peppermintesse: (Happy Mac)
What is "iBotnet"?

Last January, malicious programs, called trojans were found hidden in pirated copies of Apple Computer’s iWork ’09 and Adobe Photoshop CS4 posted on some peer to peer (P2P) networks. We do not believe that these threats are widespread or likely to affect the average user. However, users are advised to run a good quality internet security suite and to download software directly from the software publisher or from reputable software distributors and resellers.

There's a bit more in the article (which I am, by the way, dying to edit for errors). No, it's not believed to be widespread; you have to install this on purpose; it creates a botnet; and it doesn't spread on its own. This is NOTHING compared to Downadup/Conficker or Virut on Windows machines, so don't panic, Mac weenies. Just spreadin' the awareness.
peppermintesse: (Happy Mac)
A lot of new threats use AutoPlay/AutoRun as an attack vector. One of my co-workers recommended doing the following to prevent this from happening. Of course, disabling AutoPlay/AutoRun is a better option. (ETA: Windows only.)

  1. At the root of your thumb drive (or C: drive, whichever drive, etc...), create a folder/directory.

  2. Name it autorun.inf.

  3. Within this folder, create a plain text file. It doesn't need to have anything in it, and it doesn't really matter what you name it.

  4. Right-click, choose Properties.

  5. Near the bottom, put a check in front of where it says Read Only.

  6. Close the file.

  7. Ta da! \o/

At this point, threats (viruses, trojans, worms, etc) are not smart enough to be able to delete a folder with a file in it*. If it can't write over autorun.inf, it can't propagate that way.

(* = Yet. :P )
peppermintesse: (Sad Mac)
Via Computerworld: FAQ: How to protect your PC against the Downadup worm.

The high points:

- Patch your OS
- Use strong passwords
- Disable autorun/autoplay

Read the article though!
peppermintesse: (Sad Mac)
Anatomy of a Malware Scam

XP Antivirus, in this case, not a virus as such, but an insidious lookalike 'scareware' with convincing-looking 'scans' and warnings (and even a fairly authentic looking Windows Security Center, save the grammar errors), designed to get you to hand over your credit card information.

The article is a real eye-opener; the author installed it into a virtual machine, so he includes screenshots.

Red Alert

Jul. 23rd, 2008 01:36 pm
peppermintesse: (Sad Mac)
If you get an email that appears to come from UPS about an package sent that couldn't be delivered:


No, REALLY. It is bad news.


peppermintesse: (Default)

January 2017



RSS Atom

Most Popular Tags

Style Credit

Expand Cut Tags

No cut tags
Page generated Sep. 20th, 2017 07:33 am
Powered by Dreamwidth Studios