Beware fake Snow Leopard sites

People eager to get a copy of the latest version of the Mac operating system, Snow Leopard, should be wary of sites offering free copies because they are likely to get some nasty malware instead, according to antivirus company Trend Micro.

Trend Micro said in a blog posting on Wednesday that it had discovered several fake Snow Leopard download sites that serve up a DNS (domain name system) changer Trojan dubbed OSX_JAHLAV.K instead.

The Trojan alters the DNS configuration and includes two additional IP addresses in its DSN server, the blog states. Users can then be redirected to phishing sites, some of which are reportedly hosting rogue antivirus software called FAKEAV, Trend Micro said.

Snow Leopard is due to be released to the public on Friday. (See CNET review.) Mac users should get Snow Leopard directly from Apple, Trend Micro said.

[CupertinoBill]

Anyone too cheap to pay $29 deserves malware. Cheeses folks.

[boy444]

AMEN

[Random_Walk]

No kidding...

[ddesy]

Maybe so, but don't forget, that isn't $29 for all of us. Those of us running 10.4 need to spend over $150.

[Magallanes]

but you can save $29 AND avoid to have a malware.<br /><br />Double epic win.

[darthstupid]

@ddsesy:<br /><br />So you are saying the malware is worth the cost? Not following your logic...

[doobz94]

@ddesy<br /><br />But you're still getting a good deal when upgrading from Tiger. Apple isn't offering $30 to Leopard customers because they want to compete with Windows 7. They're selling it for $30 because no one with Leopard will pay $130 for Snow Leopard when it has very few new, visible features. When upgrading from Tiger, you're getting Snow Leopard, including what was in Leopard, and iWork '09 and iLife '09. So anyone who downloads that is still cheap and deserves the malware.

[tmt345]

@ddesy<br /><br />Don't worry you don't have to pay $160. Just use the $30 one, just go in disk utility and erase the disk and then install. The New York Times person said you can do this easily.

[lumpoco]

$29? You can download it via bittorrent for free and without viruses or malware. Or you can always burn a copy you borrowed from Steve. Or you can just use Windows 7. It seems that the point of this article of pointless. Everyone knows that you can't just upgrade to the latest MAC OS without incurring any costs. Some choose monetary cost over the costs it takes to redo you computer after it has been infected by various rogue software. If Cnet wants us to avoid these phoney sites, then why doesn't it host a copy of the file on their servers? Seems to me if you are going to warn your audience about something bad it's your responsbility to provide an alternative way to procure the software.

[ckh1272]

"by lumpoco August 27, 2009 8:49 PM PDT<br />$29? You can download it via bittorrent for free and without viruses or malware. Or you can always burn a copy you borrowed from Steve. Or you can just use Windows 7. It seems that the point of this article of pointless. Everyone knows that you can't just upgrade to the latest MAC OS without incurring any costs. Some choose monetary cost over the costs it takes to redo you computer after it has been infected by various rogue software. If Cnet wants us to avoid these phoney sites, then why doesn't it host a copy of the file on their servers? Seems to me if you are going to warn your audience about something bad it's your responsbility to provide an alternative way to procure the software."<br /><br />@lumpoco--How about actually paying for it instead of going the torrent route? Easy as that.

[kelmon]

Totally agreed - software pirates deserve to get burnt, particularly when the software is as cheap as this.

[Mergatroid Mania]

Yep, looks like the Mac is finally coming into it's own.<br /><br />Now for all the Mac fanboys claiming their Macs are immune to malware.

[gsmiller88]

Didn't take long for a troll to jump on this one.

[Random_Walk]

Gee - I'll keep that in mind the next time I download OSX as warez.<br /><br />FFS, by this standard Windows must be completely vulnerable.

[solitare_pax]

Who says Macs are immune? I dealt with a macro virus years ago, that came over from a Windows PC into MS Word.<br /><br />I would say that Macs are far less prone to be bothered by viruses - and PCs would be too if their operators would only learn to watch out for scams like this...

[ikramerica--2008]

What does a fake warez site have to do with innocently contracting a virus? It's like saying that when a cop shoots a suspect in a robbery it proves the cops were "out to get him" just like he always claimed they were.<br /><br />I think it's just desserts that crooks get scammed.<br /><br />It's why I don't understand all these hackintosh folks who not only live by iDeneb, but don't even want to talk about the very real and relatively simple process of creating retail OS X install hackintoshes. They'd rather just steal the software and then patch it...

[lumpoco]

I was talking to someone who uses a Sony Vaio and he keeps telling me that "Macs are immunue to viruses....." I almost laughed and slapped him silly. Macs are not immunue to viruses. It's just that people use Windows more...correction...it's just that more stupid people use Windows more so that's why Windows has a higher incidence of viruses. Case in point....I know a few friends who think that if he saves his documents on the "desktop" of his computer that he can retrieve it from any computer in the world. I also know someone who thinks that it's ok to not scan their pc for viruses on a regular basis. He has two teenage girls...and we know that teenage girls are much more naive than teenage boys. When I checked their to see why it was slow I found over 500 incidents of viruses or malware....lol..500! People who say that Windows have more viruses than Macs fail to acknowledge that Windows owns about 80% of the operating system market so of course there will be alot more viruses affecting Windows. I say let's see how Macs do when they are on par with Windows usage. Don't be surprised if they report higher incidents of viruses/malware. Just to clarify...I am not Bill Gates or Steve Jobs. Although I wish I had their net worth.

[montex66]

I don't think any reasonable person would claim that Mac OS X is perfect and invulnerable to any and all malware, including viruses, trojans, zombiebots etc. That's like saying that a ship is unsinkable. But it is reasonable to point out that there simply haven't been any successful viruses targeting Mac OS X in the wild since the OS was launched.<br /><br />I've seen the "P0wn 2 Own" contests that are conducted every year to convince uninformed users that Mac are just as vulnerable as PCs when it comes to security. Of course, those contests are always conducted under the most contrived circumstances that defy logic.<br /><br />When the day comes that a massive viral infection successfully attacks the millions of Macs out there then you have a case for stating that Macs are insecure. But. It Ain't. Happen. Yet. And after 9 years of OS X on the shelves, I think there has been plenty of time for the hackers to pull their dirty tricks. Still... nothing. I'm going with the platform that is beneath the notice of the hacker boys - because I want to get things done.

[ckh1272]

"by Mergatroid Mania August 27, 2009 12:03 PM PDT<br />Yep, looks like the Mac is finally coming into it's own.<br /><br />Now for all the Mac fanboys claiming their Macs are immune to malware."<br /><br />And I guess it's time for people like you to start the flame wars once again. Thanks for trying to side track the discussion. Good bye.

[Jeremy Chappell]

No computer can help you if you're willing to run software that has been downloaded from a untrustworthy source. This is hardly a Mac OS X issue. I'll be amazed if we don't see exactly the same problem with Windows 7.<br /><br />And no, that won't mean there's a problem with Windows 7 either.<br /><br />Simply put, want a safe computing experience? Get your software from a trustworthy source, keep it patched, and use common sense. <br /><br />I didn't say "buy" the software, because there is a lot of trustworthy Linux and GPL software out there that is absolutely fine (and great if you're on a budget - or possibly even if you're not).

[boy444]

I lovew maleware, I lve the sound it makes and the fun of watching all my flies deleted right in front of my eyes.......................................................................................................................................................................................................................NOT!!!!!!!!!!!!

[cpopken]

It is really surprising that anyone would fall for this. If you are too cheap to pay $30 for a piece of software I guess you deserve to get a virus. <br /><br />I guess we will be seeing more of this. As Apple marketshare increases, so will the virus's that are written for it.

[ikramerica--2008]

This is not a virus. This is someone actively downloading and installing a piece of software that doesn't do what it claims to do. This has existed for all platforms since downloading began.<br /><br />Know where your software comes from, or run the risk of being scammed.

[ikramerica--2008]

To be clear, think of it as a heroin user shooting up what he thinks is heroin only to discover it was tainted. That kind of scam is very, very, very unlikely to impact a non-heroin user. ;)

[DumbMacUser1]

I would have fallen for this if you had not warned me!

[Ben342]

I just realize I had posted a comment here already... <br /> <br />It is SO cute when Apple Mac users try to get technical and explain what my "problem" is. Even the "technician" guy was cute. If you knew what you are talking about, you wouldn't have been conned into buying an obsolete crApple product for x times the market rate. <br /> <br />I guys bring a smile to my face :)

[jumpjetta]

Did you think that up all by yourself... "crApple?" That's very clever of you. There's another genius on here you ought to meet... Mr. BingItOn. He's a clever guy, too. If Microsoft had a Genius Bar, they'd likely hire you two.

[ikramerica--2008]

So, all the people out there who have Core 2 Duo macs and who don't have these claimed "30 second delays" are just delusional? My old G4 mini switches apps nearly instantaneously, so it must be a complete mirage...

[montex66]

So, Ben, while you are busy being condescending, the Mac users are trying to be helpful and offer techniques to fix what is an obvious malfunction. Personally, I would take technical advice over snark any day of the week. The fact that all you offer is sarcasm illustrates your lack of integrity and complete absence of manners.

[kelmon]

Sorry, let me get this straight - you posted a fictitious story and you are mocking people who tried to help you? This may bring a smile to your face but the world thinks you are an idiot for wasting your own time and that of others.<br /><br />You aren't fooling anyone so I don't understand why you even bother.

[Random_Walk]

There's actually nothing technical about this - if you download a whole OS warez, it's likely to be rigged.

[scrubbingbubbles]

Anyone ever hear of a Time Machine?

[ikramerica--2008]

I know of 'The Time Machine' good book, fun movie the first time, horrible the other times.<br /><br />"All the time in the world."

[MrRetardo]

I like how one Apple "Tech" claims Apple doesnt "make bad hard drives". Which is true!!!--- Apple doesnt MAKE hard drives. They make the OS. Another company makes the hard drive- Seagate, Western Digital, Fujitsu, Hitachi, which ever one.<br /><br />Then another Apple "tech" even adds that it could be a bad hardware component. Yet this contradicts the others claiming Apple doesnt make bad hardware.<br /><br />I do understand the reason for the PPC systems being left out of the update. Even Windows 3.1 wouldnt install on a Quad-Core 3Ghz PC. There just comes a time when the hardware &#38; software advances.

[baconstang]

Good name you have there.

[Onehitwonder01]

Plz pardon, my digression here but I really cant tell if all of this back and forth between so called "fanboys" is a joke or not. All of this hubub over some computers? Am i missing something here? I usually dont resort to name calling but anyone that gets their panties in a bunch in an attempt to justify their preference over compuuuuters is a real d-o-r-k. <br /><br />ps. dont be a degenerate; the LEAST you can do is pay for your OS, right?

[Jeremy Chappell]

It's weird isn't? Mac or PC and everyone loses their marbles! But yeah, you'd think that paying $30 for an OS or sticking with what you have would be the only sane choices!<br /><br />Mind you, just because people are offering tainted versions of Mac OS X doesn't mean anyone is actually using them (oh I'm sure someone will, but I mean "more than a few"?)<br /><br />Hopefully people are smarter than that.

[John Sawyer]

As a horrible "tech" (using Ben342's description), who has been fixing Macs since 1985, I can confirm the two problems he describes can be real. I've seen them on both a Mirrored Drive Doors G4, and an Early 2008 Macbook.<br /><br />But Ben342's real problems are these: he assumes his experience extends to everyone else on earth (the old "I am the world" mistake), and he automatically trusted his friend's upgrade. He should check the RAM using Rember or Memtest, and check the hard drive for bad blocks, and then do an Archive and Install of OS 10.5 to clear out the garbage that's probably causing the problems he's seeing, then install Snow Leopard, and then come back and tell us what happened. I think he'd be pleasantly surprised.

[digiguy23]

People arguing over $29 dollars

[TechnoMan475392]

You just said "People arguing over 29 dollars dollars."

[blusky08]

Mac Malware Market-Share Myths<br />http://blogs.eweek.com/applewatch/content/security/what_market_share_will_attract_malware.html<br /><br />This article explains exactly why Macs ARE more secure due to not allowing access to the registry, administrator controls, etc. Note the comparison to Vista marketshare--Vista is riddled with malware.

[DMBoricua]

Hold on, a trojan? Trojan infection for the Mac OS X Operating System? I need to know this immediately.

[Jeremy Chappell]

No OS can guard against a trojan - think about it.<br /><br />If I run a program, and the OS then tells me that the program is doing something that needs escalated privileges and I type my password - what more is there to do?<br /><br />Do I now want to allow a program to be able to make changes to my system? That would disallow a whole raft of useful software. The OS gave me the "heads up" that the program was potentially harmful when it asked for the password, that was the moment for me to THINK.<br /><br />No OS that is useful in the generally accepted sense can stop you from bringing in that wooden horse. This isn't a technical failing, this is social engineering - YOU are the weak link in the chain: "welcome to your responsibilities".

[DMBoricua]

But, specifically in this situation, this "fake copy of Snow Leopard" that has this trojan is directed toward Windows right? People getting fooled to getting this free pirated copy of Snow Leopard punishes Windows users, not Mac OS?

[Jamasama]

Well, to be fair we were never going to expect Mac users to be smart enough to read comments on the torrent they're downloading, to see if it's virused or rigged. I mean come on, what else do you expect from users who switch operating systems because they're not smart enough to install AV software or get past an error message?

[01Phyxius]

This.<br />Have a cookie.