Apple security update combats the Macdefender fake anti-virus plague

THE BSD UNIX DERIVATIVE software house, Apple has released a security update to fix a problem that has haunted many Mac OS X users in the last month, that of fake anti-virus malware.

The firm finally admitted to the problem only last week after reports of users falling victim to a scam that had already targeted many Windows PC users. It works by redirecting people from legitimate web sites to fake web sites claiming the computer has a virus.

Users are offered an option to download fake anti-virus software most commonly known as Macdefender for around $80, by putting in their credit card details. Experienced computer users won't need to be told that this is a bad idea.

The Apple software update offers added definitions for the File Quarantine functionality on Mac OS X Snow Leopard, which will check files for safety from Safari once you've downloaded them. This means that when the Macdefender malware is detected the system will prompt you to move it into the trash.

The update will also make the system check for Macdefender malware and its known variants daily. If found, it will quit the malware, delete persistent files and correct any modifications it might have made.

Chester Wisniewski, senior security advisor at Sophos said the update was a good start and made the most of what Mac OS X could do, but fell short of what he believed was necessary.

He said, "The biggest problem is the lack of an on-access scanning component. While LSQuarantine works to protect against downloads in most browsers, it doesn't prevent infections through USB drives, BitTorrent downloads and other applications." µ