• Home
  • News
  • OS X
  • New Mac Trojan Disguises Itself As Flash Player Installer

New Mac Trojan Disguises Itself As Flash Player Installer

New Mac Trojan Disguises Itself As Flash Player Installer

While there are already plenty of reasons not to install Flash on your Mac (improved battery life, better performance, etc.), there’s now one more to add to the list: A new Mac trojan is making the rounds disguised as the installer for Flash Player!

If you aren’t careful about where you download the Flash installer from, you might be at risk. The new trojan is called Bash/QHost.WB, and once it infects your Mac, it will edit your hosts file to redirect any visit to one of Google’s sites to an IP address in the Netherlands. The result is that every time you try to visit a Google site (Google.com, Google.com.tw, etc.) you are redirected to a fraudulent site that looks exactly the same.

Here’s what the redirected site looks like in a browser:

Further, the trojan is set up to continually display annoying pop-up ads once it has done its thing, although it’s not actually serving the ads at the moment.

To avoid this trojan, simply make sure that you only download Flash Player by visiting Adobe’s official site. Or, to make live easier, just skip Flash altogether!

  1. Nicholi says:

    People these days. The developers of these viruses need to get arrested and thrown in prison so bubba can GIVE them some viruses.

  2. SwampSpawn says:

    Skip Flash altogether?  Really?  There is plenty of relevant content, including web based applications, that rely on Flash and that’s not going to end anytime soon (if ever).  And Flash runs just fine on all my Mac systems…no issues whatsoever.  While the virus tip is much appreciated, suggesting to “skip Flash” because of it is a stretch.

    1. Bashfulmonk says:

      one word HTML5

  3. Haley says:

    This just happened to me! How do I get rid of it?!?!

    1. Ncostello says:

      Sophos make a free anti-virus app, that should fix it.

    2. Ncostello says:

      Sophos make a free anti-virus app, that should fix it.

    3. Therd Shift says:

      Wipe your drive and do a clean install

  4. Flash is already holding on by the skin of their teeth and these hackers aren’t doing them any favors. FF!

    HTML 5 4 Life!

    Friends of Mac

  5. daysebc says:

    Like Joshua Schnell said that Even fake Flash wants to do dirty things to your Mac

  6. I seriously dream of the day when flash is eradicated from websites. It’s time has passed.

  7. dali13gr says:

    Google Chrome with its own flash player.

  8. paddythepig says:

    Think I’ve been infected! Downloaded it from ITV player when it popped up whilst trying to view the X Factor – I know serves me right! MacKeeper isnt picking it up. I dont get the redirection but now cant instal flash player from adobes site OR Mac OS Updates! Help! J

  9. 709255 469311Thanks for the write up! Also, just a heads up, your RSS feeds arent working. Could you take a look at that? 792388

  10. 670330 789422extremely excellent put up, i in fact enjoy this web site, maintain on it 712417

  11. albino a + says:

    230817 72243The digital cigarette makes use of a battery and a small heating element the vaporize the e-liquid. This vapor can then be inhaled and exhaled 976372

  12. 952650 975866Great post, I conceive weblog owners ought to acquire a great deal from this internet weblog its real user pleasant. 498406

  13. 220146 858636We may have a link exchange agreement among us! 53138

  14. Pgslot says:

    912725 65256 Its hard to find knowledgeable people on this topic, but you sound like you know what youre talking about! Thanks 553214

  15. escorts says:

    369340 32298Numerous thanks for sharing this fine piece. Extremely fascinating suggestions! (as always, btw) 923398

  16. 56360 81783I saw however an additional thing concerning this on an additional blog. Youve naturally spent some time on this. Effectively done! 890486

Leave a Reply

Your email address will not be published.