O'Grady's PowerPage » News

DevilRobber trojan horse for Mac OS X discovered, controls GPU, steals user data

Posted by:
Date: Tuesday, November 1st, 2011, 04:42
Category: News, security, Software

While there may not be that many viruses out there for the Mac, there are still Trojan horse apps to make life a little bit harder.

Here’s another.

Per AppleInsider, a new Trojan horse hidden in a Mac OS X application can steal sensitive user data and take control of the computer’s GPU to generate Bitcoins, a form of currency used online.

In a report released on Saturday, security firm Sophos reported that DevilRobber, a Trojan horse that can steal sensitive user data, was found hidden inside copies of Graphic Converter 7.4 downloaded from bit-torrent file-sharing sites.

DevilRobber, also known as “OSX/Miner-D,” can steal usernames and passwords and is capable of spying on users by taking screenshots of their activity and sending the images online. In addition, the Trojan is able to run scripts that can copy information “regarding truecrypt data, Vidalia (TOR plugin for Firefox), your Safari browsing history, and .bash_history” to a dump.txt file.

The malware has also been found to search for “pthc” files, a term that is used to describe pre-teen hardcore pornography. It is not known at this time whether one of the secondary features of DevilRobber is to find traces of child abuse on affected computers.

Another unusual feature for the new Trojan is its capability of taking over a Mac’s GPU in order to generate Bitcoins, a digital currency that can be used to perform online instant payments without the oversight of a banking authority.

Users generate Bitcoins on personal computers after installing Bitcoin Miner, an application that’s compatible with Mac, Windows and Linux systems. Once obtained, Bitcoins are stored in the user’s digital wallet and can be used for future online payments. Bitcoins can also be exchanged for actual currency with the current exchange rate reportedly valuing one Bitcoin at US$3.20.

In addition to harnessing the power of the GPU to generate more Bitcoins, DevilRobber can also steal the user’s existing Bitcoin wallet if it finds the appropriate files.

Sophos suggests users be aware of signs that point to a malware attack. For example, a malware attack can result in the slowdown of overall computing performance, with affected users reporting sluggishness as the Trojan steals GPU resources for mining purposes.

In order to avoid unwanted DevilRobber installations, Mac users are advised to refrain from downloading software via untrusted sources, even if they appear to be legitimate. It is not known at this time whether other Mac applications available on torrent sites come bundled with the new Trojan horse.

Apple has yet to acknowledge the new threat, though common anti-virus programs are able to detect DevilRobber.

The new malware is the most recent in a wave of programs targeting an increasing number of Mac owners. Apple recently cleared a threat from a non-functional Chinese Trojan horse that disguised itself as a PDF download.

Recently various instances of a different, more advanced malware program emerged. “Flashback” posed as an Adobe Flash installer, with a later upgraded version programmed to disable the default OS X anti-malware protection thus leaving systems vulnerable to subsequent attacks.

Stay tuned for additional details as they become available.

Onyx 2.4.2 released

Posted by:
Date: Tuesday, November 1st, 2011, 04:12
Category: News, Software


Onyx, Titanium Software’s popular freeware multifunction utility for Mac OS X, has been updated to version 2.4.2. The new version, a 12.9 megabyte download adds the following fixes and changes:

– Show/hide QuickTime Player 7 Movie Inspector at launch.

– Force enabling AirDrop.

– Bugs corrected in the Parameters > iTunes panel.

– Bugs corrected in the Infos panel.

– Xcode isn’t required anymore to install the Network Link Conditioner Preferences Pane.

– If the Spotlight icon is hidden, it remains after repairing permissions from OnyX.

– New replacement icons.

– Help corrected, improved and reindexed.

– Localizations…

Onyx 2.4.2 requires Mac OS X 10.7 or later to install and run.

If you’ve tried the new version and have any feedback to offer, let us know in the comments.

Hackers manage to port Siri functionality to previous-generation iOS devices

Posted by:
Date: Monday, October 31st, 2011, 12:15
Category: Hacks, iPhone, News, Software

Only a few weeks after the iPhone 4S was announced, hackers began trying to fully jailbreak the new smartphone and to also port the new voice assistant system, Siri, to previous generation iOS devices.

According to 9to5mac, developer Steven Troughton-Smith was the first person to port Siri to the iPhone 4, but the system was not functional since it required authentication with Apple servers, only the user interface was working.

Smith and Grant Paul, another hacker based in San Francisco, have now confirmed that they’ve found a workaround to the server side authentication issue, in the processes being the first to fully port Siri to the previous generation iPhone 4 and iPod Touch 4G.

The hackers say more versions are being developed to support other iOS devices, like the iPad.

Smith also said Siri would not be available for download on unapproved app stores, like in Cydia, citing legal issues. But, that is not to say other repositories available through Cydia won’t package the necessary files and make them available free of charge, illegally.

When asked how long it took Smith to find a workaround, he said, “It literally took no longer than 10 minutes to put all the pieces in place and perform our first test on my iPhone 4 [jailbroken], and it was an instant success.”

Thanks to Siri exclusivity, a new dual-core A5 processor, a full HD 1080p camera, availability with more carriers, among other features, iPhone 4S sales have been better than expected, selling more than four million units in the first weekend alone, according to Apple.

Stay tuned for additional details as they become available and if you’ve been able to hack Siri to your iOS device, please let us know.

Rumor: Apple to update iOS retail store app, allow for self-checkout feature

Posted by:
Date: Monday, October 31st, 2011, 08:19
Category: iPad, iPhone, iPod, News, retail, Software


As nice as the Apple retail store employees can be, sometimes you just want to grab your merchandise and go.

Per MacRumors, Apple is working on plans to give retail customers the ability to finalize their own in-store purchases via its iOS application for the iPhone, according to a new report.

Perhaps arriving even sooner than expected, the new functionality is expected to arrive as soon as this week.

An update to the official “Apple Store” application for iOS is said to allow users to charge purchases to their iTunes Store account, linked to an Apple ID and credit card just as App Store purchases are authorized. The anticipated option will only apply to accessories and items found on the shelf.

The new ability will not apply to more expensive items like the iPhone, iPad, iPods or Macs. Those devices will remain kept in the stockroom at Apple’s retail stores, and will require assistance from a salesperson in order to purchase.

But for accessories sold in stores, including cases for products like the iPhone and iPad, users will be able to complete the transaction on their own with an iOS device. An automated e-mailed receipt will serve as confirmation of the transaction, allowing customers to show employees that an item has been paid for.

The new self-checkout option is rumored to arrive soon after Apple launched an in-store pickup program via its online store. Customers in San Francisco can now order a product online and pick it up at a local Apple retail store, and that ability is expected to expand to other U.S. stores in the near future.

Another change is also said to be coming to Apple’s online store, allowing customers to place a single order with multiple items, and have those items shipped to different addresses. The enhanced functionality is expected to debut in time for the holiday shopping season.

Stay tune for additional details as they become available.

Apple reaching out to users for iPhone 4S battery life data, firmware update may be in the works

Posted by:
Date: Monday, October 31st, 2011, 05:17
Category: battery, iPhone, News

With any luck, a firmware update will fix the issue.

Per The Guardian, responding to complaints of battery life issues with the iPhone 4S, engineers from Apple are said to have contacted customers directly in an effort to solve any issues.

One user who spoke with the newspaper said that he was contacted by Apple, and was asked to install a monitoring program on his phone. Apple’s engineers hope to be able to use the diagnostics to determine what is causing shorter battery life for some users, though the report said the problems are thus far “unexplained.”

The person said they were contacted by a senior engineer at Apple who read a post they made online, and indicated that the company was contacting users to resolve the problem. The Apple representative also allegedly admitted that the company isn’t “close to finding a fix.”

“(He) asked lots of questions about my usage and then asked if he could install the file… and that he would call back the day after to retrieve the info,” the person wrote. “I extracted the file from my Mac after a sync and mailed it to him. He was incredibly helpful and apologetic in the typical Apple way!”

Experiences of reduced battery life are supported by a growing thread on the Apple Support Communities website, where numerous users have found they experience significantly less uptime with the iPhone 4S. As of Friday afternoon, the thread as nearly 100,000 views and 1,300 replies.

“Glad to see people are talking about this,” user ‘telarium’ wrote. “My 4S battery life is terrible… even worse than my 3GS, even though all the settings are the same.”

Another user, ‘Frenzi,’ said they found some success by turning off many of the features on the phone, and only gradually re-enabling them as needed. Among the features disabled included sending of diagnostic data to Apple, automatically searching for Wi-Fi connections, automatic date and time, iTunes Ping, and even the Siri “raise to speak” feature. “The improvement has been nothing short of miraculous,” they wrote.

Still another user on the Apple Support Communities website, “Snowwolfwarrior,” said they spoke with an Apple technician who also gave them special software to install on their iPhone 4S. The software logs all of the usage from the handset over a 24-hour period, after which the user obtains the data and sends it back to the Apple technician.

When it was unveiled earlier this month, Apple claimed that the iPhone 4S had an increased battery talk time of eight hours. But standby battery time, when compared to the previous-generation iPhone 4, is advertised at 100 hours less.

In spite of this, the iPhone 4S does have a slightly larger battery than the iPhone 4, and includes an extra .05WHrs when compared to its predecessor. Apple also limited the amount of RAM in the iPhone 4S to 512MB, in an effort to conserve battery life.

The iPhone 4S includes the same A5 processor found earlier this year in the iPad 2. It is a dual-core chip that runs up to twice as fast as the A4, and includes graphics processing up to seven times faster with the SGX 543MP2 GPU.

If you’ve seen battery issues with your new iPhone 4S and want to throw your two cents in, let us know what’s on your mind via the comments.

HP Printer Drivers 2.8, Epson Printer Drivers 2.9 out the door

Posted by:
Date: Friday, October 28th, 2011, 07:31
Category: News, Software

Early Friday, both HP and Epson released updated printer driver s for Apple’s Mac OS X 10.6 and 10.7 operating systems.

HP Printer Drivers v.2.8 OS X and Epson Printer Drivers v.2.9 OS X

The HP Printer Drivers 2.8 includes the latest scanning and printing software for HP and Epson devices for Lion and Snow Leopard. HP’s latest drivers weigh in at 514.55MB download, while Epson’s are a 972.36MB download, respectively.

Both updates can be located and installed via Mac OS X’s built-in Software Update feature and require either Mac OS X 10.6 or later to install and run.

If you’ve tried the new drivers and have any feedback to offer, let us know in the comments.

Apple releases Aperture 3.2.1 update

Posted by:
Date: Friday, October 28th, 2011, 07:07
Category: News, Software

Late Thursday, Apple released version 3.2.1 of Aperture, its pro-grade image editing application. The new version, a 292 megabyte download, offers the following fixes and changes:

– Resolves an issue that could cause Aperture to quit unexpectedly at launch on Macs with Core Duo processors.

– Addresses problems that could cause the Crop tool to switch to the incorrect orientation or resize incorrectly.

– Resolves rendering issues when cropping images with Onscreen Proofing enabled.

– Location menus are now displayed correctly on the map in the Places view when “Photos” is selected in the Library Inspector

Aperture retails for US$199 and requires an Intel-based Mac running Mac OS X 10.5.8 or later to install and run.

If you’re tried the new version and have any feedback, let us know via the comments.

Apple patent points out company’s exploration of 3D gestures/input controls for devices

Posted by:
Date: Thursday, October 27th, 2011, 06:15
Category: News, Patents


Per the cool cats at Free Patents Online, Apple is apparently investigating new ways of interacting with devices, such as using hand gestures to navigate and control a video recording system without touching anything.

Apple’s interest in hands-off control of a device like an iPhone, iPad or Mac was revealed this week in a new patent application made public by the U.S. Patent and Trademark Office. Entitled “Real Time Video Process Control Using Gestures,” the filing, discovered by AppleInsider, is related to remotely controlling and editing video recordings on a mobile device.

Such editing could be done with gestures on a touchscreen, much like is already available on the iPhone and iPad. But within the application, Apple also makes mention of hand gestures that can be performed without touching the device.

The filing notes that a device could be controlled with hand gestures accomplished in either two or three dimensions, and these could be interpreted through infrared sensors, optical sensors, or other methods. These gestures could be used as a replacement for, or even in concert with, traditional touchscreen-based gestures.

“As with the touch based gestures applied on or near the touch sensitive input device, the hand gestures can be interpreted to provide instructions for real time processing of the video by the video capture device,” the filing reads.

Apple’s goal is to simplify and minimize the need for user input partially because the size of recording devices, like an iPhone or iPad, has become so small. The filing notes that placing a finger on a touch-sensitive display can cause a video capture device to move, and that movement is then translated to the video recording.

With Apple’s method, a remote camera could be controlled wirelessly from a second, separate device. An iPhone or iPad are specifically mentioned in the filing as potential options for a “control device.”

One image accompanying the application shows a video being recorded on an iPhone. That video is then transmitted wirelessly, via Bluetooth, to an iPad, where the user can view the video in real-time and make adjustments.

Given the volume of data that must be wirelessly transmitted, Apple’s solution is to automate real-time video processing as much as possible, identifying objects and individual people’s faces captured in a video. The filing even states that a system could help to determine how entities captured in the video relate to one other.

In one example provided, a video of two tennis players playing against each other could be analyzed to have a “negative correlation,” as one player is hitting the ball while the other is not.

“Therefore, by determining the relative correlation between these two players, an implicit association can be assigned to each,” the application reads.

Using this kind of data, the image could be framed according to user specifications. For example, after recognizing a specific face, a video capture device could zoom in and track that individual in real time, with minimal or no input from the user.

Apple’s proposed invention, published this week by the USPTO, was originally filed in April of 2010. It is credited to Benjamin A. Rottler and Michael Ingrassia Jr. I.

Apple releases Thunderbolt Software Update 1.1 firmware upgrade

Posted by:
Date: Thursday, October 27th, 2011, 04:39
Category: News, Software

Late Tuesday, Apple released its Thunderbolt Software Update 1.1 firmware upgrade for its Thunderbolt-equipped Macs running Mac OS X 10.7 (“Lion”). The update, a 72.53 megabyte download, provides support for the Apple Thunderbolt Display and bug fixes for Thunderbolt device compatibility.

In addition to the direct download, Thunderbolt Software Update 1.1 is available through Mac OS X’s built-in Software Update feature. The update requires a Thunderbolt-equipped Mac running Mac OS X 10.7.2 or later to install and run.

If you’ve tried the update and noticed any changes, please let us know in the comments.

Apple releases iPhoto 9.2.1 update

Posted by:
Date: Thursday, October 27th, 2011, 03:27
Category: News, Software


Along with almost everything else, Apple released iPhoto 9.2.1 on Thursday, the latest version of its image organization and editing application. The update, a 357 megabyte download which can be be snagged directly or via Mac OS X’s Software Update feature, offers the following major fix:

– Addresses an issue that could cause iPhoto to quit unexpectedly on Macs with the 3ivxVideoCodec plug-in installed.

iPhoto 9.2.1 retails for US$49 as part of iLife ’11 and requires Mac OS X 10.6.6 or later to install and run.

If you’ve tried the update and noticed any changes, please let us know.