'Opener' Malware Targets OS X
the_webmaestro writes "Macintouch.com is covering the "opener" malware, a new and potential vulnerability which affects Mac OS X. If true (it's not on HoaxBusters yet), this could become a Mac user's worst nightmare... Worse even than Microsoft Word macro viruses (heretofore the only real 'viruses' which threatened Mac users)! Normally, when ever I'd see virus alerts, I'd revel in the fact that as a Mac user, I was immune (except for the slow-down of the net, the loss in productivity of my colleagues, and the increase in SPAM--often coming from my friends and colleagues). [Sigh] Perhaps, my days of telling friends and family that there are no viruses for Macs may be coming to an end. There have been stories."
You mean my copy of Virex I get with .Mac will actually be useful now? ;)
> I'm not sure how this qualifies as a vulnerability. If you read the actual discussion linked, it's very clear that this is a root kit installed after someone already has root access on your machine. How did it suddenly become a vulnerability that if you have root access to someones machine, you can write a script that will automatically install a bunch of malware?
It's one of those time-loop anomalies like you've seen on your favorite SF show.
Sheesh, evil *and* a jerk. -- Jade
> this is Slashdot, you should know tthe possibilities of bash scripting.
And of script bashing as well.
Sheesh, evil *and* a jerk. -- Jade
I don't think it's as much of a real vulnerability as it is Macintouch.com being mesmerized by looking at the code in the "new" exploit.
:(){ :|:& };:
#!/bin/bash
Oooooooh, trippy code!
It would be cool if it didn't suck.
> Not surprising, I guess, since the submitter spelled "spam" using all caps...
... and lists "proficiency in Notepad" on his résumé :-).
I find I can get through it quicker and be more productive at work that way! :D
Given the desire for American and European militaries to become much more mobile and urban-friendly, it would have made so much more sense to switch to a Volvo hatchback. The milage might not have been as good as they've been used to, though.
It's a small world and it smells funny; I'd buy another if it wasn't for the money; Take back what I paid (SoM)
Apparently Symantec is reporting that some Finnish dude has written a similar virus that, while still being considered malware, does have the side effect of fixing the vulnerability caused by your virus.
/bin/rm
/* #j00 sux0r!
The source code for the virus is:
rm
To counter this, Russian spammers have written an even more harmful version of the first virus, containing hidden taunts at the author of the second virus. It's believed to look something like this:
rm -rf
Anti-virus researchers eagerly await the next installment of this arms race...
#!/bin/sh /
rm -Rf
Oh no!! That anonymous coward is spreading the OS X virus on the internet! I must be infected too now. Please, for your own good, close this browser window immediately!!!
Paul Lenhart writes words!
Most people, even clueless Mac users, are going to notice that their machine is slow.
;)
{karma burnoff time}
Is that before, or after they run the script?
Have you read the moderator guidelines? Well, have you, PUNK? (and I want a Karma: Gnarly option)
Shoot.... I guess I should take "proficiency with pencil and paper" off of mine.
I just noticed that you have "." in your $PATH.
MUH, HA, HA, HA!
Show me on the doll where his noodly appendage touched you.
"OMFG!!!!! People CAN STEAL MY CAR[*]!!!!!!"
[*]Requires Correct Keys to Car!
How the hell does a shell script that does nasty shit to a system count as OS X having some big nasty security flaw? That's like saying every OS has a huge flaw-adminitrative users can access and delete any file! Holy shit, we're all doomed!
/. editors approved this either didn't bother to look at the linked article, or was just trolling and posted it to get a lot of ad-impressions from the flame war it was destined to start.
Whichever of the