back to article Pinhead Mac Trojan sticks it to fanbois

Miscreants have created a new strain of Trojan horse malware that establishes a backdoor on compromised Macs. HellRTS-D (AKA Pinhead-B) disguises itself as the iPhoto photo application. The Trojan is a new variant of a strain of malware first reported in 2004, reports Mac security specialist firm Intego. The Trojan, developed …


This topic is closed for new posts.
  1. Anonymous Coward

    Trojan horse malware

    Where is this 'trojan horse malware' available and how do I download it and do I need admin rights to execute it?

  2. Anonymous Coward
    Anonymous Coward



    You're all doomed. So what do you have to say now then all your Macsters? Oh, you don't get malware right?


    Doomed, doomed, you're all doooomed it's MSBlast all over again for the Apple, take a bite of that you fruit poopers.

    Oh - you need to be stoopid enough to download some iThing to get infected i see. What, no worm functionality? God dammit, you Mactards cannot even write a decent bloody infectious trojan wormy thing. Useless boogers.

  3. M Gale

    Cue smug grin from every other geek on the planet

    In 3, 2, 1...

    1. Random_Walk


      You're right, though I suspect that it would be the same smug grin amongst *nix users that happens whenever someone (not necessarily you, but someone) cries "A-ha! See!? Macs Get infected too!", ...then points to a convoluted trojan which requires an inordinate amount of user stupidity to actually work.

      (Mind you, I'm typing this from a Win7 box, with half a dozen PuTTY SSH sessions open to various Linux and FreeBSD servers, and not a single Mac in sight...)

      Personally, I'd wait to call it parity until we start seeing drive-by attacks happen on OSX, Linux, or etc.

      1. Ammaross Danan

        I guess

        I guess you missed the Safari driveby download scare...

        And as for a "convoluted trojan which requires an inordinate amount of user stupidity to actually work," I have seen many of these types infect Wintards. Click on a link provided by a Google search, it ends up being a webpage mimicing an AV scanning your My Computer explorer window saying it has found XXX number of virii, has a "popup" on which you click the "X", which pops up saying "download this. Run?", Click "Run" and windows pops up again, "Are you sure you want to run this? It isn't from a trusted source...blah blah". I'd say that falls on the "inordinate amount of user stupidity" side of the line. Probably more so than a link to install a supposed plugin.

  4. Anonymous Coward
    Anonymous Coward

    Yeah, yeah, yeah

    And what's the infection vector?

    "Do you want to install this dangerous piece of software from god-knows-where? If so, enter your password now."

    1. oddie
      Paris Hilton

      I'd imagine...

      that it would be the usual free porn vector :)

      you know, the 'install this software on your completely safe mac, and you shall see boobsicles, need to enter password to allow install though.. what are you waiting for? boobsicles man, boobsicles!!!' method.

      I hear it's surprisingly effective ;)

    2. Anonymous Coward
      Anonymous Coward


      So, a bit like the infection vector for any trojan?

      Ok, with XP if you are running with Admin (which you shouldn't be) you wouldn't need a password, but you've just downloaded some software and are installing it, of course it's going to ask for a password or require admin access...

      1. Jean-Luc

        shouldn't be?

        News for you - I tried running outta admin on XP and it's like pulling teeth. About 10-20% of the software behaves randomly when you are not logged in as admin. Obviously that is after you have installed it as admin in the first place.

        So... nice idea, no sarcasm intended. Not so nice in practice with much of the stuff that's out there. The stuff just wasn't written for it. And, no, sometimes you just don't have a real choice in what you are using - this was my significant other's accounting software for work.

    3. idasben


      Ironic, Mac tore Windows Vista and UAC apart for asking people to enter their password to confirm they're sure they want to do something they've just told a PC to do, and now an idential issue pops up on the mac and the Mac defence is to say there's no possible infection vector.

      Please, this kind of stuff helps issues, but in the end stupid people do stupid things and they'll just type the password in to open iPhoto as far as they're concerned.

      2000's - decade of Windows problems

      2010's - decade Apple begin to realise the problems they've created by telling people they can't get malware....

      1. Frank Bough


        ...who's Mac?

      2. Jeremy Chappell


        No it was Windows users who bristled at UAC... Mac OS X has needed an admin password to write to certain parts of the systems since version 1.0 (and yes, as a spectacular oxymoron Apple did have a Mac OS X Server version 1.0 ... the first non Server version was 10.0, but there was a Mac OS X version 1.0).

        Nobody at Apple ever said Mac OS X couldn't get malware - ever. This is something dreamed up by PC users. Apple's advice has always been the same: Keep up to date with the patches, think about why you're being asked for your admin password, and don't install software you don't trust (which is pretty good advice no matter what platform you're using).

        This doesn't use any kind of short coming in Mac OS X - it's pure social engineering.

        Where do you think Microsoft got the idea for UAC from?

        I'm also not about to claim that Apple have nothing to learn from Microsoft about security (Windows makes a better job of address randomisation for example) but Mac OS X is Unix, and Unix has a good track record for security.

        1. Anonymous Coward
          Anonymous Coward

          Fanbois, I hates 'em

          'Nobody at Apple ever said Mac OS X couldn't get malware - ever. This is something dreamed up by PC users.'

          Nope, this is something punted about by fanbois, Mactards and the less knowledgeable media.

          'Apple's advice has always been the same: Keep up to date with the patches,'

          Umm, this would be the same Apple that had a bunch of widely known security holes in their OS and browser that weren't patched for months. Sure, patch it, ooops there isn't a patch for that hole.

          'think about why you're being asked for your admin password, and don't install software you don't trust '

          Yeah, 'cause those boobies will still be there when you've decided you trust the software.

          Simple fact is, most average users are idiots, Mac users moreso in respect of security because they've had it pounded into them that their shiny sparkly piece of bling computer can't get viruses. You wouldn't believe the crap I've had to put up with from Mac users because 'Macs never crash' or 'Macs just work, it must be your network' etc... etc...

          1. Anonymous Coward

            "RE Fanbois, I hates 'em

            "Simple fact is, most average users are idiots, Mac users moreso in respect of security because they've had it pounded into them that their shiny sparkly piece of bling computer can't get viruses."

            "Mac users moreso"? Have you ever met a Windows user. When asked why they have Windows it's usually "i only use it for gaming and use linux the rest of the time" or "we have it at work".

            The ones in the first bracket aren't really idiots and they're about 2% of the Winblows user base. The remaining 98% think they're safe because "we are at work" - yeah where external downloads are prohibited and all mails with .exes are deleted...

            1. Anonymous Coward
              Anonymous Coward

              Most average users are idiots.

              Oh yeah, I deal with them very day. Idiots they may be but the majority of Windows users I meet are aware that their machines can get infected, that they need to run some sort of malware protection and that stuff comes in via email, off the web or via dodgy downloads.

              Sure there are some who are completely oblivious to all that and would click a link even if it told them it was going to kill a cute fluffy kitten (although they could just be psychotic) but there's a much larger percentage of Mac users I meet who think they really don't need to bother, because Macs don't get infected or so they think...

              Your average Linux user is somewhat less likely to be an idiot but there are still some raving morons out there using Linux.

        2. Rattus Rattus

          re: "Where do you think Microsoft got the idea for UAC from?"

          From sudo, yes?

      3. Anonymous Coward


        "ronic, Mac tore Windows Vista and UAC apart for asking people to enter their password to confirm they're sure they want to do something they've just told a PC to do, and now an idential issue pops up on the mac and the Mac defence is to say there's no possible infection vector."

        Urm, no. EVERYONE tore into Vista (and other Winblows OSs) when they DIDN'T ask for a password...

  5. Anonymous Coward


    ..does this constitute an "in the open" Apple virus/trojan? I can't tell from the article.

    Can we now - at last - dump this "no OS X malware in the wild" bollox, and stop with the f*ing denial?

    Also, can we at least have an OS X anti-malware that isn't a complete hog, and actually works? What I mean is, can OS X be used to write a better anti-malware than can be found on a PC?

    i.e. Can OS X become the more secure platform because it can be (through design and proper protection), not just because Steve Jobs says it is?

    My domestic setup is all apple, just in case the fanbois plan on having a dig.

    1. jai
      Jobs Halo

      no, not yet

      can't stop the smug "no viruses here" just yet, cos this isn't a virus - you need to be a numpty and install it to compromise yourself

      1. bothwell

        no viruses != no malware

        Nice goalpost shift there, mate.

    2. Anonymous Coward
      Gates Horns

      RE: So...

      Take the %age of viruses, trojans and other malware "in the wild" that's for Windows.

      Now compare that to the Windows/Linux/OSX market shares...

      Who is safest. (I know who *isn't*!)

  6. Volker Hett

    Wow! #4 or 5 in ten years :)

    Do you still have to install trojans on Macs yourself or are they more comfortable now?

    1. Anonymous Coward

      ...give or take a 100 has one or two.

      1. Rod MacLean

        RE: ...give or take a 100

        " has one or two."

        I looked.

        Mostly malware that requires admin priviledges to actually delete a system file.

        One or two is what we get PER DAY on Windows...

        OSX has been going longer than a day last I looked.

        So your point is?

        1. Anonymous Coward

          Ignorance clearly is bliss.

          >Mostly malware that requires admin priviledges to actually delete a system file.

          If you say so. Good job there's no way of priv escalation under OSX and Apple has such a good record on patching vulnerabilities, if any were ever to come-up - which is of course unthinkable. I'm sure Miller's 20 or so current zero days are entirely made up - its not like he's ever been able to reliably prove any of his claims in pwn2own face offs. Thankfully he keeps all his techniques secret,never speaks at conferences and even if he wrote a book or two, on say fuzzing or mac hacking, I'm sure no-one would buy them.

  7. SlabMan

    Some disguise

    So, if you download 'iPhoto' using a torrent, don't stop to wonder why it's only a couple of megs rather than the usual several hundred, and then go ahead and install it... you deserve all you get.

    Writing Trojans in RealBasic? Since when did cyber-crims start offering internships?

    1. Anonymous Coward


      My thoughts exactly. Just how stupid do you need to be to download a well-known Apple application from some dodgy website rather than from (shot-in-the-dark-thought) the apple website?

      Just HOW STUPID are some people???

      1. Paul 4

        Um Freetards would

        Whilst ranting about how they hate iTunes and how it is all apples fault for chargin to much/forcing you to use iTunes or one of the many other poor arguments.

  8. Anonymous Coward

    But everyone knows Mac's don't get Virus's

    Apples glossy PC Vs Mac adverts told me so...

    1. The Fuzzy Wotnot


      That's 'cos anyone who believes that tripe deserves all they get! Those Apple ads are an utter pile of puppy-poop. Every computer, EVERY COMPUTER, has some point of entry that the scumbags can get in. If you believe what Lord Jobs and his acolytes say and take it as gospel, you are a fool!

      If you buy a diesel car you make sure you always go for the black or yellow pumps, you stick "green" pump in it and it's going to go a bit funny! Same with PCs, you buy it and expect it to look after itself as Lord Jobs says it will, you will be in a world of pain in no time!

      Oh and I own four Macs by the way, it's still the best O/S I have used in 25 years of IT, I have just been burned too many times by IT equipment to take PR bullshit as written!

    2. oddie
      Gates Halo

      technically smechnically

      Technically I guess it isn't a virus, but then again, I can't remember the last time that I actually saw a real live Wintel virus (these internet days you'd be surprised how few miscreants try to do naughty things to my bootsector :)

      Doesn't appear particularly dangerous either... I guess the mactards should start being worried when it isn't news anymore whenever a random useless Mactel trojan pops up.

    3. Anonymous Coward

      The days of bad English has went...

      "But everyone knows Mac's don't get Virus's"...? Mac's what? Virus's what?

      And by the way, this is a trojan. not a virus. Show me an actual OS X virus... I thank you.

    4. Anonymous Coward
      Thumb Down


      > But everyone knows Mac's don't get Virus's

      They don't. This is a trojan. Maybe you should learn the difference, and actually read the article next time.


      1. Anonymous Coward


        "And by the way, this is a trojan. not a virus. Show me an actual OS X virus... I thank you."


        "hey don't. This is a trojan. Maybe you should learn the difference, and actually read the article next time."

        That's the best you can come up with? Arguing about semantics? Ye-gods. You must be big time fanboys...

        1. Anonymous Coward

          RE: What?

          Viruses != trojans (although they are both nasty!)

          That's not semantics, it's like saying "bread != cheese (although you can eat them both)"

    5. Frank Bough

      Used Macs since 1989

      Never had a virus, trojan or other exploit. Is that safe enough for you?

      1. Anonymous Coward
        Anonymous Coward

        I refer M'learned fanboi to

        The answer I give any user who says this,

        'That you know of'.

        Sure it's less likely on a Mac but it's not unheard of and I've been clening Macs for years after idiot users managed to catch nasties.

  9. Alain Moran

    Excellent :D

    I just love the fact that a new trojan for the mac is 'news' whereas a new trojan for windows is not :D

  10. HFoster

    I know the article says only low threat level, but...

    I'd like to add a heartfelt 'LOL' to the fray.


  11. Lionel Baden

    where can i download this ??

    I could do with this on USB stick

    1. Anonymous Coward


      You've got all you need to build it yourself. It is EASY to create a program that does something the user wouldn't want it to if you can trick the user into (a) Downloading and installing the thing (b) Dutifully typing their admin password when prompted.

      This isn't even worthy of the term "hack". The sad fact is, this is simple - the fact is that Mac users don't do "b" half as readily as PC users believe. Just because someone is using a Mac don't think they are stupid, or that they only bought it "because it was shiny". Maybe they know a little more about computers than you think - maybe, just maybe they know more than you do.

      1. Lionel Baden

        I probably shouldnt bother

        but ....

        here this might help

      2. Anonymous Coward

        In that case PCs are safe

        Since Vista and 7 both ask before installing anything. Oh but know, I bet that is diffrent in your world.

        1. Anonymous Coward

          RE: In that case PCs are safe

          "Since Vista and 7 both ask before installing anything."

          I can think of several real-world examples of programs that do nasty things on Vista without asking for an admin password...

    2. Anonymous Coward

      @Lionel Baden

      You'll also need an admin password for every machine you plan to infect.

      (or get the owner to install it and then hope that they don't run "Software Update" before they try to launch the app - they're bound to twig that it hasn't updated...)

      1. Lionel Baden
        Thumb Up

        thats ok

        an earlier poster already gave the game away :)


        and on high security machines


  12. Graham Dresch

    They still don't

    Macs still don't get self installing viruses or any other kind of nastiness that is so common on Windows.

    The only way to get malware of any kind on a Mac is to manually install it, and enter your Admin password.

    I have no sympathy for idiot users, but Macs are still inherently secure.

    1. N2


      Most Windows PCs outside of a well managed corporate environment seem stuffed with all sorts of garbage.

    2. Wolf 1

      I like a user who admits they are an idiot--in print!

      "I have no sympathy for idiot users, but Macs are still inherently secure."

      Then you're saying you have no sympathy for *yourself*, because macs are not secure--they're simply not attacked as much.

      Look at Pwn to Own. Macs have fallen 3 years in a row, usually first.

      Of course, to be fair, perhaps you aren't using the dictionary defintion of secure: "free from danger or risk". Well, I suppose in that sense a baby in a rich man's house is more secure than a baby in a war zone--unless the baby in the war zone is in a Bolo of course...

      But if you mean "impregnable: immune to attack; incapable of being tampered with" then you are living in a dream world, as Pwn to Own clearly demonstrated.

      So which meaning of secure are you using? Think carefully now...

      1. Anonymous Coward

        RE: I like a user who admits they are an idiot--in print!

        Obviously, no system is inpregnible to attack.

        Windows certainly isn't.

        Even ATMs are NOT inpregnible to attack. A colleague of mine once had a job in a team trying to hack them (on behalf of the manufacturers).

        Using a robotic arm, a gun, an xray scanner, a machine that could freeze things to about 20 degrees above absolute zero and a few other pieces of high tech equipment, they managed to crack the encryption. They needed to see the motherboard schematics first though.

        OSX may not be quite that secure but ask yourself this: why is the %age of viruses, trojans and malware on Windows so much higher than their market share would predict?

        1. Rattus Rattus


          Hang on, now I'm curious. The freezing and X-raying I can understand, but what did they need to use a gun on it for?

  13. pan2008
    Jobs Horns

    mac no virus??

    Apple will start getting more viruses once they become popular. Being in denial is the worrying thing, oh sh*t Mr Jobs would demand $100 for his own antivirus software next year, or get some commission anyway. I get mine for free on my pc, thank you!!

    1. Anonymous Coward
      Anonymous Coward

      'Once they become popular'?

      They always have been popular, at least in my house they are.

      1. Lionel Baden


        He means as in over a 5% total share of computers in use Fnaar....

        (random arbitary figure not reseacrhced in the slightest and really dont give a mokeys wether i am ~10% out, live with it its a message not a statement)

        Just because there are alot of fanbois shouting and making much noise, does not mean they are the majority.

        1. Anonymous Coward
          Anonymous Coward

          I was always told

          Empty vessels make the most noise.

          1. Anonymous Coward

            RE: I was always told

            Yes, I've noticed that it's mostly been Winblows fanbois saying "ha ha, you too" without really understanding what's going on!

        2. Sean Timarco Baggaley

          Doesn't mean you're right either.

          The "Windows has [INSERT VAST PERCENTAGE HERE] of the global PC market" is misleading. Apple don't give a shit about selling to corporates, so the vast majority of those Windows boxes are sitting unused in office buildings for the majority of each 24-hour day (and they get even less use over weekends). It also fails to take into account *notebooks*, which are often not included in these statistics.

          Apple sell to the mid-range and high-end CONSUMER sectors. In that sector, Apple's market share is a bloody sight higher than you seem to think it is. Ask any developer who targets both platforms what the revenue split is between OS X and Windows sales. It's usually around 60:40 in favour of Windows, but a 50:50 split isn't unheard-of.

          So no, Apple computers aren't a majority in the *overall* market, but then, FIAT has a tiny percentage of the *overall* road vehicle market too. Doesn't mean nobody owns a FIAT though.

          1. John Bailey


            That is an impressive abuse of statistics.

        3. Anonymous Coward

          @Lionel Baden

          "He means as in over a 5% total share of computers in use Fnaar...."

          It's 8%.

          ...and do they have 8% of the viruses, malware and trojans that are loose in the wild..?

          So your point is?

          1. Anonymous Coward
            Jobs Horns

            Here's the point:

            If I'm a virus/trojan writer and I want to hit the most boxes I can, will I waste my time by writing a virus/trojan that will hit 5/6% of the market or will I go for the big MS shaped target? Until Macs reach a higher market share (and their market share is ever increasing) they will continue to be neglected by the vast majority of malware writers. Once Apple gobble up a bit more of the market you might just find that Macs aren't the "secure" boxes the fanbois keep telling themselves they are.

            Oh and I think you'll probably find that those Windoze boxes just sitting in offices doing nothing for the majority of the 24 hour day will be doing a hell of a lot more in the 7-9 hours they are active than your average home PC will once the punter gets home from work.

            Btw, I'm a Mac user, I just don't like this, "Macs are secure," bullshit. No computer system is secure, Macs are just targeted less.

    2. Volker Hett

      yep, that's what I've been told

      for close to 10 years now, but I can remember virii on OS 8 and 9 :)

      A mac is hackable, probably more than a Win7 box with all the doors locked, but outside of hacking contests I've never encountered any hacks on a mac. Why? I don't know, it could send as much spam as any windows box, or take part in a denial of service attack and so on. Either black hats are stupid or lazy :)

  14. Pavlovs well trained dog

    I'm a MacTard (or whatever the appropriate title du jour would be)

    but I'm also a reasonably bright aware human being (cue comments about my debatable brightness if using a mac etc etc blah blah)

    but I've been running AV on all macs in my household for quite some time.

    It picks up loads of crapware too - mostly sent by my windows using friends

    1. Desktop Mobile


      "It picks up loads of crapware too - mostly sent by my windows using friends"

      Of course they would come from your windows using friends as probability alone dictates that with windows market share the majority of your friends will use windows.

      Buying a Mac will not increase there IT literacy or IQ, as & when Macs get to 50% market share of the domestic market I guess 50% of your email with the usual unfunny and bandwidth wasting dross will come from a machine built by an Appleonian.

  15. Stu Wilson

    this title is misleading

    yet another example of sensationalsim over real world "truth"

    As other posters have said, this isn't the first virus/trojan for MacOSX, but since the infection vector is virtually nil, and unless the fake program keeps itself up to date, the app will get overwritten the next time an iWork update is released.

    Most of the people I know run Little Snitch, something like this won't get past it either.

    Pretty shoddy, should have really gone for a much less obvious app like AdobeUpdater :p

    @AC #5 it's not a virus, fw

  16. Anonymous Coward
    Anonymous Coward


    There is a problem with the fanboi response that "you have to do something to install this, so it isn't a problem". The problem is that users are users the world over. It matters not what OS they use most users are dumb and install stuff that they shouldn't.

    Are you sure you want to do this? Yes.

    Are you really sure? Yes.

    Please enter your password to continue. P455w0rd (and that's being generous, most lusers go for a much simpler password).


    I saw a users get one of the "reported attack site" messages on their browser the other day. "God, I hate that!" They said and then clicked through it. The majority of users just think this stuff is there to annoy them, they simply don't understand that it's there to protect them from the nasties of the net.

    Equally I had an EU ask for access to a site that was being blocked by the web filter. I checked the website and pointed out that it was a phishing site. They replied that they still wanted it opening because they were following a link in an email from their bank. What can be done with these people?

    1. Volker Hett

      good argument

      so there seems to be a difference between the typical Mac and the typical Windows user :)

      Could well be, from 9 Mac users I know 5 work in IT and 1 in graphics and 2 in movie production and just 1 as a secretary.

    2. Jeremy Chappell


      Don't tell them Mac's admin password. (There that was easy)

  17. Hani Jabr

    Intego and Sophos respond instantly

    "Anti-virus firms including Intego and Sophos have already added detection for the Trojan "

    Bringing the total count of viruses and trojans they detect to, um, one...

    1. Anonymous Coward
      Gates Horns

      RE: Intego and Sophos respond instantly

      "Bringing the total count of viruses and trojans they detect to, um, one..."

      ...compared to about one a day on certain other "operating systems"

  18. Anonymous Coward


    This is a lie! Everyone knos dat macs r supa special oresum and neva get trojins or virisis eva.

    macs r perfectit in evri way.

    kthanxbi! LOL

    1. Anonymous Coward

      Please, please tell me...

      ..that kiddies don't really write like this now. It was bad enough when they stopped using full stops and capital letters, but this...please, just shoot me.

      Yes, I know it's a joke - I just despair that I'll not be able to communicate with my daughter by a certain age (hers and mine) because she writes in some l33t/txt hybrid language...

      Pah, humbug.

  19. Tom 7

    Still not a virus

    no - the machine is so infected with OSX there's not room for another.

    I have a computer for me - not to defend Apple 24/7

    1. Anonymous Coward

      RE: Still not a virus

      "o - the machine is so infected with OSX there's not room for another."

      Unless you're using some form of *nix then the chances are more viruses are released into the wild *each day* than have ever existed for OSX...

  20. Martin Chandler

    This isn't a virus, it's a feature!

    1 Jobsonians 10:13 Fear not for he shall not test you more than ye can bare!

    1. Anonymous Coward


      Is he testing us with pr0n?

  21. Seanie Ryan


    trojan ≠ virus

    cant infect me unless i actually allow it by installing it with my password.

    i wonder, are Mac users really just more intelligent than windows users and know that clicking 14 confirmation boxes in a row without reading them is just dumb.

    Maybe that the new argument in future. OsX, Linux, Windows are all equally secure, just the users of windows are thicker. i'd buy that. !!!! ;-)

    and cue the hounds...

  22. Anonymous Coward

    still not interested

    first reported in 2004 and still not patched - Apple are shit

    1. Anonymous Coward
      Anonymous Coward

      RE: still not interested

      So... you've heard of what - 1 trojan on OSX.

      Comparisons are needed.

      How many viruses, trojans and other malware are released for Winblows every day.

      (and has this really existed since 2004? I find it hard to believe!)

  23. Ivan Headache

    I wonder who would download this

    seeing that it is allegedly 'iPhoto'.

    As iPhoto is already installed on every Mac and all the updates come via Apple's software update system, I don't see any need for downloading it in the first place.

    1. Anonymous Coward


      Odd you say that, mine and my old man's did come with it, but when I installed 10.6 from scratch, iPhoto had magically vanished. So it only seems to come as a freebie when with the supplied O/S, the upgrade O/S disk, even though it can be installed from scratch, doesn't have some of the apps, you have buy i(have no)Life to get it again I think, or do a full path upgrade from your supplied disks.

      Hence why some muppets may be downloading this crud, they had their new O/S installed, iphoto is missing and they have decided to downloaded it, or what they think is iPhoto.

      1. Fat Jez

        try looking on the Apps disc that comes with every mac

        "Odd you say that, mine and my old man's did come with it, but when I installed 10.6 from scratch, iPhoto had magically vanished."

        iPhoto is not on the OSX install disc, it comes on the second DVD that you should have received with your Mac.

    2. Hani Jabr

      iPhoto comes with every Mac, but...

      When a major new version is released you don't automatically get it for free. Sometimes you have to pay a crippling £60-70 for it and everything else that comes with iLife. So yes, some people may in fact be ignorant enough to download and install it.

      But a virus this does not make...

    3. jubtastic1


      Mostly Hackintosh owners, seeing as iPhoto isn't included in Retail OS X.

  24. Anonymous Coward

    No virus on a Mac

    Although I own a Mac I will repeatedly say I am no fanboy. My reasons are legit :P

    As far as I know there is no virus for the Mac. There are trojans but they are different.

    Virus - Self replicating/spreading no user input needed. e.g. "conficker"

    Trojan - You need to be stupid

    I will comfortably say myself that Macs don't get viruses or trojans. Although you can install a trojan yourself. The person STUPID enough to ever get this so called trojan on their Unix computer damn well deserves it for being STUPID enough to enter their password to install it. They also should think about never touching any piece of technology ever again until attending something called common sense for fear that it won't bend to their will. (read: break the damn thing)

    And if only people RTFM sometimes

    1. Anonymous Coward


      No need to worry. Although there ARE stupid Mac users. We've almost finished ensuring that 99% of the stupidest members of society all use Windows (and claim to like it!) Ha ha ha!

  25. Anonymous Coward

    I run i series for internet service

    those who know what that means get it. If you don't you won't.

  26. folterung

    Seriously, enough 'fanboi' already

    Authors: I know you have come to love the word fanboi, as a reference to Mac users, but really...does it have to appear in 80% of the Apple related articles?

    Here's the thing: the word brings no technical or descriptive value to your writing. It has only one connotation, and that's a negative one, implying that somehow people are less intelligent or less capable of rational thought because they happen to like Apple products.

    I don't necessarily believe that's your position as a technical news organization, but that's the impression you get when you lead off with a descriptor whose only purpose is to trivialize the opinion of an entire group of people - people who bear nothing in common except their choice of computer. Does that sound like good logic - or good reporting?

    1. Bear Features


      It's much than just 'choice of computer'. The typical 'fanboi' is seemingly unable to say anything negative, ever, about their pretty and locked down toys. btw, I have Macbook Pro but despise Apple's advertising that created the stupid 'church'.

  27. Anonymous Coward


    Interesting set of responses, mostly predictable.

    The main theme is that you have to be an idiot to let this compromise your system with the implication that trojans / virii etc on Windows will attack you anyway. I beg to differ. All malware has an element of user error (loathe to call it stupidity when a teenager trades a bit of security for boobies...) and no operating system in general use is "inherently secure." (we can debate what that even means for hour after hour...)

    I have had a windows based PC (obv different flavours) for the last 15 years and never to this date has one been infected with any malware other than a tracking cookie (that I know of, obviously).

    I have had a *nix based PC for the same length of time (again many, many distros) and this has never been infected with malware.

    I have never owned a Mac but I assume this would be the same.

    This is not because one OS is more secure than the other, but as a sensible user I take precautions. I dont automatically assume my [mac/wintel/linux] computer is secure and I dont trust things I cant verify. Look at the recent black hat challenge - no one attempts the basic OSs when patched because its not worth the effort. Attack the applications.

    I see that there are two other strands of defence Mac users have here: "Mac users are clever enough to not click on boxes" cough*bullshit*cough and "Trojan isnt a virus so nyeer, nyer."

    Well if you seriously think either are valid, you've already failed.

    1. Anonymous Coward

      RE: Fanbois

      'I see that there are two other strands of defence Mac users have here: "Mac users are clever enough to not click on boxes" cough*bullshit*cough and "Trojan isnt a virus so nyeer, nyer."'

      I was going to go for the third strand of defence.

      No known OSX virii in the wild - one trojan and it makes big news. This happens EVERY DAY on Windows and hardly raises an eyebrow...

      Is that because trojans and malware are just a fact of life on Windows...?

  28. ScifiterX


    Considering one can essentially disprove security through obscurity by comparing Mac, Linux, & Windows marketshare and malware statistics, it amuses me how often this argument is used. There is simply no proportional link between marketshare and malware direct or exponential.

    That said have no protection is stupid. So is getting software from non trusted sources. So is thinking ANY OS or anti-malware software can prevent a virus from infecting an idiot. Most Mac and PC power users run at least some sort of rudimentary protection. In this case, it's also a pirated fake piece of software which poses as a low cost piece of software that comes with new systems.

    In my case I've have few malware infections on my Windows computers and if you count Norton, one on my Mac.

    1. Anonymous Coward
      Anonymous Coward


      "There is simply no proportional link between marketshare and malware direct or exponential."

      Someone sensible at last!

      Can you please come around and tell my sister? She's still telling me that since Microsoft are the largest OS maker, theirs must be the safest...

    2. Fat Jez

      wrong term used?

      "Considering one can essentially disprove security through obscurity"

      [pedantic] Security through obscurity is a term that applies to closed source environments (e.g. Windows). I think you mean security through minority, where the market share isn't worth targetting with malware. [/pedantic]

  29. Matt Bradley

    Sounds REALLY dangerous

    "While Intego has not found any instances of Macs being infected by this in the wild, the fact that this malware is being distributed on a number of forums shows that it will be accessible to a large number of malicious users who may attempt to use it to attack Macs. "

    So. IF somebody can find a way to get Mac OS-X to install this without user interaction, we might have problem.

    Okay. Thanks for letting me know.

    1. Kevin Smith

      re: Sounds REALLY dangerous

      Another smug fanboi completely missing the point, whcih is that the vast majority of successful malware attacks on any platform are only successful as a direct result of user interaction.

      1. Matt Bradley


        That explains why there's so many cases of this infection in the wild then.

        Oh no, wait, that's not right is it...

        Granted, user interaction is a sizeable attack vector, but usually that comes in an executable file disguised as something else. On OS-X nobody has yet been able to disguise an installer as anything other than an installer so far, so you'd have to be CATASTROPHICALLY stupid to install this file.

        This exploit is nothing more than proof of concept as yet: it doesn't have an attack vector yet, sp it is NOT a virus, or even a trojan!

  30. Rab Sssss


    Without questin some the absolute stupidest dipshits I have had to deal with own macs far to many "macs don't break, they just work, it can be my computer its a MAC!!!!" etc.

    Granted more dim windows users, but the mac fuckwits tend to be really fucking stupid.

    Mac fuckwits!=not all mac users...

  31. Jean-Paul


    So this will happen to users who download an illegal copy of software which is already installed on every mac. And yes is included on your discs when you reinstall. And even if you can't find that disc apple will send you a replacement for a nominal fee. I'd like to think that the majority of people run normal legal software.

    Then the small group that doesn't, well if you do run illegal software you really should know what you are doing. And having little snitch installed for

    that group is absolutely essential to stop apps phoning home. So yes I do think it is a valid point that you have to be stupid to keep running this after you installed it. And for incoming connections there is the built in firewall which is switched on by default.

    But what's makes me most skeptical is that iirc intego was part of a macheist even which included a one year subscription. That subscription is running out next month. A scare might get quite a few customers convert to becomming a paid customer for another year ;-) cynical moi no!

    Needing an antivirus app to detect and remove? Come on just drag it to the trash.

  32. Waffles666

    What viruses?

    I run AVG Free and Spy Bot Search and Destroy Free that update every week and run a scan every week. I haven't picked up a virus in 5 years and the only time I do get warnings is if I download some dodgy key gen or game crack and then the programs wont allow me to install it without going past a "THIS IS A VIRUS" screen. Now this is with both XP and Windows 7 so my question is how many people here have been compromised by a real virus and not just a trojan in the last 5 years? Seems to me like virus threats are just something apple uses to scare people into buying their expensive rubbish.

  33. CaptainBanjax
    Paris Hilton

    All very generic arguments...

    But have we all forgotten about Elk Cloner?

    Apple have an accolade Microsoft will never have...first known virus in the wild.

    Paris Hilton because she knows that using an Apple II was risky back in the day.

This topic is closed for new posts.