It’s Apple’s Turn: OSX_KROWI.A

My guess (posted in my last month’s Firefox malware post) proved to be true. This week is Apple and Mac‘s turn on the malware spotlight.

Trend Micro and Intego reported seeing a malicious file (read: trojan) packaged inside a cracked version of iWork 09, the productivity suite recently released by Apple. The cracked iWork 09 is being circulated via the popular peer-to-peer (P2P) file sharing protocol Bittorrent. Upon installation of the cracked iWork 09 package, the malicious file (detected by Trend Micro as OSX_KROWI.A) is then automatically executed and can make the Macintosh machine compromised.

Interested to read the full techie details? Check out Trendlabs’ blog and Intego’s advisory.

I suggest that whenever you download any application software via P2P site, try to scan them first with your antivirus, anti-spyware and other security programs and check out for any suspicious files or detection. And remember that even Macs are not that safe nowadays.