Ars Technica: Fears over new Mac OS X ‘Leap-A’ trojan pointless
Monday, February 20, 2006 - 05:08 PM ESTLeap-A is "a fairly harmless bit of code, and some have described it as a proof of concept. In fact, antivirus firm Symantec designated it a 'Level 1' threat, which is at the bottom of the scale for malicious code. Despite the trojan's harmlessness, a number of sites are seizing on this, calling it the first Mac OS X virus to be discovered," Eric Bangeman writes for Ars Technica "In fact, that distinction goes to another Trojan Horse, found in April 2004 by French firm Intego. After the hype machines slowed down, it was determined that the malware was nothing more than a proof-of-concept, illustrating that Mac OS X can be vulnerable to certain types of malware. In May 2004, another malicious script emerged that would delete the home directories of extremely gullible users. Leap-A hardly marks any sort of advance in Mac malware, as it's less harmful than the May 2004 script and lacks the ability to self-propagate."
"Mac OS X has a solid record so far when it comes to viruses and other malware, and many Mac users don't bother with antivirus software," Bangeman writes. "Leap-A hardly qualifies as a great leap forward in Mac OS X malware. But Mac users along with everyone else will be safer as long as they practice skeptical computing."
Full article here.
MacDailyNews Note: Symantec's OSX.Leap.A page states, "Number of infections: 0 - 49." Why do the number of news articles outnumber the absurdly low number of "infected" machines by something like 100-1? Some of these "writers" who are banging out "Mac cultists smug no more, Macs just as porous as Windows, Mac plagued by viruses, Mac this, Mac that" articles are going to need new keyboards due to excessive drool. Who benefits from the proliferation of the impression that "Macs have viruses" that's being misstated everywhere from Buffalo to Bangalore?
A couple of additional notes courtesy of MacDailyNews reader "PoPa" about Leap-A:
• Leap-A can't transmit itself over the Internet, only over LAN.
• The default config of a Mac is immune even if were on an infected LAN. (It can't spread on a LAN unless a lot of factors come together, including the user enabling Bonjour in iChat, which is very seldom done.)
Again, as Apple has already stated, "Leap-A is not a virus, it is malicious software that requires a user to download the application and execute the resulting file. Apple always advises Macintosh users to only accept files from vendors and Web sites that they know and trust." Apple provides a guide to safely handling files received from the Internet here.
Advertisements:
• MacBook Pro. The first Mac notebook built upon Intel Core Duo with iLife ’06, Front Row and built-in iSight. Starting at $1999. Free shipping.
• iMac. Twice as amazing — Intel Core Duo, iLife ’06, Front Row media experience, Apple Remote, built-in iSight. Starting at $1299. Free shipping.
• iMac and MacBook Pro owners: Apple USB Modem. Easily connect to the Internet using dial-up service. Only $49.
• iPod Radio Remote. Listen to FM radio on your iPod and control everything with a convenient wired remote. Just $49.
• iPod. 15,000 songs. 25,000 photos. 150 hours of video. The new iPod. 30GB and 60GB models start at just $299. Free shipping.
• Connect iPod to your television set with the iPod AV Cable. Just $19.
Related MacDailyNews articles:
Atlanta Journal-Constitution asks: Is 'Mac virus' all just propaganda from Mac haters? - February 20, 2006
Datamonitor: 'Mac OS is just as vulnerable to malware as Windows' - February 20, 2006
Patched in mid-2005 by Apple, Symantec warns 'Inqtana-A' worm could be 'beginning of a trend' - February 20, 2006
OSX.Leap.A: a near miss for Mac users - February 18, 2006
Apple: 'Leap-A' not a virus; only accept files from vendors and Web sites that you know and trust - February 16, 2006
'Highly critical' flaw in discovered in Symantec AntiVirus for Mac OS X - December 21, 2005
Why Symantec's 'scare tactics' don't worry Mac users - September 28, 2005
$500 bounty offered for proof of first Apple Mac OS X virus - September 27, 2005
Symantec details flaws in its antivirus software - March 30, 2005
Motley Fool writer: 'I'd be surprised if Symantec ever sells a single product to a Mac user again' - March 24, 2005
Symantec cries wolf with misplaced Mac OS X 'security' warning - March 23, 2005
Symantec's Mac OS X claims dismissed as nonsense, FUD - March 22, 2005
Symantec warns about Mac OS X security threat - March 21, 2005
FBI: Viruses, spyware, other computer-related crimes cost U.S. businesses $67.2 billion per year - February 01, 2006
Windows virus threatens 170-year-old Toldeo newspaper's perfect record, Apple Macs save the day - January 27, 2006
Symantec: 10,866 new Microsoft Windows virus and worm variants in first half 2005 - September 19, 2005
Hackers already targeting viruses for Microsoft's Windows Vista - August 04, 2005
97,467 Microsoft Windows viruses vs. zero for Apple Mac's OS X - April 05, 2005
Cybersecurity advisor Clarke questions why anybody would buy from Microsoft - February 18, 2005
Apple: 'Opener' is not a virus, Trojan horse, or worm - November 02, 2004
= 
i've enabled bonjour.......