Dr. Web Uncovers Fresh Mac Malware, Trojan Yontoo

Experts at Doctor Web the security company, of late, unearthed one fresh Mac Trojan known as Trojan.Yontoo.1 that compromises computers running Mac OS X through its direct installation inside the end-user's Web-browser.

Explaining further Doctor Web says that Trojan.Yontoo.1 makes its way inside a PC through several methods. Significantly, for its propagation, cyber-criminals create Web-pages of movie trailers which instruct end-users for loading one browser plug-in. Indeed, according to the security researchers, a usual message is mimicked in the instruction that gets exhibited during the requirement of loading a plug-in alternatively of conducting an extra configuration.

Thereafter, following end-users hitting on "Load the plug-in" button, they are diverted onto a different website that delivers the Trojan. The malicious program can as well get pulled down like any media player, application to improve video quality alternatively one download accelerator, Dr. Web explains.

The security company says that once downloaded, Trojan.Yahtoo.1 exhibits one dialog box, which enquires whether the end-user wishes for loading the "Free Twit Tube" application. But, Dr. Web goes on that following the end-user hitting on "Continue," rather than providing the promised application, the virus pulls down as well as plants the plug-in inside Firefox, Chrome and Safari.

Moreover, after the Trojan places itself firmly inside the browsers of Mac end-users, it sends details regarding the websites open inside them onto the computer of remote controllers. This remote server subsequently sends back components, which mechanically and perfectly get implanted on those same websites.

It's amazing how the assault proves workable vis-à-vis Apple's authorized online site too, Dr. Web highlights.

Further, it is unfortunate how like any malware, Trojan Yontoo too is used to make financial gains. Yet, it's less destructive compared to attempting at filching financial data or passwords. Indeed, Yontoo seemingly associates with an enlarged scam of adware targeting Mac systems, which's been rising numerically, starting 2013 beginning.

In the meantime, one likewise technique is getting utilized for injecting adware into computers running Windows OS; however the novel Trojan.Yontoo.1 should underscore Mac OS X as yet again proving to be an effective target for malicious programs, concludes Dr. Web.

Related article: Dr. Web Finds Fresh Version of Trojan Rmnet

» SPAMfighter News - 3/29/2013