Backdoor Trojan For Windows Ported To Mac OS 263
An anonymous reader writes "A Remote Access Trojan (RAT) for Windows, known as darkComet, has been ported to Mac OS X. The new backdoor Trojan is not yet finished, but it could be indicative of more underground programmers attempting to take advantage of Apple's growing market share."
Besides missing link, summary isn't accurate.. (Score:5, Informative)
darkComet (aka darkComet-RAT) [darkcomet-rat.com] is the name of a remote administration tool, which BlackHoleRAT's control functionality is derived from. The trojan is actually called BlackHoleRAT, but regardless, here's an article link [tgdaily.com].
And, while I'm going, the distortion of the term "trojan" is starting to test my patience. A trojan horse [wikipedia.org] is a piece of software that is deceptive in nature, one which appears to perform a desirable function, but, in fact, steals information or harms the system its occupying. This application, darkComet-RAT, is referred to as a trojan itself all over the web in news articles relating to this beta of "BlackHoleRAT," which is NOT the case. darkComet-RAT is a legit remote administration tool, similiar in functionality to VNC, and should be treated as such.
I understand this butchering of the acronym "RAT," between its use as "Remote Administration Tool" and "Remote Access Trojan" may be confusing, as with all acronyms that use the same letters, but please, for the love of god, do some damn fact checking, and this would be less likely to happen.
Grumble grumble grumble.
Re:Besides missing link, summary isn't accurate.. (Score:1, Informative)
>>>do some damn fact checking
"What's that?" - thousands of journalists and their professors. I don't think this is a deliberate misuse of the word trojan - just non technical people getting confused between DarkComet and BlackHole. Similar to how some non-tech people call megabits per second a "bandwidth" or 9.8 meters per second the "force" of gravity.
Re:Or... (Score:4, Informative)
But Sophos has pushed out alarmist trolling press releases every quarter or so for years now all implying how OSX is about to be hit by a tidal wave of viruses, worms etc (other sites have credited Sophos as the source of this story - not Slashdot though, it seems.
Re:It was just a matter of time (Score:5, Informative)
Hmm, you spout off on some stupid controversial opinion without even checking if it has anything to do with the topic on hand, yes you are a troll.
Though part of the fault is that whoever made this summary is also a troll, DarkComet is a Remote Administration Tool (Emphasis on TOOL) similar to VNC, SSH, etc. There is nothing about this that is Virus or Trojan related.
Re:Besides missing link, summary isn't accurate.. (Score:2, Informative)
Well, darkcomet isn't technically a trojan anymore than CoDC's Back Orifice is, but both are designed to be installed by subverting OS security restrictions and run stealthily. And while both have legitimate remote administration functions, they also have some not-so-legitimate ones well (i.e keyloggers). Let's face it, darkcomet and its ilk are designed to be used by black hat (wannabes). I doubt you would ever find them installed by any responsible IT dept for RA of business desktops.
It may not be a trojan itself, but it's designed to be used as a payload for trojan software.