Mac OS X gets first ever crimeware kit

Mac OS X users are being targeted by the first ever crimeware created for the operating system.

Apple Mac

The first ever crimeware kit targeting Apple's Mac OS X has been spotted, featuring stark similarities to the popular Zeus toolset targeting Windows PCs.

The DIY kit can grab forms from Firefox running on the Apple OS, meaning passwords could be taken, alongside other information the victim types in the browser, Danish security firm CSIS reported.

Consisting of a builder and an admin panel, the kit has been advertised on a number of closed underground forums.

"The kit is being sold under the name Weyland-Yutani BOT and it is the first of its kind to hit the Mac OS platform. Apparently, a dedicated iPad and Linux release are under preparation as well," said Peter Kruse, partner and security specialist at CSIS, in a blog post.

Kruse said the kit only enabled web injects and form grabbing in Firefox at the current time, but warned both Chrome and Safari "will soon follow."

"CSIS finds this crimekit to be quite disturbing news since Mac OS previously to some degree has been spared from the increasing amount of malware which has haunted Windows-based systems for years," he added.

"This could have resulted in a false sense of security that might make Mac OS user especially vulnerable to a sudden and highly sophisticated attack."

Mac issues

Mac users can expect increasing numbers of attacks in the future as hackers look towards a wider range of platforms, according to experts.

Sophos today warned of a poisoned Google SEO attack affecting both Mac and Windows users.

A number of search terms have been targeted, including ones based around global warming and more current topics like Osama bin Laden's death, attempting to lure users into downloading a fake anti-virus program called MacDefender.

Even after infection, the user will be repeatedly bombarded with fake warning messages to encourage them to pay for non-existent threats to be removed, Sophos said.

Featured Resources

How to scale your organisation in the cloud

How to overcome common scaling challenges and choose the right scalable cloud service

Download now

The people factor: A critical ingredient for intelligent communications

How to improve communication within your business

Download now

Future of video conferencing

Optimising video conferencing features to achieve business goals

Download now

Improving cyber security for remote working

13 recommendations for security from any location

Download now

Recommended

Arizona legislators vote against exclusive app store payment systems
business apps

Arizona legislators vote against exclusive app store payment systems

4 Mar 2021
IT security awareness and training firm KnowBe4 acquires MediaPRO
Acquisition

IT security awareness and training firm KnowBe4 acquires MediaPRO

3 Mar 2021
High-risk email security threats increased by 32% last year
phishing

High-risk email security threats increased by 32% last year

3 Mar 2021
The top 12 password-cracking techniques used by hackers
Security

The top 12 password-cracking techniques used by hackers

3 Mar 2021

Most Popular

Star Alliance passenger data stolen in SITA data breach
data breaches

Star Alliance passenger data stolen in SITA data breach

5 Mar 2021
I went shopping at Amazon’s till-less supermarket so that you don’t have to
automation

I went shopping at Amazon’s till-less supermarket so that you don’t have to

5 Mar 2021
How to find RAM speed, size and type
Laptops

How to find RAM speed, size and type

26 Feb 2021