via Wired, The Cult of Mac Blog:
Thursday, 16 February 2006
First Mac OS X Worm a Wake-Up Call
The first Mac OS X malware has been spotted in the wild, but it appears to be something of a damp squib.
Called Leap-A by anti-virus companies, the worm appears as a JPEG file that spreads via iChat to contacts on the infected user’s buddy list.
I’m not too worried about this one, but wonder how long it’ll be until I do need to worry.
According to a Symantec press release:
The worm makes use of the Spotlight search program, included in OSX, and will run each time the machine boots. It identifies any applications being started, and if iChat begins to run, the worm uses iChat to send the infected file – latestpics.tgz – to all contacts on the infected user’s buddy list. Those on the buddy list will then be asked to accept the file. If they do, the file will subsequently be saved to their hard drive. Files infected by OSX.Leap.A may be corrupted and may not run correctly.