Hackers Update Mac Porn RSPlug Trojan Horse
Mac users are being warned to beware of a new scam by hackers to plant a Trojan horse. RS.Plug.D is a more flexible update of the RS.Plug.A threat discovered in 2007, a security software vendor claimed Tuesday.
Like the original, the new version relies on Mac users to visit malicious porn sites, according to Intego. Unlike RS.Plug.A, this trojan software opens a security hole enabling hackers to repeatedly download files to your system.
When on a suspect porn site, visits will be shown an error message: “Video ActiveX Object Error,” followed by a message that the browser is unable to view the video file and a request to start a download.
ActiveX is usually linked to Windows-related files, not Macs. Despite that, the Web page downloads a file (often named “cleanlive.dmg”) from a remote site. Once downloaded, the file automatically launches a trojan that contacts the remote site again.
To avoid downloading the Trojan file, you must quit your browser, according to the company. Simply choosing “Cancel” returns you to the original “error” message.
DON'T MISS
Mac Trojan “In Wild” On Porno Site — Apocalypse Pending
Mac users can disable the Trojan by using an anti-virus application.
![Read "Why You’ll Probably Never Own A Mac With An ARM Processor [Feature]"](http://cultofmac.cultofmaccom.netdna-cdn.com/wp-content/uploads/2012/02/macbookairarm-300x250.jpg "Read \"Why You’ll Probably Never Own A Mac With An ARM Processor [Feature]\"")
![Read "Is This USB Vibrator The New iPod? [Interview]"](http://cultofmac.cultofmaccom.netdna-cdn.com/wp-content/uploads/2012/01/crave1-300x250.jpg "Read \"Is This USB Vibrator The New iPod? [Interview]\"")
