Slashdot Mirror

← Back to Stories (view on slashdot.org)

New MacDefender Defeats Apple Security Update

Posted by samzenpus on from the +1-or-better-update-to-hit dept.

XxtraLarGe writes "Apple released a security update yesterday designed to rid Macs of the menacing MacDefender malware that has plagued users for nearly a month. But mere hours after the update, cyber-criminals released a new variant of the malware that easily defeated Apple's belated security efforts. That didn't take long."

4 of 427 comments (clear)

  1. And this is surprising why? by jo_ham · · Score: 5, Insightful

    It's a new piece of malware, as far as definitions go. It will be blocked tomorrow when the tool checks for new definitions.

    It still requires that you dismiss the "this file appears to be a file downloaded from the internet from [address], are you sure you want to run it?" dialog box. Plus, with no admin password it's local user only (which is still bad, just not root capable).

    Alas, the arms race begins. At least it's only trojans.

  2. Yeah, but .. by n5vb · · Score: 5, Insightful

    .. have they figured out how to install it without asking an admin user for permission?

    Until that happens, it's not really a security issue, it's still a social engineering hack. And no platform is immune to social engineering hacks because there are always end users dumb enough to unlock the front door for whatever puts on a good show and let it walk right in and take over.

    If someone figures out a way to bypass Installer and run unsigned code without at least throwing a warning, then I'll worry ..

  3. Re:This just in... by calmofthestorm · · Score: 5, Insightful

    Visiting a website shouldn't be able to install malware on my computer. Neither should opening an email, Flash applet, Java applet, Word document, etc. These are all the faults of the relevant vendors.

    Installing random unsigned binaries from the internet? That should be able to do absolutely anything -- it needs to be able to for computers to be general purpose tools. And that includes malware.

    TL;DR social engineering is the user's fault, but sec vulns do exist and are not.

    --
    93rd rule of Slashdot: No matter how obvious my sarcasm is, my comment will be taken seriously by someone.
  4. Re:Obligatory Clarification by spun · · Score: 4, Insightful

    maccodemonkey writes:

    So far, I'd disagree with that. The malware detection is built into the system, invisible, automatic, and self updating. So the user doesn't have to do X, Y, or even Z at all. We're still at "It just works."

    Not saying that couldn't change in the future, but we're not there yet.

    Okay, maccodemonkey, here's the thing: if the malware detection which is built into the system, invisible, automatic, and self updating is defeated within hours of it being release, we are no longer at "It just works." What part of "It doesn't work anymore" sounds like "It just works" to you?!?

    --
    - None can love freedom heartily, but good men; the rest love not freedom, but license. -- John Milton