facebook rss twitter

Security firm warns of Trojan horse found in pirated copies of Apple's iWork '09

by Parm Mann on 23 January 2009, 10:43

Tags: iWork, Apple (NASDAQ:AAPL)

Quick Link: HEXUS.net/qaqst

Add to My Vault: x

Mac-based security firm Intego has warned that pirated copies of Apple's recently-launched iWork '09 have been found to contain a Trojan horse going by the name of OSX.Trojan.iServices.A.

According to Intego, the Trojan - listed as a serious risk - is launched as soon as a user begins to install any infected version of iWork '09. Once installed, the offending software component enlists itself as a start-up item with full read-write-execute permissions. Going unnoticed by the user, the malicious code is then able to connect to a remote server and download additional components - potentially allowing for the remote takeover of infected systems.

Intego advises that over 20,000 users are likely to have already downloaded an illegal copy of iWork '09, and it strongly urges users not to install the package. Intego's virus protection software - both VirusBarrier X4 and X5 - are said to protect against the threat with the latest virus definitions installed.

Source: Intego.com



HEXUS Forums :: 4 Comments

Login with Forum Account

Don't have an account? Register today!
Dubious sources distributing damaged goods?! Like that's never happened before. :rolleyes: Those saps deserve what they get :devilish:
no need for AV software to remove.

1) (open Terminal.app)
2) sudo su (enter password)
3) rm -r /System/Library/StartupItems/iWorkServices
4) rm /private/tmp/.iWorkServices
5) rm /usr/bin/iWorkServices
6) rm -r /Library/Receipts/iWorkServices.pkg
7) killall -9 iWorkServices
This thread will need a “smug warning” soon enough.
That's ok then :)

Pirate their AV software to sort yourselves out people!

I kid.. i kid.. one word: karma.