‘Weyland-Yutani’ Crime Kit Targets Macs for Bots

[Jack]

A new crimeware kit for sale on the criminal underground makes it a simple point-and-click exercise to develop malicious software designed to turn Mac OSX computers into remotely controllable zombie bots. According to the vendor of this kit, it is somewhat interchangeable with existing crimeware kits made to attack Windows-based PCs.

The Mac malware builder in action.


KrebsOnSecurity has spilled a great deal of digital ink covering the damage wrought by ZeuS and SpyEye, probably the most popular crimeware kits built for Windows. A crimeware kit is a do-it-yourself package of tools that allow users to create custom versions of a malicious software strain capable of turning machines into bots that can be remotely controlled and harvested of financial and personal data. The bot code, generated by the crimeware kit’s “builder” component, typically is distributed via social engineering attacks in email and social networking sites, or is foisted by an exploit pack like Eleonore or Blackhole, which use hacked Web sites and browser flaws to quietly install the malware. Crimeware kits also come with a Web-based administration panel that allows the customer to manage and harvest data from infected PCs.

[...............]

The seller of this crimeware kit claims his product supports form-grabbing in Firefox and Chrome, and says he plans to develop a Linux version and one for the iPad in the months ahead. The price? $1,000, with payment accepted only through virtual currencies Liberty Reserve or WebMoney.

The CSIS blog post contains a single screen shot of this kit’s bot builder, and references a demo video but doesn’t show it. I wanted to learn more about this kit, and so contacted the seller via a Russian language forum where he was advertising his wares.

The author said he is holding off on including Safari form-grabbing capability for now, complaining that there are “too many problems in that browser.” Still, he was kind enough to share a copy of a video that shows the kit’s builder and admin panel in action.



Read more

 

[jamescv7]

Oh Linux well no surprise no OS safe, so in the future they will try to have Zeus and Spyeye in Linux. Since its stated that the kit will have the Linux version.

 

[Jack]

If their is a conlcusion to be taken from all of this is that : No OS is immune to malware and the fact that the number of malware threats available for MAC OS X or Linux aren't as many as for Windows are , is due to the fact of Windows higher popularity and world wide usage.
I'm pretty sure that malware for MAC or Linux won't be as rare in future..... I do hope I'm wrong.

The price ,$1,000,for this Crime Kit is not bad....you can most likely recorver your initial investment in a few day :lolz:

 

[jamescv7]

Yeah, Windows was the majority of all users, maybe for a long time in the future those OS like Linux and Mac OS X may same as Windows