Signs of first zombie Mac botnet

Malware hunters at Symantec claim to have found evidence of the first Mac OS X botnet, reports ZDNet, followed by Ars Technica and Macworld UK.

The trojan — called called iServices — apparently comes from pirated copies of iWork '09 and Photoshop CS4 distributed via peer-to-peer networks. See this blog post for a first-hand description of the exploit (a PHP script performing a DDoS attack).

Pedro Bueno has posted a complete description on how to find and remove the trojan.
If you're afraid of the Terminal, SecureMac proposes a free iServices Trojan Horse Removal Tool, available at http://macscan.securemac.com/files/iServicesTrojanRemovalTool.dmg.

Time to think of an anti-virus package for your Mac? I know some editors who will be welcoming that news to boost their fledging Mac AV product line...

mensuelles Archives

Recent Entries

  • Steve Jobs

    "Remembering that I’ll be dead soon is the most important tool I’ve ever encountered to help me make the big choices in life. Because...

  • Your privacy on MOTOBLUR by Motorola

    After the Nokia Ovi Store carelessness, it's now Motorola who's allowing strangers to get access to your private information on their MOTOBLUR portal. Exactly like...

  • How to resume a broken ADC download

    (I'm documenting this trick for myself to remember, but it can be useful for others…) Apple, on its Apple Developer Connection site, has a bad...

  • WTF is this ‘myEventWatcherDiv’ doing in my web?

    All of a sudden I started to find the following line in most of the web pages I was browsing, including ones I made where...

  • Your privacy on Nokia Ovi Store

    My friend Adam Greenfield recently complained about the over-engineering culture at Nokia: I was given an NFC phone, and told to tap it against the...