New Mac OS X backdoor trojan "Tsunami" discovered

Share this article:
A trojan that has been targeting Linux users for several years is now setting its sights on the Mac OS X, security researchers warned.

The so-called “Tsunami” backdoor trojan, detected as OSX/Tsunami.A., is derived from an older Linux malware family that has been around since at least 2002, Robert Lipovsky, researcher at anti-virus company ESET, said in a blog post Wednesday. It enables infected machines to participate in distributed denial-of-service (DDoS) attacks intended to flood websites with traffic.

Once it has made its way onto a system, the malware attempts to connect to an IRC channel, where it can receive further commands. Besides enabling DDoS attacks, it can be used to download additional malware and take control of an affected machine.

Graham Cluley, senior technology consultant at security firm Sophos, told SCMagazineUS.com in an email Wednesday that none of his company's customers have reported their computer infected by Tsunami.

"The sky is not falling," he said.

Even so, Mac malware is a real problem, though much less prevalent than Windows threats, Cluley said in a blog post Tuesday. Last week, for example, researchers discovered a separate Mac trojan, which was crafted to disable the anti-malware protection Apple has built into its OS X platform.

Share this article:

Sign up to our newsletters

More in News

Brazilian president signs internet 'Bill of Rights' into law

Brazilian president signs internet 'Bill of Rights' into ...

President Dilma Rousseff signed the legislation on Wednesday at the NetMundial conference in Sao Paulo.

Android trojan sends premium SMS messages, targets U.S. users for first time

Android trojan sends premium SMS messages, targets U.S. ...

An SMS trojan for Android, known as FakeInst, has been observed sending premium SMS messages to users all over the world, including, for the first time, the United States.

Report: DDoS up in Q4 2013, vulnerability scanners leveraged to exploit sites

Report: DDoS up in Q4 2013, vulnerability scanners ...

Researchers observed 346 DDoS attacks in the final quarter of 2013 and attackers used Vega and Skipfish vulnerability scanners to exploit web flaws at financial companies.