{"id":172,"date":"2008-06-20T18:49:06","date_gmt":"2008-06-20T17:49:06","guid":{"rendered":"http:\/\/blog.intego.com\/?p=172"},"modified":"2024-03-13T09:56:38","modified_gmt":"2024-03-13T16:56:38","slug":"new-mac-os-x-trojan-horse-pokerstealer","status":"publish","type":"post","link":"https:\/\/www.intego.com\/mac-security-blog\/new-mac-os-x-trojan-horse-pokerstealer\/","title":{"rendered":"New Mac OS X Trojan Horse PokerStealer"},"content":{"rendered":"

\"\"<\/p>\n

Intego today released a security memo about a new Mac OS X Trojan horse, OSX.Trojan.PokerStealer.<\/p>\n

The Trojan horse, when run, activates ssh on the Mac on which it is running, then sends the username and password hash, along with the IP address of the Mac, to a server. It asks for an administrator\u2019s password after displaying a dialog saying, \u201cA corrupt preference file has been detected and must be repaired.\u201d Entering the administrator\u2019s password enables the program to accomplish its tasks. After gaining ssh access to a Mac, malicious users can attempt to take control of them, delete files, damage the operating system, or much more.<\/p>\n

Read the full security memo here<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"

Intego today released a security memo about a new Mac OS X Trojan horse, OSX.Trojan.PokerStealer. The Trojan horse, when run, activates ssh on the Mac on which it is running, then sends the username and password hash, along with the IP address of the Mac, to a server. It asks for an administrator\u2019s password after […]<\/p>\n","protected":false},"author":3,"featured_media":8763,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"spay_email":"","jetpack_publicize_message":"","jetpack_is_tweetstorm":false},"categories":[13],"tags":[4722],"yoast_head":"\n\n\n\n\n\n\n\n\n\n\n\n\n\t\n\t\n\n\n\t\n\t\n\t\n