• Home
  • News
  • OS X
  • Newly Discovered Mac Trojan Poses As A PDF File

Newly Discovered Mac Trojan Poses As A PDF File

Newly Discovered Mac Trojan Poses As A PDF File

Even though malware continues to be a small concern on the OS X platform in general, attackers are nevertheless still constantly devising new ways to attack computers and steal valuable information, or turn those machines into bots to do their bidding.

A new Mac trojan called Trojan-Dropper:OSX/Revir.a attempts to do the latter by disguising itself as a PDF file and attempting to open up a backdoor on the users Mac. The exploit was discovered by researchers at F-Secure. A privacy-blurred sample of an infected PDF is shown above.

The trojan is particularly devious in the respect that users who fall victim to the attack are unlikely to be aware that their computers have been compromised, despite the fact that nefarious background tasks are being executed on their Macs. From the F-Secure blog:

This malware may be attempting to copy the technique implemented by Windows malware, which opens a PDF file containing a ‘.pdf.exe’ extension and an accompanying PDF icon. The sample on our hand does not have an extension or an icon yet. However, there is another possibility. It is slightly different in Mac, where the icon is stored in a separate fork that is not readily visible in the OS. The extension and icon could have been lost when the sample was submitted to us. If this is the case, this malware might be even stealthier than in Windows because the sample can use any extension it desires.

It’s currently unclear exactly how this trojan is spreading, although a circulating e-mail attachment is currently the primary suspect. Users are advised not to download or open any PDF file that they cannot identify, or that doesn’t come from a trusted source.

  1. Aaronlynch5 says:

    Macs and computers in general seem to have a lot of “back doors”. :/

  2. aidan taylor says:

    so much for no viruses. 

    1. It’s not a virus – it’s a Trojan. There is a difference. There is still only a very small amount of Mac malware discovered every year, with most of it being relatively minor and requiring user intervention.

  3. 650736 92691Wow post thanks! We believe your articles are fantastic and want a lot more soon. We adore anything to do with word games/word play. 230628

  4. 581702 529234Ill right away grasp your rss feed as I cant in finding your email subscription hyperlink or e-newsletter service. Do youve any? Please let me understand so that I could subscribe. Thanks. 871314

  5. nova88 says:

    784653 694502My spouse and I stumbled over here from a different site and thought I might as effectively check issues out. I like what I see so now im following you. Appear forward to going over your internet page repeatedly. 798933

  6. google.ne says:

    645420 334408Extremely good style and great content material , nothing else we want : D. 437359

  7. 659355 964742some truly fascinating information , properly written and broadly speaking user genial . 184982

  8. 281031 270438I actually like this blog site, will undoubtedly come back again. Make certain you carry on creating quality content articles. 59127

  9. maxbet says:

    874816 18075Some really interesting info , properly written and loosely user genial . 932908

  10. 859204 157698Just wanna comment that you have a extremely nice internet website , I adore the style it in fact stands out. 774040

  11. 76299 185414Quite nice style and great content material , nothing else we want : D. 627320

Leave a Reply

Your email address will not be published.