On TV.com: 2009's Most PIRATED TV Show
BNET Business Network:
BNET
TechRepublic
ZDNet

April 16th, 2009

iBotnet: Researchers find signs of zombie Macs

Posted by Ryan Naraine @ 8:28 am

Categories: Apple, Arbitrary Code Execution, Botnets, Browsers, Complex Attacks, Data theft, Denial of Service (DoS), Exploit code, Locally Running Web Servers, Malware, Passwords, Patch Watch, Research, Viruses and Worms, Vulnerability research

Tags: Apple Macintosh, Researcher, P2P, Malware, Apple iWork, Spyware, Adware & Malware, Cyberthreats, Viruses And Worms, Desktops, Security

Malware hunters at Symantec have discovered a direct link between a malicious file embedded in pirated copies of Apple’s iWork 09 software and what appears to be the first Mac OS X botnet launching denial-of-service attacks.

Writing in the current issue of Virus Bulletin (subscription required), researchers Mario Ballano Barcena and Alfredo Pesoli found two malware variants — OSX.Iservice and OSX.Iservice.B — using different techniques to obtain the user’s password and take control of the infected Mac machine.

[ SEE: Mac OS X Malware found in pirated Apple iWork 09 ]

The variants have been found inside bogus copies of iWork ’09 and Adobe Photoshop CS4 which were shared on the popular p2p torrent network. The author of the malware downloaded the original/trial versions of each program and introduced a copy of the malicious binary into the packages.  Users who then downloaded and installed the applications from the torrent download would have been infected. It is estimated that thousands of people have downloaded the infected torrent files.

They describe this as the “first real attempt to create a Mac botnet” and notes that the zombie Macs are already being used for nefarious purposes.

The researchers pointed to this blog entry that describes a a PHP script, running as root, launching attacks against an unknown Web site.

The article goes into detail on the botnet’s peer-to-peer engine, startup and encryption capabilities and configuration file structure and concludes that the person who wrote the malware is not the same as the person who actually ‘used’ it.

“The code indicates that, wherever possible, the author tried to use the most flexible and extendible approach when creating it – and therefore we would not be surprised to see a new, modified variant in the near future,” the researchers added.

* Image via joseloya’s Flickr photostream (Creative Commons 2.0)

Ryan NaraineRyan Naraine is a journalist and security evangelist at Kaspersky Lab. He manages Threatpost.com, a security news portal. Here is Ryan's full profile and disclosure of his industry affiliations.


Email Ryan Naraine

For daily updates on Ryan's activities, follow him on Twitter.

Subscribe to Zero Day via Email alerts or RSS.

  • Talkback
  • Most Recent of 433 Talkback(s)
I agree
I agree. People who develops virus normally develop the app for windows because is in 80%+ of users and companies around the world.

I have a 100% secure windows OS in home, i have a good AV, I ... (Read the rest)
Posted by: alexisgarcia72@... Posted on: 12/05/09 You are currently: a Guest | | Terms of Use
HAHAHAHAHAHAHAHAHAHA!!!!!!  NonZealot | 04/16/09
Now stop that... It's Lies! All Lies! (NT)  Badgered | 04/16/09
yep  lantzn | 04/16/09
Not an OS Break-in  mlibrescu4 | 04/17/09
re: Not an OS Break-in  Badgered | 04/17/09
Hey! I patented E.O.S. - You owe me $ 0.35 USD !! (NT)  No More Microsoft Software Ever! | 04/18/09
Oh really? !!  tikigawd | 04/17/09
Which is really funny...  bitshiftr | 04/20/09
@mlibrescu4  Chrissd | 05/13/09
No stop following...  wtfnix | 05/13/09
My thoughts too (NT)  Loverock Davidson | 04/16/09
NZ! NZ! Now I'm almost as scared as a PC user! How y'll live like this? happy  Davewrite | 04/16/09
Not so hard eh. (NT)  Cayble | 04/16/09
I like this part...  PollyProteus | 04/16/09
Shoulda added this part at the end...  copterdriver | 10/02/09
Translation  frgough | 04/16/09
WRONG - its laughing at arrogance  JABBER_WOLF | 04/17/09
@JABBER_WOLF  Axsimulate | 04/17/09
well...  evilkillerwhale@... | 04/17/09
@evilkillerwhale  Axsimulate | 04/17/09
Not even thousands...  KaplanMike | 04/17/09
um  library assistant | 04/20/09
Please provide the link that state Millions of Macs.  raelalt | 04/20/09
@raelalt  Axsimulate | 04/21/09
How childish!  john_gillespie@... | 04/20/09
@john_gillespie  Axsimulate | 04/21/09
Maybe...Maybe Not  p0figster | 04/17/09
Indeed.. Payback is a _itch... And then some... ROFL n/t  Wolfie2K3 | 04/17/09
The most important fact intentionally ignored by the mob  Mikael_z | 04/17/09
Herm...  evilkillerwhale@... | 04/17/09
Calling evil's bluff  brian ansorge | 04/17/09
RE:Herm...  richdave | 04/17/09
Linux...  evilkillerwhale@... | 04/21/09
Go check milworm  voska1 | 04/20/09
No Vista Exploiits! Thank GOD!  XweAponX | 04/21/09
Your reading comprehension level is quite high.  evilkillerwhale@... | 04/21/09
Intentionally installed  boomchuck1 | 04/17/09
Sure, but miles away from being a remote exploit  Mikael_z | 04/17/09
OS X is no different  wolf_z | 04/17/09
No real difference here.  deowll | 04/17/09
Windows with which remote exploits are almost daily news.  deowll | 04/17/09
Got a source or just full of BS?  XweAponX | 04/21/09
Every tuesday?  rtk | 04/21/09
Eh Hm  medezark@... | 04/20/09
@medezark  Axsimulate | 04/20/09
Amen, Brother, That's The Real Truth! (NT)  PMC-CON | 04/20/09
Lost in Translation  notsofast | 04/17/09
Until now, all the 8 year old mac fanboys were saying  HypnoToad | 04/19/09
Not a Zealot at all, are you?  apostate | 04/16/09
oiy...  evilkillerwhale@... | 04/17/09
Here's an experiment:  Jkirk3279 | 04/21/09
experiment results  ahumeniy | 04/22/09
You won't have long to wait...  Wolfie2K3 | 04/22/09
@NonZealot  Axsimulate | 04/16/09
It targets unpatched machines.  deowll | 04/16/09
@deowll  Axsimulate | 04/17/09
Yeah, if your patched your safe, but if your not, your nailed.  deowll | 04/17/09
Really? WOW- thats almost like windows  JABBER_WOLF | 04/17/09
@JABBER_WOLF  Axsimulate | 04/17/09
How about the one...  wolf_z | 04/17/09
wolf_z  Axsimulate | 04/17/09
Fox news  boomchuck1 | 04/17/09
@Axsimilate  wolf_z | 04/17/09
@wolf_z  Axsimulate | 04/17/09
re: @wolf_z  mdsock@... | 04/20/09
BS  wcb42ad | 04/17/09
Not to mention...  bigsibling | 04/17/09
@wcb42ad  Axsimulate | 04/18/09
@bigsibling  Axsimulate | 04/18/09
@Axsimulate  wcb42ad | 04/23/09
Wrong  deowll | 04/17/09
Of course, Macs don't have the market penetration  brendan@... | 04/20/09
Re-read your own post...  wcb42ad | 04/17/09
@wcb42ad  Axsimulate | 04/18/09
Tricked into installing an app?  wcb42ad | 04/24/09
Second job  Chiatzu | 04/16/09
You're really creepy man...  Metronome49 | 04/17/09
I love your sarchasm!!!!  kd5jos | 04/17/09
Ugh...hate to do this but it is 'sarcasm' , not 'sarchasm' DOLT!  No More Microsoft Software Ever! | 04/18/09
You said "Hate to do this"  xuniL_z | 04/20/09
Shame on ZDnet  NonZealotNoLife | 04/17/09
Shame on ZDNet  Jkirk3279 | 04/17/09
HAHA..  cmgalaxy | 04/20/09
Do your parents know you are using their computer?  john_gillespie@... | 04/20/09
Thought this was Luvrock for a sec, but you just beat him to the post.  invmgr@... | 04/21/09
uummmm... LOL.  gigogogogown | 04/22/09
I think the laugh will be on you later on?  Dogteams1 | 05/08/09
Let me join you  jackbond | 11/03/09
It would be interesting to see...  Qbt | 04/16/09
They will  BR999 | 04/16/09
av?  elllroy | 04/16/09
Yes but you obviously don't  NonZealot | 04/16/09
So you don't then.  apostate | 04/16/09
Any good AV program ...  deowll | 04/16/09
A rose would smell just as sweet...  p0figster | 04/17/09
I disagree!  jonj@... | 04/17/09
@p0figster  Axsimulate | 04/20/09
Yes...  Qbt | 04/16/09
Only?  DannyO_0x98 | 04/16/09
In the long run, you miss the point...  Cayble | 04/16/09
In the long run...  windozefreak | 04/16/09
Um, only  frgough | 04/16/09
Or use....  Erroneous | 04/16/09
Why Does Apple Patch iTunes/QuickTime for Macintosh?  PMC-CON | 04/16/09
Password / UAC -- You Must Mean Vista?  PMC-CON | 04/16/09
Thing is....  apostate | 04/16/09
And this is any different from....  Erroneous | 04/16/09
No it isn't.  apostate | 04/16/09
Get over it.  deowll | 04/16/09
?!!  apostate | 04/16/09
Almost a good post, but a way too much nonsense.  Cayble | 04/16/09
No...that was nonsense.  apostate | 04/16/09
A mind blown. You need a thicker tin foil hat.  Cayble | 04/16/09
Thing is...  windozefreak | 04/16/09
No, you don't have a point.  apostate | 04/16/09
@Cayble  apostate | 04/16/09
Hey apostate...  Cayble | 04/16/09
Proof?  p0figster | 04/17/09
And, That is Not there Anymore! Nt  windozefreak | 04/16/09
Costly? There are at least 2 free AV packages.  xuniL_z | 04/16/09
Hold on, xunil_z  MGP2 | 04/16/09
ClamX AV  macadam | 04/16/09
ClamX AV...  wolf_z | 04/16/09
Could be, I don't use it  macadam | 04/16/09
@macadam: Is that your advice for the average clueless computer user?  NonZealot | 04/16/09
iAntiVirus is free.  ashdude | 04/16/09
@NonZealot  macadam | 04/17/09
@macadam: Glad we can agree on 99.9% of this happy  NonZealot | 04/17/09
I thought that was linux only...  HypnoToad | 04/19/09
Oh. My. God.  Jkirk3279 | 04/21/09
Clam  Win3.1 | 04/16/09
Or free AV software.  Cayble | 04/16/09
Free isn't always better.  ashdude | 04/19/09
Now come on...  JT82 | 04/16/09
$129 for more popular infections. wink (nt)  bdlang@... | 04/16/09
THAT was funny!  macadam | 04/17/09
Tell the truth  rag@... | 04/16/09
Lumping  honeymonster | 04/16/09
Uh...  rag@... | 04/16/09
Nonsense  eMJayy | 04/16/09
You are right, but sadly that fact is also the reason...  xuniL_z | 04/16/09
Agreed. But.  apostate | 04/16/09
Ok, I could have said that better.  xuniL_z | 04/16/09
If the numerous version make it hard on malware..  deowll | 04/16/09
Well...seriously...  Cayble | 04/16/09
Ya. Good job. Now try reading what he wrote.  Cayble | 04/16/09
Pirated Software...  Misha35 | 04/16/09
Exactly: and the headline was written to promote that error  paron | 04/17/09
pftt  rtk | 04/17/09
but read the headlines  shis-ka-bob | 04/17/09
Great post....  Cayble | 04/16/09
Dream on  comp_indiana | 04/16/09
HAHAHAHAHAHAHAHAHAHA!!!!!!  NonZealot | 04/16/09
You're missing the point NZ  LiquidLearner | 04/16/09
You should be in politics  frgough | 04/16/09
Thanks, I think...  LiquidLearner | 04/16/09
Now that I think about it...  T1Oracle | 04/19/09
So what about the "myth"  LiquidLearner | 04/16/09
Jobs should patent that!!  NonZealot | 04/16/09
Might be your best post ever! iAppled! (NT)  LiquidLearner | 04/16/09
RE:Jobs should patent that!!  RedsReboot-22599354177376338262696428243341 | 04/16/09
Great one NZ.  xuniL_z | 04/16/09
It had nothing to do with Firefox.  apostate | 04/16/09
You missed my point  LiquidLearner | 04/16/09
Security through obscurity is not a myth.  deowll | 04/16/09
@LiquidLearner  Axsimulate | 04/21/09
You should reconsider  DannyO_0x98 | 04/16/09
Plus  LiquidLearner | 04/16/09
Unless...  comp_indiana | 04/17/09
re: unless  rtk | 04/17/09
There is still absolutely no need for AV software on a Mac.  deowll | 04/16/09
Neutering comp_Indiana  PMC-CON | 04/16/09
Why Does Apple Patch Safari?  PMC-CON | 04/16/09
Wow. If you say it enough it makes it true???  Cayble | 04/16/09
you did catch  richvball44 | 04/16/09
A perfectly good point, so...  Cayble | 04/16/09
"Macintosh" Botnet  cvmichael | 04/16/09
There really isn't a need.  dchagwood | 04/17/09
Gotta love it.  HypnoToad | 04/19/09
Come on ZDNet, this should be the biggest, boldest headline on front page!  NonZealot | 04/16/09
I think number of hits determines that  Michael Kelly | 04/16/09
That's ok...  Qbt | 04/16/09
yup  rtk | 04/16/09
Agreed  Loverock Davidson | 04/16/09
OH *gasp* MY *gasp* GOD..  JT82 | 04/16/09
ahem, JT82  rtk | 04/16/09
trojan  elllroy | 04/16/09
Funny...  Qbt | 04/16/09
agreed  elllroy | 04/16/09
Partial definition not acceptible.  Erroneous | 04/16/09
Can you explain the difference to us?  NonZealot | 04/16/09
101 of surfing  elllroy | 04/16/09
Get over it......  daMan25 | 04/16/09
right  elllroy | 04/16/09
There ARE viruses for OS X and Safari DOES allow drive by attacks  NonZealot | 04/16/09
why so much hate  elllroy | 04/16/09
One word: Schadenfreude. NT  wolf_z | 04/16/09
He's obviously a closet Mac Addict!  techconc | 04/16/09
This statement is simply wrong.  wolf_z | 04/16/09
@wolf_z: You're wrong  frgough | 04/16/09
I have seen...  Erroneous | 04/16/09
@frgough  ShadowGIATL | 04/16/09
Don't think so...  wolf_z | 04/16/09
@frgough...For Christ's sake, get real for a minute  Scrat | 04/17/09
@frgough  Cayble | 04/17/09
Re: why so much hate  celesti-solari | 09/30/09
Pw2Own Miller "I'd still recommend Macs for typical users"  Davewrite | 04/16/09
Ah, Dave...  MGP2 | 04/16/09
No can I patent it? I added info but what did your post add?  Davewrite | 04/16/09
So, your point is...?  MGP2 | 04/16/09
@MGP2 you're Still contributing nothing to the discussion. Sad.  Davewrite | 04/16/09
Actually he has it right  macadam | 04/16/09
@macadam  JCitizen | 04/16/09
Snow Leopard  lantzn | 04/16/09
Right. Excited too , multi-core process improvements as well! happy nt  Davewrite | 04/16/09
Agreed; Why leave your Mac?  Cayble | 04/17/09
Does not.  itguy08 | 04/16/09
umm  Badgered | 04/16/09
That "itguy" name is a joke, right?  honeymonster | 04/16/09
pick and choose  lantzn | 04/16/09
LOL, but you're doing the same thing  eMJayy | 04/16/09
10 seconds is a specious point  macadam | 04/17/09
point well made  stroutner@... | 04/20/09
Ditz  Jkirk3279 | 04/16/09
Incorrect  LiquidLearner | 04/16/09
In all fairness smaller corrections  honeymonster | 04/16/09
Please, stop your nonsense!  financegozu | 04/16/09
Um, no, it isn't nonsense  NonZealot | 04/16/09
FUD Time Again  rag@... | 04/16/09
ummmm  studsc | 04/16/09
After relaxed security  itguy08 | 04/16/09
@itguy08  honeymonster | 04/16/09
Yeah...right  rag@... | 04/16/09
@rag  honeymonster | 04/16/09
Hasn't happened...  wolf_z | 04/16/09
Be fair.  apostate | 04/16/09
As long as we're being pedantic...  wolf_z | 04/16/09
More FUD  rag@... | 04/16/09
By all means  honeymonster | 04/16/09
Well, as far as UNIXyness goes...  apostate | 04/16/09
@apostate  wolf_z | 04/16/09
XP is more vulnerable by default...  8wintermute8 | 04/19/09
Neutering rag@  PMC-CON | 04/16/09
RE: iBotnet: Researchers find signs of zombie Macs  AgetDuke | 04/16/09
Follow-up  AgetDuke | 04/16/09
Never mind.....  MGP2 | 04/16/09
Pirated software has malware in it. How surprising. (NT)  Letophoro | 04/16/09
Ah, so software must be pirated to be a trojan?  NonZealot | 04/16/09
I see you double dosing the FUD here ZEALOT!  Intellihence | 04/16/09
Yugo?  JT82 | 04/16/09
Yugo?  JT82 | 04/16/09
Mac is a Ferrari kit on a Fiero  NonZealot | 04/16/09
Do you even understand the target market?  Rude Union | 04/16/09
Chill Out  PMC-CON | 04/16/09
So the majority of....  Erroneous | 04/16/09
Why do you want OS X users to act like you?  Letophoro | 04/16/09
Botnets are problematic for everyone  medezark@... | 04/16/09
Botnets are problematic for everyone.  Letophoro | 04/16/09
To be fair to the Apple folk...  storm14k | 04/16/09
Yes Storm, but you're one of the few non-MS users that get it  LiquidLearner | 04/16/09
AppStore for your Mac?  djchandler | 04/17/09
I guess reading is not your strong point.... he said they were trials.  Been_Done_Before | 04/16/09
Speaking of reading...  Letophoro | 04/16/09
It would make so much sense  macadam | 04/16/09
You know what...?  Qbt | 04/16/09
Ignorance is bliss  Michael Kelly | 04/16/09
That's simple...  Jkirk3279 | 04/17/09
impossible!  eggmanbubbagee@... | 04/16/09
You are SO wrong  macadam | 04/16/09
you didn't read my post, missed the sarcasm  eggmanbubbagee@... | 04/16/09
Mea Culpa  macadam | 04/17/09
I probably wouldn't hate Macs  LiquidLearner | 04/16/09
Don't hate the Game, hate the Player  macadam | 04/17/09
Doesn't Jobs recruit evangelists?  djchandler | 04/17/09
I think it's the other way around  macadam | 04/17/09
Courageous admission  djchandler | 04/17/09
Actually MS pays people to blog for them...  8wintermute8 | 04/19/09
No  Jkirk3279 | 04/22/09
RE: iBotnet: Researchers find signs of zombie Macs  studsc | 04/16/09
I was a Mac Genius  macadam | 04/16/09
RE: iBotnet: Researchers find signs of zombie Macs  CrashPad | 04/16/09
RE: iBotnet: Researchers find signs of zombie Macs  reuzedw | 04/16/09
Steve Jobs keels over in suprise: News at 11.  Been_Done_Before | 04/16/09
LOL - careful...  JT82 | 04/16/09
As Usual, ZDNet Spews Anti Apple  itanalyst2@... | 04/16/09
Can't stand the heat?  wolf_z | 04/16/09
good  elllroy | 04/16/09
I beg to differ  wolf_z | 04/16/09
shield  elllroy | 04/16/09
It works very simply  NonZealot | 04/16/09
Works except for the first victims  honeymonster | 04/16/09
@honeymonster  wolf_z | 04/16/09
The good ones...  Erroneous | 04/16/09
I've Been Asking For A Couple Years Now ... Rooted?  PMC-CON | 04/16/09
you haven't seen a Mac in a long while have you?  macadam | 04/17/09
There are ignorant users on all platforms...  8wintermute8 | 04/19/09
Is it possible...  MGP2 | 04/16/09
But acceptable when it is anti-MS  GuidingLight | 04/16/09
Why do you think this article is anti-Apple? (nt)  djchandler | 04/17/09
I agree. What's with all the Anti-Apple articles?  8wintermute8 | 04/19/09
Try Watching The Anti-Windows Commercials Bonehead  Steve@... | 10/01/09
NEWS FLASH - Mac uses can install a virus program if they wish to! - NT  raycote | 04/16/09
Removal software  itguy08 | 04/16/09
Too bad..  JCitizen | 04/17/09
RE: iBotnet: Researchers find signs of zombie Macs  gnesterenko | 04/16/09
Absolutely, I agree 100%  NonZealot | 04/16/09
True, but...  ~Obelix~ | 04/16/09
The artsy fartsy croud ...ROTFLMAO!!!!  JCitizen | 04/17/09
If you ever want to try the artsy side  macadam | 04/17/09
Thank you! Yes I knew about INTEGO  JCitizen | 04/17/09
More bad news  honeymonster | 04/16/09
This means Apple matters  ThePrairiePrankster | 04/16/09
True that  macadam | 04/17/09
More Ons  Rude Union | 04/16/09
Really? You are a programmer?  honeymonster | 04/16/09
Such arrogance  Rude Union | 04/16/09
You still did not explain  honeymonster | 04/16/09
Do you have an imagination?  Rude Union | 04/16/09
You're just digging yourself deeper  wolf_z | 04/16/09
You are ALL silly  ebernet | 04/16/09
good points. nt  Davewrite | 04/16/09
Exactly: Zealot crowing at nothing, as usual  RealNonZealot | 04/16/09
I love fud  gantoris | 04/22/09
Social Engineering Exploit Virus  comp_indiana | 04/16/09
Who said it was Apple's fault?  NonZealot | 04/16/09
botnet  honeymonster | 04/16/09
Notice: There are flaws in Apple's software.  Rude Union | 04/16/09
Attitude  honeymonster | 04/16/09
Are you even paying attention?  Rude Union | 04/16/09
Perfect  honeymonster | 04/16/09
Possibly  Rude Union | 04/16/09
UAC not a problem...  JCitizen | 04/17/09
The Hardest OS to break? Really?  apostate | 04/16/09
Hilarious!  Rude Union | 04/16/09
Yeah, really! Citation coming up.  honeymonster | 04/16/09
Odd.  apostate | 04/16/09
Point??  ~Obelix~ | 04/16/09
Reply was meant for NONZEALOT  ~Obelix~ | 04/16/09
RE: iBotnet: Researchers find signs of zombie Macs  lantzn | 04/16/09
RE: iBotnet: Researchers find signs of zombie Macs  studsc | 04/16/09
smart guys  savage3006 | 04/16/09
read here  savage3006 | 04/16/09
RE: iBotnet: Researchers find signs of zombie Macs  dev-null | 04/16/09
Fascinating  John L. Ries | 04/16/09
No, it's much worse  Rude Union | 04/16/09
Saw that afterwards  John L. Ries | 04/16/09
PcUser to MacUsers: "Alert! SHIELDS UP!" But Vulcan MacUser says:  Davewrite | 04/16/09
There's a flaw in your logic  wolf_z | 04/16/09
Ah! fascinating! happy nt  Davewrite | 04/16/09
Like this?  ashdude | 04/19/09
Except That Apple's Bundled Software -- Leaks  PMC-CON | 04/16/09
Good one.  Erroneous | 04/16/09
I think the Vulcan's would more likely say...  Erroneous | 04/16/09
RE: iBotnet: Researchers find signs of zombie Macs  Bruce Perlman | 04/16/09
Exactly  Rude Union | 04/16/09
Security by Obscurity-Squared  PMC-CON | 04/16/09
If the PC is so obsolete why......  Erroneous | 04/16/09
Oh, after 23 years of using a Mac, I'm finally trembling in my boots  Laraine Anne Barker | 04/16/09
Prior to OS X there....  Erroneous | 04/16/09
So you prefer to remain ignorant...  djchandler | 04/17/09
RE: iBotnet: Researchers find signs of zombie Macs  stdo57@... | 04/16/09
Thumbs up  shellcodes_coder | 04/16/09
Over 230 comments and still spining strong  spincitysd@... | 04/16/09
No OS can protect users from their own stupidity.  Dealing | 04/17/09
RE: iBotnet: Researchers find signs of zombie Macs  Pyster | 04/17/09
RE: iBotnet: Researchers find signs of zombie Macs  Elihion | 04/17/09
Amen Brother!  macadam | 04/17/09
RE: iBotnet: Researchers find signs of zombie Macs  dheady@... | 04/17/09
Yawn...this happens every day on windows.  MyMac | 04/17/09
and yet  rtk | 04/17/09
What, Mac owners who install illegal copies of software? Say it ain't so!  spstanley | 04/17/09
impossible to secure  odcchaz | 04/17/09
Apple Mac user so nieve  jscott418 | 04/17/09
And no Windows user ever downloaded a torrent file with malware? NT  8wintermute8 | 04/19/09
Message has been deleted.  EmperorDarius | 04/17/09
Such effrontery!  djchandler | 04/17/09
RE: iBotnet: Researchers find signs of zombie Macs  Mr Dick | 04/17/09
Car analogy: BMWs  odcchaz | 04/17/09
Mac vs Windows  steve_jonesuk@... | 04/17/09
There is a removal tool  rhon@... | 04/17/09
RE: iBotnet: Researchers find signs of zombie Macs  andyskandie@... | 04/17/09
In other news...  mel@... | 04/17/09
What planet are you from?  Erroneous | 04/17/09
Microsoft recommends...  djchandler | 04/17/09
Even with the new Conficker variations? NT  8wintermute8 | 04/19/09
In other news...  mel@... | 04/17/09
RE: iBotnet: Researchers find signs of zombie Macs  boomchuck1 | 04/17/09
RE: iBotnet: Researchers find signs of zombie Macs  burntpuppy | 04/17/09
RE: iBotnet: Researchers find signs of zombie Macs  kd5jos | 04/17/09
RE: iBotnet: Researchers find signs of zombie Macs  kd5jos | 04/17/09
And to make myself look stoopid (stupid)  kd5jos | 04/17/09
Let me get this straight  comp_indiana | 04/17/09
Yes, get this straight  macadam | 04/17/09
Well said! (nt)  djchandler | 04/17/09
@ all Mac/OSX users  djchandler | 04/17/09
Thanks  macadam | 04/17/09
Yea, but at least the iBotnets are user friendly  T1Oracle | 04/17/09
Hey, Mac... Are you infected? How would you know?  Qbt | 04/17/09
How would you know? Activity Monitor, Wire Shark, MenuMeters... etc.  8wintermute8 | 04/19/09
Explain that in the Apple ads  markbn | 04/19/09
Linux users know intuitively  T1Oracle | 04/19/09
RE: iBotnet: Researchers find signs of zombie Macs  MichaelWells | 04/17/09
RE: iBotnet: Researchers find signs of zombie Macs  germanbuick | 04/17/09
Here's my IP address...take me...if you can: 198.168.1.50 Bwah ha ha! (NT)  No More Microsoft Software Ever! | 04/18/09
*sigh* that's a private internal IP....  8wintermute8 | 04/19/09
Uhhh... ever heard of a Joke?? (NT)  No More Microsoft Software Ever! | 04/19/09
I'm not so sure it was a joke  honeymonster | 04/21/09
"Don't post your WAN IP"  raelalt | 04/20/09
Excuse me, what did you say?  MyMac | 04/19/09
RE: iBotnet: Researchers find signs of zombie Macs  James E Ford | 04/19/09
Got fleas!!!  James E Ford | 04/19/09
RE: iBotnet: Researchers find signs of zombie Macs  Steve KTG | 04/19/09
Old news  voska1 | 04/20/09
RE: iBotnet: Researchers find signs of zombie Macs  ExEC135CrewDog | 04/20/09
RE: iBotnet: Researchers find signs of zombie Macs  slylabs13 | 04/20/09
Who wrote that bot?  BLINKla | 04/20/09
RE: iBotnet: Researchers find signs of zombie Macs  ariesghost | 04/20/09
RE: iBotnet: Researchers find signs of zombie Macs  gabrielbear@... | 04/20/09
A NON-issue for MOST Mac users  3dtodd | 04/20/09
More market share more problems  MrAlan | 04/20/09
Don't let the facts spoil the fun  Fred Fredrickson | 04/20/09
RE: iBotnet: Researchers find signs of zombie Macs  greg@... | 04/21/09
yep....  Badgered | 04/21/09
RE: iBotnet: Researchers find signs of zombie Macs  sparky466 | 04/21/09
Oh please get real  comp_indiana | 04/21/09
?  JamesDoyle | 05/11/09
I think...  Ceridan | 10/01/09
RE: iBotnet: Researchers find signs of zombie Macs  Kyrus | 04/24/09
RE: iBotnet: Researchers find signs of zombie Macs  Techrob1 | 05/08/09
*head : desk*  Chrissd | 05/13/09
Here's mine  wtfnix | 05/13/09
I agree  alexisgarcia72@... | 12/05/09
RE: iBotnet: Researchers find signs of zombie Macs  the_fiddler_on_the_roof | 11/03/09

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement

Recent Entries

advertisement

Archives

Favorite Links

ZDNet Blogs

White Papers, Webcasts, and Downloads