• Welcome to OnlyTech Forums
    An online community for the tech enthusiasts!
    Log in or Register
  • If you are an existing member of our DreamDTH forums, please use the same login credentials to login here. Create a new account only if you are not registered at DreamDTH before. If you have trouble logging in, please let us know through the contact form.

Mac OS update detects, deletes MacDefender 'scareware'

Napster

Elite
Member
Joined
7 Apr 2011
Messages
668
Reaction score
66
Apple makes good on last week's promise, adds scareware scrubber to Snow Leopard
Apple today released an update for Snow Leopard that warns users that they've downloaded fake Mac security software and claims to scrub machines already infected with the so-called "scareware."

Chet Wisniewski, a security researcher with U.K.-based Sophos, confirmed that the update alerts users when they try to download any of the bogus MacDefender antivirus software.

Wisniewski had not yet tested the malware cleaning functionality of the update, but was confident that it would work.

"It's reasonably trivial to remove MacDefender," said Wisniewski, using the name for a growing family of scareware. "It's not burying itself in the system, not compared to some of some of the crap that we see on Windows."Tuesday's update, labeled 2011-003, adds a new definition to the rudimentary antivirus detection engine embedded in Mac OS X 10.6, aka Snow Leopard, and also increases the frequency with which the operating system checks for new definitions to daily.

Before today, Apple had added only five detection signatures to the antivirus component of Snow Leopard.

If a user downloads a MacDefender variant using Safari, iChat or Mail -- the Mac's native email client -- Snow Leopard posts an on-screen notice that reads, "filename will damage your computer. You should move it to the Trash."

The default button of "Move to Trash" will dump the malware into the bin.
 
Top Bottom