FTA: "Researchers at Symantec say the Trojan, called OSX.Iservice, hid itself in pirated versions of the Apple application iWork '09 and the Mac
version of Adobe Photoshop CS4 that were shared on a popular peer-to-peer bittorrent network"
Yeah, this type of trojan is about 10 seconds younger than the first pirated software.
Assuming that it asked for superuser escalation as part of the install and the system might be well and truly pwnd. Time to reimage the disk.
This isnt a virus though. A real honest-to-god virus is MUCH harder to write on a *nix box. Userland processes simply are not allowed to modify system files
without manual input on a properly configured/updated system.
The thing is, windows has not traditionally made this distinction. Even now that their newer OS's are trying to enforce it, they have to make such a hash
of things with exceptions to allow legacy code to work that it is pretty much meaningless.
Windows is going to be a joke as far as security goes until the day they actually implement some kind of vmware style sandbox for legacy code, instead of
trying to back-patch support into their libraries.
/geekrant over
version of Adobe Photoshop CS4 that were shared on a popular peer-to-peer bittorrent network"
Yeah, this type of trojan is about 10 seconds younger than the first pirated software.
Assuming that it asked for superuser escalation as part of the install and the system might be well and truly pwnd. Time to reimage the disk.
This isnt a virus though. A real honest-to-god virus is MUCH harder to write on a *nix box. Userland processes simply are not allowed to modify system files
without manual input on a properly configured/updated system.
The thing is, windows has not traditionally made this distinction. Even now that their newer OS's are trying to enforce it, they have to make such a hash
of things with exceptions to allow legacy code to work that it is pretty much meaningless.
Windows is going to be a joke as far as security goes until the day they actually implement some kind of vmware style sandbox for legacy code, instead of
trying to back-patch support into their libraries.
/geekrant over