- dotTech - http://dottech.org -
Anyone who feels Mac “doesn’t get viruses” hasn’t heard of ‘Pintsized.A’, a new trojan that bypasses Mac security measures
Posted By Ashraf On March 12, 2013 @ 3:21 AM In Mac OS X | No Comments
Remember that hack marathon  earlier this year that saw Apple, Facebook, Twitter, and Microsoft compromised? Yeah, well, the breach occurred courtesy infected Macs. And now researchers have identified the malware that infected these Macs — ‘Pintsized.A’.
Pintsized.A is a new trojan that specifically targets Mac OS X. It isn’t entirely clear how it works but it is known that Pintsized.A bypasses Mac’s Gatekeeper, a security tool Apple introduced in OS X Lion v10.5.7 that blocks programs from installing on OS X that have been modified or don’t have a valid ‘Developer ID’. Once past Gatekeeper, Pintsized.A opens a connection with the mothership (aka command control server) and encrypts the connection so that the communication is harder to detect. Once the connection has been established, the scumbags behind the malware have remote access and control over the infected machines.
An interesting discovery made by security researchers regarding Pintsized.A is that it used third-party, unrelated websites to spread the trojan. Various third-party websites, including the already known iphonedevsdk.com, were booby trapped with the trojan without the knowledge of the website owners. However, as ArsTechnica points out, what is even more interesting is the fact that the booby trapped websites only infected certain types of people/machines — not all Mac visitors were hit with the trojan. It isn’t yet known why or how this happened, but smart geeks are looking into it.
Article printed from dotTech: http://dottech.org
URL to article: http://dottech.org/100217/anyone-who-feels-mac-doesnt-get-viruses-hasnt-heard-of-pintsized-a-a-new-family-of-malware-that-bypasses-mac-security-measures/
URLs in this post:
 Image: http://dottech.org/wp-content/uploads/2013/03/mac_no_pc_viruses.png
 hack marathon: http://dottech.org/tag/web-security
 ArsTechnica: http://arstechnica.com/security/2013/03/mac-malware-that-infected-facebook-bypassed-os-x-gatekeeper-protection/
 SecurityLedger: http://securityledger.com/many-watering-holes-targets-in-hacks-that-netted-facebook-twitter-and-apple/
 St0rmz: http://www.flickr.com/photos/linecon0/5958218237/
© 2008-2012 dotTech.org | All content is the property of its rightful owner.