Old Windows Trojan Being Re-Worked for Mac OS X

Now before any Mac readers start going off about how Macs don’t get viruses or trojans let’s just cut you off before you start as this report from Sophos is of an early version that they had been sent. As for the argument that Mac doesn’t get these nasty little presents, well, those were the good old days.

This new (old) trojan, according to Sophos, is a variant of the old backdoor trojan that has haunted Windows users and goes by the name of: darkComet, a Remote Access Trojan (RAT). The creator of the version targeted for OS X is apparently calling his version Blackhole RAT.

From the blog post at Sophos:

The Mac OS X version is very basic and there appears to be a mix of German and English in the user interface. Its functions include:

* Placing text files on the desktop
* Sending a restart, shutdown or sleep command
* Running arbitrary shell commands
* Placing a full screen window with a message that only allows you to click reboot
* Sending URLs to the client to open a website
* Popping up a fake “Administrator Password” window to phish the target

[Cross-posted at Winextra]

RELATED ARTICLE:  Apple announces iOS 9, contextually aware and Proactive Siri | #WWDC15

Steven Hodson

Steven Hodson is the Media Editor for SiliconANGLE, and is a long time computer and Internet watcher having seen both develop for the cutting edge days of the XT right through to the mobile revolution. He has also spent many years writing about our world's fascination with technology and social media often with a critical eye, both on his own for sites like Mashable and The Inquistr. He currently spends his time recovering from tech and social media overload by hanging out with, and writing about, geeks and the things they love.

SIGN UP FOR THE SiliconANGLE NEWSLETTER!

Join our mailing list to receive the latest news and updates from our team.

Submit a Comment

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <s> <strike> <strong>

Share This