New Mac Trojan in Pirated Photoshop
Posted by: Stephen Wildstrom on January 26, 2009
The last few days have delivered two clear computer security messages that shouldn’t have been needed: Downloading pirated software is very, very dangerous as well as wrong and don’t assume Macs are immune to malware attacks.
Itego, the security software company that reported a nasty trojan in copies of iWork ‘09 available through BitTorrent now warns that a variant, OSX.Trojan.iServices.B, has turned up in pirated copies of Adboe Photoshop CS4
The trojan is actually hidden in the application that defeats Adobe's license authentication procedures and allows the cracked copy to be run. Like the iWork version, it creates a back door to the infected computer, which presumably would be used to control the Mac as part of a botnet.
In one sense, this new trojan may been more dangerous than the original. Even if your ethical sense is shaky, risking your computer to save $70 on iLife is dumb. The $500 retail price for a full version of Photoshop CS4 offers much greater temptation.
It's also looking like an increasingly good idea for Mac owners to run anti-malware software on their systems. Mac attacks have moved from proof-of-concept pranks to code with dangerous payloads. I expect such attacks to start showing up as drive-by downloads on Mac-centric Web sites. The lack of social engineering protections in the Safari browser, compared with Firefox or Internet Explorer, along with a general sense of complacency, may leave Mac users more vulnerable.