Mac OS X: a Trojan in the pirated versions of iWork’09
We could talk about karma, or beautiful sayings like “This is believed to be taken”, but the purpose is the same: Mac users who have downloaded some pirated copies of iWork’09 productivity suite have been infected by a horse of Troy.
The Trojan software center
Security is definitely not a part of Koh Lanta and-no “totem of immunity can not be won. At least 20 000 Mac owners have indeed said that it would be interesting to get the latest version of Apple’s office suite, but without paying the 79 dollars / euros requested. So they went to pick up their favorite tools P2P and recovered a pirate copy. Unfortunately, the copy contained a Trojan, named for the occasion by the publisher OSX.Trojan.iServices.A security Intego.
The ugly horse becomes comfortable in the Mac OS X at the same time as the software itself. It is in fact present in a package named iWorkServices.pkg itself into the body later. So when the user allows the application to settle, the Trojan can jump for joy and start to undermine its work.
It begins by defining it as a startup item and will be relaunched at each switch on the machine. It has all the necessary permissions (reading, writing and execution) to operate in “root”, and can connect to one or more remote servers to communicate with a character obviously malicious, or to download other components to infect machine. More »
Tags: iWork'09, Mac Os X, Trojan