First Scareware For the Mac 301
I Don't Believe in Imaginary Property sends us news from F-Secure of what they claim is the first rogue cleaning tool for the Mac. MacSweeper is a Mac version of Cleanator, hosted from a colo somewhere in the Ukraine. The article points out that the company's About page is lifted verbatim from Symantec's site. With the Mac's market share closing in on double digits, perhaps it's not surprising to see the platform targeted with crapware as PCs have been for years. The F-Secure author adds as a footnote that a journalist said to him something you don't hear every day: "I visited the macsweeper.com website. I know I probably shouldn't have but I used a Windows PC so I knew I wouldn't get infected."
Re:the shit hits the fan! (Score:5, Informative)
Re:Isn't any "cleaning tool" rogue on a mac? (Score:3, Informative)
Re:the shit hits the fan! (Score:5, Informative)
Or heck, just put it on the desktop where the user can click it. No special permissions needed. Most
Re:Yeah and moon is made from.. (Score:3, Informative)
What's wrong with /.? (Score:1, Informative)
Re:Yeah and moon is made from.. (Score:5, Informative)
Idiocy can and will spread happily across platform boundaries. It really does not matter what OS you are using. And this article proves it. It's just that until now Windows was losing by the weight of sheer numbers. It has more vulnerabilities, sure. But those are irrelevant to the people who make big $$$ compromising machines. They simply don't need them.
Contact Us page changed already (Score:5, Informative)
Re:the shit hits the fan! (Score:3, Informative)
With some more thought I can probably come up with a pile more.
Re:Hi i'm MacSweeper Developer (Score:5, Informative)
Oh, and you mis-spelled "purchase" in two methods in MacSweeperDaemon.
The binaries have references to KIVViSoftware throughout them -- you wouldn't happen to be one and the same with these guys [kivvisoftware.com], would you?
Disclaimer: I didn't find anything blatantly malicious -- but I only took a quick look. Given the folders that it tinkers around with, any bugs could do some damage to your Mac, so be careful.
Re:Oh no! (Score:3, Informative)
1 Mac OS X Server, configured with all users in Open Directory, and policy to lock out users from system preference panes they have no business being in
1 FileWave server for application deployment and file integrity checking, obtainable from www.filewave.com (note, this will cost money, but will pay for itself the first time you don't have to reinstall an application, because whatever file the user just fucked up just got checksum'd and rewritten)
x users NOT running as a local administrators of the machine
1 unlimited license of Apple Remote Desktop, so that you can remote control / observe, execute code, get system reports, etc.
Mix ingredients together, bake at 350 (or 177 C) for 20 minutes.