OS X Malware Demands $300 FBI Fine For Viewing, Distributing Porn

An anonymous reader writes "A new piece of malware is targeting OS X to extort money from victims by accusing them of illegally accessing pornography. Ransomware typically uses claims of breaking the law and names law enforcement (such as the CIA or FBI) to scare victims, but it is usually aimed at Windows users, not Mac users. The security firm Malwarebytes first spotted this latest threat, noting that criminals have ported the ransomware scheme to OS X and are even exploiting a Safari-specific feature. The ransomware page in question gets pushed onto unsuspecting users browsing high-trafficked sites as well as when searching for popular keywords."

Ok?

[i+kan+reed]

I thought we were past the "being surprised that apple products get malware" stage years ago. This seems like a pretty run-of-the-mill scam. I can't really see what's notable about it. Someone help?

Re:Ok?

[Samantha+Wright]

...well, there's a pretty simple way to check whether or not your fears are founded. Just shine a UV lamp on the keyboard and examine the shapes of the stains. This is like the forensic chemistry equivalent of a textbook physics problem set in a textbook factory.

Re:Ok?

[fazey]

So how is this "mac specific" or an "exploit"... and not just... a popup?

Been on Windows for awhile..

[hairyfeet]

I've been seeing variations on this one for a year or two now, sometimes connected with the "Yahoo Porn Bug" I wrote about in my journal, sometimes not. The main thing when it comes to a lot of this crap is to explain and assure the public its bullshit, you'd be amazed how many can be put into panic mode by a letter that looks like it comes from authority and of course guys getting child porn charges for Simpsons cartoons and manga really doesn't fucking help matters in that regard.

Now I don't know how it is on OSX but on Windows these kinds of bugs aren't that hard to kill a good tool for the job I've been trying out in the shop is the Emisoft Emergency Kit which is free for personal use but so far looks to be worth the cost of a license if you work in a shop. The whole thing runs on a stick and so far it seems to be pretty damned good at detecting all kinds of bugs and its CLI scanner so far has been pretty good at getting around the run blocks some of the malware uses.

FTFY

[SuperKendall]

I thought we were past the "being surprised that websites get hacked" years ago.

This is not malware, it's a hacked site with annoying javascript. The only news here is how desperate some people are to show that OSX is vulnerable to malware - even when the malware never is installed on the system...

Re:FTFY

[jimicus]

It is malware, it's just not running from a platform usually used for such things.

True, but the important point is the platform in question is not OS X and it is somewhat disingenuous to pretend it is. The platform is "any web browser that automatically reloads the last visited site if you force it to quit".

Not a virus, how does your foot taste?

[raymorris]

How does that foot in your mouth taste? It's not a virus, and not OSX specific - it's just a web page with some annoying Javascript.

Re:makes sense

[93+Escort+Wagon]

Still bitter about that Mac user stealing your girlfriend, I see...

Re:No, still pretty invulnerable...

[SuperKendall]

A user can go along time without seeing virus and malware in OSX because OSX holds 7.18% of the market as opposed to Windows 7 and XP at a combined total of 81%.

Who cares why it is true when it *is* true?

It's still the case that by far a non-technical user is vastly safer running a Mac.

If I were to write malicious code with the intent to prey on the gullible and make quick money which OS would I target?

Obviously people too stupid to choose the safer, instead of the more popular, choice.