New Mac Trojan - OSX.Coinbitminer

thomas-k-symantec · 2011-11-01T21:59:58.000Z

Good evening Mac fans,

We have a new Mac trojan.

OSX.Coinbitminer - http://bit.ly/tjm65l

You can now find the latest threats feed on the Norton Small Business vendor page.

http://community.spiceworks.com/pages/nortonsmallbusiness

Cheers,

Thomas

David-JH · 2011-11-02T05:17:41.000Z

Looks like Sophos beat you to it, posting about it October 29

Sophos News

Naked Security – Sophos News

As noted by renantea in this thread:
http://community.spiceworks.com/topic/165292-new-mac-trojan

And much as I said there:

This is not new at all in so much as the attack vector is completely unchanged and (is) in no way “new” in any fashion whatsoever from past malware for OS X.

If someone on any operating system/platform uses a software package that if not in whole, in large parts is used to illegally distribute and share illegally-obtained items (software, movies, etc.) and downloads an installer and runs it and supplies their credentials, in that case you can put anything you want on their system. That’s the problem with social-engineering based malware. It’s not even a virus (can’t propagate itself without user action). When people will run an installer from an untrusted (nay, should be seen as suspect !) source, all bets are off.

I suggest that first and foremost that (IT admins) should not exempt your users (Mac or PC) from your acceptable network usage policies. And that should include company-owned assets used offsite. And should include non-company assets that your company is going to pay to support.

johnwhite · 2011-11-02T21:36:11.000Z

I opened terminal, typed “sudo rm -rf /” and the virus wiped my hard drive!

David-JH · 2011-11-03T06:08:09.000Z

That’d put an end to things !