How to avoid or remove Mac Defender malware
Apple today (5/25) acknowledged the widespread “Mac Defender” malware attack, and posted instructions on how to avoid infection as well as steps to take if already infected. In addition, Apple reminds users that official software from Apple will never be distributed in the fashion spoofed by these ne’er do wells — some of which attempt to convince users that their wares are official Apple product.
Apple Official: How to avoid or remove Mac Defender malware.
Creative Goose stands ready to assist any customer affected by these attacks as well.
Filed under Apple Industry News | Comment (0)Mac Malware Threat: May 18 update
Some of you will have been aware that there is a significant Mac “Malware” — that is to say, Malicious Software — on the loose. It has been most widely distributed by Google Images searches, which may have simmered down by now as I believe Google has taken appropriate steps, but it can attack from just about any web site that has been hacked to host the infection, and reports of infections are still widespread.
This article quotes an Apple support employee who offers some very significant insights. That being said, in my opinion the reporting here is horribly flawed: the author made no attempt to cross-reference the information obtained, did no research beyond a single-source interview, and on top of that the interview is anonymized (to protect the Apple employee). Together, these factors would have yielded a failing grade for the article in my junior college journalism class of yesteryear; the craft of journalism has suffered since then. Be that as it may, Mac users would do well to be aware of this threat.
The takeaways are these:
1) do NOT believe any WEB BASED alert that indicates that you have a virus or other infection. The ONLY alert you should believe to this effect is one from a real anti-virus program that you intentionally installed, and is maintained.
2) Mac Defender is BOGUS. ”Apple Security” is BOGUS. If you get solicited on the Internet for either of these, they can be VERY persistent, downloading even if you hit “Cancel.” In some cases, attempting to get away from the bogus infected site can cause “unsavory images” (I think they mean porn) to appear on your screen, as supposed evidence of the infection.
If you get hit with such a site, force-quit the browser (Safari or FireFox) by choosing “Force Quit…” under the Apple menu. This will get you away from the malware, and any naughty pictures it might load.
3) If the software is downloaded, it may (depending on your system settings) attempt an auto-install. If it does, just quit the installer (and throw the download away out of your downloads folder). If you click through the installer it will ask for your Admin password. DON’T GIVE IT THE PASSWORD and it cannot do any harm.
4) Some versions of this thing (there are quite a few already, all based on the same scheme) attempt to extract your credit card info by having you attempt to “purchase” the software. Apparently, after you put in your card information, the server will “decline” the card and encourage you to try another — a clever way to steal multiple credit cards from you. IF THIS HAPPENED TO YOU, ASSUME YOU HAVE BEEN ROBBED and IMMEDIATELY call your bank(s) and alert them. Like, right now.
5) If you installed any version of this thing, please call me for assistance in removing it. Because there are many versions of it out there, there is some possibility that other harm could come of such an infection. Please minimize your use of the computer, and call me right away at 415 479 2931. I’ll take care of you. If you’re a do-it-yourselfer, start with this article for info on how to remove it. Please understand that this is not a complete solution, however.
Finally, if anyone reading this can point me to a reproducible way to encounter this Malware, I’d be appreciative as I haven’t been able to play with it myself yet.
Filed under Creative Goose News, Uncategorized | Comments (2)Mac Malware Threat, bogus “Apple Web Security” warning. Read This!
Dear readers, please be aware that as of Monday morning 9th of May, the “MacSecurity” variant of a Malware hoax is picking up steam, with Google Images searches resulting in an attempted forced download of the bad software, which poses as a protection against bad software. If you see a message saying you have XX number of trojans, it is a LIE.
Also, apparently even if you hit “cancel” on the bogus warning, it downloads anyway. If it does download on your machine, immediately throw it away. If you want to prevent it from downloading, force-quit the web browser by going under the Apple menu and choosing Force Quit, and then force Safari or Firefox to quit.
If you’ve been compromised, call me and I’ll help you out of it. Read more on my FaceBook page here:
Filed under Apple Industry News | Comment (1)Bogus MacDefender malware campaign targets Macs using Google Images
Do NOT, under ANY circumstances, install any version of “MacDefender.” It is MALWARE, masquerading as protection against Malware. If you have already installed it, please call me to make an appointment for me to come clean up the mess.
Bogus MacDefender malware campaign targets Macs using Google Images.
Filed under Creative Goose News | Comment (0)