruses” work.

Log in to comment (TMO, Twitter or Facebook) or Register for a TMO account