TidBITS: How to Protect Yourself from the New Mac OS X Trojans

/Home/Internet Security: Articles/Internet Security: TidBITS

25 Jun 2008
by Rich Mogull

[Editor's note: Apple patched the ARDAgent flaw described in this article on 31-Jul-2008 in Security Update 2008-005. See "Fixes for DNS Flaw, ARDAgent Exploit Released by Apple," 2008-07-31 for details, or simply run Software Update to ensure you have this fix installed].

One of the downsides of increased attention to computer security is that whenever a new vulnerability or attack technique appears, we, the humble users, face an onslaught of hyperbole from the press, security vendors, and bad guys themselves. This is especially true with Apple products, where we face the triple threat of security vendors trying to sell products to a disinterested community that usually doesn't need them, a press always eager to knock Apple down a notch, and bad guys looking to build their reputations at Apple's expense. In such a maelstrom of information it is often difficult for average users to separate the truth from the hype, evaluate their personal risk, and take defensive actions.

Click the URL above to read the full article