Anti-virus researchers have spotted the first signs of an adware/spyware program capable of launching browser windows on Apple Computer’s Mac OS X.
According to a warning from F-Secure, a security vendor in Helsinki, Finland, the proof-of-concept program could be silently installed on a Mac’s User account and hooked to each application used by that account.
The company said the sample, named iAdware, successfully launched the Mac’s built-in Safari Web browser whenever applications were being used.
“We won’t disclose the exact technique used here,” F-Secure said, noting that the program was manipulating a feature in Mac OS X. “It’s a feature, not a bug, but let’s just say that installing a System Library shouldn’t be allowed without prompting the user,” the company added.
The F-Secure notice said the adware program does not require administrator rights.
“An admin could install this globally to all users,” the company said. “This is easier to do than with Windows. After all, it’s a Mac.”
Security experts have long warned that the Mac platform is not immune to malware attacks, and the appearance of a Mac-specific adware sample suggests that online scammers are tinkering with ways to target Apple’s user base.