Endpoint Protection

 View Only
  • 1.  apple insider reports trojan.osx.boonana.a

    Posted Oct 27, 2010 02:23 PM

    When will countermeasures for subject Mac OSX virus be implemented in SEP 11?



  • 2.  RE: apple insider reports trojan.osx.boonana.a

    Posted Oct 27, 2010 02:32 PM

    If you have any samples Please submit them to Symantec security Resposne



  • 3.  RE: apple insider reports trojan.osx.boonana.a

    Posted Oct 27, 2010 02:46 PM

    You can also submit suspected threats to ThreatExpert. Symantec owns TE and will include detections from files submitted there as well.

     

    http://www.threatexpert.com/submit.aspx



  • 4.  RE: apple insider reports trojan.osx.boonana.a

    Posted Oct 27, 2010 06:26 PM

    This site indicates trojan.osx.boonana.a is related to Koobface, spreads through social networking sites (be careful where you click) and is cross-platform because of Java.  Whether the Windows definitions will be able to pick up on the Macs is unknown (since the Macs will get the Windows definitions by default, but this may be a new variant), so it's definitely recommended to submit any suspicious files so they can be analyzed.

    sandra



  • 5.  RE: apple insider reports trojan.osx.boonana.a

    Posted Oct 28, 2010 12:17 PM

    Trojan.Jnanabot: Trojan Affecting Multiple Platforms

    Security Response Writeup: Trojan.Jnanabot

    It is not clear from the writeup whether the above detection will pick up on the Mac-side files.  The blog entry discusses cross-platform capabilities, but the writeup lists only Windows platforms for the affected systems.

    sandra