Macintosh OSX binary malware

Marius van Oers McAfee AVERT

With the recent appearances of OSX/Leap and OSX/Inqtana it is clear that Macintosh users are also vulnerable to native malware. Due to the appearance of Mac OSX for Intel, the userbase of people running OSX may grow much bigger than it is today and therefore also draw the attention of malware writers. OSX binary files used to be of the BSD a.out file format specification. Nowadays, the Mach-O (Mach object) file format is used for binary files. This paper will mainly focus on the current OSX binary file format structure and the possible security issues related to that.

del.icio.us

digg this

VB Conferences


	VB2013 (Berlin) VB2012 (Dallas) VB2011 (Barcelona) VB2010 (Vancouver) VB2009 (Geneva) VB2008 (Ottawa) VB2007 (Vienna) VB2006 (Montréal) Photos Programme Slides Sponsors VB2005 (Dublin) VB2004 (Chicago) VB2003 (Toronto) VB2002 (New Orleans) VB2001 (Prague) VB2000 (Orlando) VB99 (Vancouver) VB98 (Munich) VB97 (San Francisco) VB96 (Brighton) VB95 (Boston) VB94 (Jersey) VB93 (Amsterdam) VB92 (Edinburgh) VB91 (Jersey) ‘From registration, sessions, breakfast, lunch, to free beer session. Awesome conference. The best conference I have ever attended.’

Quick Links

Poll

The Japanese government is reported to have commissioned a 'defensive virus'. Is 'defensive' malware ever a good idea?
Leave a comment
View 11 comments

VB2012


	VB2012 will take place 26 - 28 September 2012 at the Fairmont Dallas hotel, Dallas, TX, USA.

Virus Bulletin currently has 224,240 registered users.

Fighting malware and spam

Macintosh OSX binary malware

VB2013 (Berlin)

VB2012 (Dallas)

VB2011 (Barcelona)

VB2010 (Vancouver)

VB2009 (Geneva)

VB2008 (Ottawa)

VB2007 (Vienna)

VB2006 (Montréal)

VB2005 (Dublin)

VB2004 (Chicago)

VB2003 (Toronto)

VB2002 (New Orleans)

VB2001 (Prague)

VB2000 (Orlando)

VB99 (Vancouver)

VB98 (Munich)

VB97 (San Francisco)

VB96 (Brighton)

VB95 (Boston)

VB94 (Jersey)

VB93 (Amsterdam)

VB92 (Edinburgh)

VB91 (Jersey)