Yet another Trojan

[Xairbusdriver]

<SecureMac reports finding Boonana>

What their site implies is that the trojan will install itself without any help. However, it still requires the user to "OK" the installation just like any other installer 'messin' with System files. Ya think they might not want to tell people about that?

Much is made of the fact that this trojan is built with Java, making  it cross-platform. SecureMac even suggests that this is proof that malware is being built for the Mac! I beg to differ. It just means that some one who knows Java built a trojan. Period. While it can install itself on an unsecured Windows machine, it will still require your password on your Mac.

Keep the gates closed: Don't visit sites and absolutely, positively don't download anything from a site you don't know about.
If you find a "horse" in the courtyard, do not open any doors you may find: When you are asked for your password, make sure you know why. Canceling the dialog can, at worst, require you to see it again, when you know what it's for. Clicking "OK, come on out of the 'horse!'," you may have just let who knows what have their way with your Mac!!!
Get rid of animals before they 'mess' on your streets: ClamAV X is free! Download it. Use it. Keep it updated! Get rid of the animals and their 'leavings!'

[krissel]

This is what all users should be doing anyway:

QUOTE

Users can protect themselves from infection by turning off Java in their web browser. This can be accomplished in Safari by clicking the Security tab under Safari Preferences, and making sure the "Enable Java" checkbox is unchecked.

[Xairbusdriver]

Shouldn't have started this post with so little time for re-reading/editing! And I had even less time than I thought. My comments seem rather curt and discourteous and that was not the intention. Hope all readers understand. These reactions from companies with a vested interest in finding malware for the Mac have a much higher level of credulity, in my opinion, anyway and I get frustrated when they don't tell the whole story. Of course, it's probably too much to ask them to simply state the obvious; there's no need, as yet, to buy their software...

Well, an even safer method is to leave the Mac off... Seriously, while there is little need to have Java enabled, unless you are using an app that uses it, I feel that telling a user to simply turn a function off to be both overkill and less than educational (helpful). Instead, I think we should be reinforcing the common sense approach to using technology; know what you are doing! Why should I take the step to turning off parts of a technology? What can happen if I always automatically enter my password? What is a trusted site? I know it's harder and maybe even complicated, but this technology is almost ubiquitous, so education is our best defense. Second only to the rarely used concept of thinking before acting...

My personal opinions are not necessarily supported by all readers!

[Xairbusdriver]

Now, the folks who have always had a hard time selling AV software to Mac users have decided to compete directly with ClamXav (and all other free AV apps). <Sophos offering a free version of their least capable AV software.> Any bets on how many times it will "suggest" that it might be wise to get the paid version?