Viruses hit Apple

In 20 years as a Mac user, Al Camentz has avoided the computing fear most common to Windows users: attacks by viruses, worms and Trojans.
Then in February, three separate threats were identified specifically targeting Apple’s Macintosh computers. Some users saw a message sent via the iChat message service with a Trojan horse software called “Leap-A” or “Oompa Loompa,” and the attachment "latestpics.gz". It pretended to have photos of Macintosh’s OS X operating system, and requested their administrative password to open the images. The second Trojan attempted to use a Bluetooth connection to install itself on the computer. The third tried to exploit Apple's Safari Internet browser.

The malicious software, or “malware,” turned out to be relatively benign. In fact, Apple had patched the Bluetooth vulnerability months ago. All three together served as a reminder Apple enthusiasts that they need to be concerned about the safe computing habits common to Windows users.
Still, “they represent a tiny, tiny fraction of the risk that Windows users face daily,” said Camentz, owner of AGuru4Hire.com, a Delray Beach, FL Apple computing specialist to home and small businesses. Not surprisingly, Camentz received no alarmed calls from his clients and no requests to update or even install antivirus software. Most hadn’t even heard of the threats.
“Some said they saw the news and believed it was much ado about nothing,” said Camentz, who doesn’t even recommend his Mac clients use antivirus software.
From Anna Kournikova to Sobig.F to the Sasser worm, malware has lurked on the Internet for years. Most often, it’s created to threaten the highly popular Windows operating system. With the rising popularity of Apple’s Macintosh computers, iChat messaging service, and iPod and iTunes music systems, some experts believe the company’s products, operating system and software will become more frequent targets of attacks.
With more Macs on the market, and its popular OSX operating system now running Mac computers outfitted with Intel processors, Camentz believes virus writers are becoming more familiar with Apple products. This could lead to more events like February’s triple threat, though he said writing malware to infect Macs still will remain a difficult task.
Regardless of their own limited vulnerability, Apple enthusiasts still should practice safe computing, said Jonathan Piccolo, owner of MacWizard Inc., a Miami, FL consulting firm. Piccolo sent instructions to his clients on how to handle the "latestpics.gz" threat, including simply not opening the attachment. He also advises users to set their Mac to automatically download software updates from Apple, and never to enter their password or security code if an e-mail or attachment requests it.
Finally, never open or forward e-mails or attachments from unknown sources. Though many Mac users feel immune from infection, because they work with Windows users, they can inadvertently infect Windows computers by forwarding infected files.
Did the emergence of three threats mark the start of new Mac attacks? Camentz didn’t think so. The threats represent “a more serious effort” being made by virus writers to exploit Mac’s vulnerabilities, he said. But not until reports surface of thousands of users being infected will that represent a shift in how Macs are targeted, he said. Still, some of Piccolo’s Windows customers found humor in the situation.
“I received lots of ribbing and ‘welcome to the club’ comments,” he said.
PREVENTING A BITE AT THE APPLE

WHAT: Viruses, Trojans and other security threats against Apple Macintosh computers.
SOLUTION: Solutions range from safe computing practices to updating antivirus software and downloading Apple’s recommended updates.
WHERE: Internet security software solutions available from Norton Antivirus (www.symantec.com), McAfee (www.mcafee.com), and Apple’s Website (www.apple.com).