Computer Service / Network Integration / Performance Tuning

Home » MacDefender Malware Threat Attacks OS X

MacDefender Malware Threat Attacks OS X

MacDefender attacks

MacDefender Attacks

Just this week, Antivirus vendor Intego announced the discovery of a new and virulent strain of malware referred to as “MacDefender”, which specifically targets Mac OS X systems.  It gains access through the Safari browser, deployed as a compressed .zip file and transmitted via Javascript.

If an OS X user’s Safari preferences are set to ‘Open “safe” files after downloading’ the infection is immediately opened, launched and installed without user intervention.  The only sign of infection with be when the Malware asks for a credit card number to sign up for their bogus “virus protection”.

End users running in “Administrator” mode and with their browser preferences set to ‘Open “safe” files…’ are the most at risk.

It has been reported the the infection is also showing up directly in Google image searches.

The following steps are recommended for those infected by the MacDefender Malware.

  1. Open Applications > Utilities > Activity Monitor and quit any MacDefender processes.
  2. Delete MacDefender from the Applications folder
  3. Check System Preferences > Accounts > Login Items for bogus entries and remove them if found.
  4. Perform a Spotlight search for “MacDefender” and delete any remaining files.
  5. In Safari > Preferences > General – make sure ‘Open “safe” files…’ is unchecked.
  6. Do the same for any other browsers you may be running.

Name of author

Name: Wizard

Short Bio: The Computer Wizard (TCW). TCW was founded by Warren P. Harris in 1994 to service and repair computers in the San Francisco Bay Area. Relocating the business to Plano, Texas in 1999, TCW continued to flourish when an unfortunate loss of data for a wedding Mr. Harris photographed, caused him to research data recovery options. Realizing he would have to either pay someone to recover the photos or find out how to do it himself, the rest, as they say "is history". Approached by a friend who was a Private Investigator in 2006, Mr. Harris studied for his Investigator's license and began honing his skills in Computer Forensics. The company was renamed DFW Computer Integration in 2015.

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.