OT: OS X virus info
Longman, Bill
longman at sharplabs.com
Wed Nov 3 16:34:00 MST 2004
>From ESJ:
Apple Worm Emerges
Antivirus vendor Sophos warns of a new worm that affects Macintosh computers
running OS X.
Known both as Opener and Renepo, the worm uses the Bash shell to disable the
Mac's firewall and other security settings, install hacking and
password-sniffing tools, change permissions for key directories to allow
unmitigated access, create its own administrator-level account, and hide its
tracks by deactivating logging.
"This is a shot across the bows rather than a pressing immediate danger to
Mac environments," says Graham Cluley, senior technology consultant at
antivirus vendor Sophos. Still, "the Renepo worm reminds Mac users who may
have felt smug that most viruses target the Microsoft Windows market that
they should be careful not to turn a blind eye to security."
Sophos says the worm hasn't been seen in the wild. Computer Associates, on
the other hand, notes the worm spreads through file-sharing networks. Still,
vulnerability information provider Secunia characterizes the worm as a "very
low risk," its lowest rating for vulnerabilities.
More information about the yellowdog-general
mailing list