New Mac Malware is duping users into signing up for mobile phone charges, according to Doctor Web, the antivirus firm that identified the FlashBack botnet earlier this year.
Dr Web announced on its blog that the Mac-focused malware is a fake installer that can be downloaded from various sites under the guise of legitimate software. When the user attempts installation they see an interface that mimics the installation wizard of a corresponding application, explains Dr Web, however, the mobile number of the user is requested. Should the user enter their mobile phone number they will receive a text message asking for a reply, if they respond they will be signed for a subscription and a fee will be debited from their mobile phone account on a regular basis.
Dr Web has named the new Trojan Trojan.SMSSend.3666. The example identified by Dr Web targets Russians who are using an application for listening to music on a Russian social media site called Vkontakte.
"Doctor Web once again warns users against installing programs if they are required to submit their phone number or send a text message - most likely, you will lose money and end up with nothing,” the antivirus firm warns in its blog post about the new malware," the company writes on its blog.
This text-message scam installer isn’t new, but this is the first time it has been converted to target Mac users.
The malicious scheme used to spread this Trojan is notorious among many Windows users but until now it hasn't been employed to deceive owners of Macs.
In April more than 600,000 Macs were reported to have been infected with a Flashback Trojan horse that was being installed on people's computers with the help of Java exploits. The Flashback Trojan is considered to be the largest Mac malware threat to date.