Friendly forums for passionate Dems!
More than 91 million posts since 2001
Home Latest Greatest Videos Forums Hide ads Join up!
Home Latest Greatest
Videos Forums Help
Hide ads Join up!
Latest Discussions»Culture Forums»Apple Users»SCAM: A Russian vendor wo...
Welcome to DU! The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards. Join the community: Create a free account Support DU (and get rid of ads!): Become a Star Member Latest Breaking News General Discussion The DU Lounge All Forums Issue Forums Culture Forums Alliance Forums Region Forums Support Forums Help & Search

Apple Users

Related: About this forum
 

denem

(11,045 posts) Sat Apr 7, 2012, 05:37 PM Apr 2012

SCAM: A Russian vendor would like your Mac's Universally Unique ID to check for 'viruses'.

Discliamer: I am not an expert in this area at all, but here's something alarming: While universally unique ID's (UUIDs) come in various classes, Dr. Web, a Russian 'security firm' is asking for your hardware UUID to run a free malware scan.

Apple is currently banning iOS5 apps that access that UUID, and has issued similar guidelines for OSX.

Now Dr. Web, which apparently has been collecting UUIDs via the Flashback JAVA exploit, would like some more - yours

Dr. Web, the same Russian security firm that's been tracking the scope and scale of the Flashback malware's spread worldwide. now has a free, Web-based utility that will tell you if your machine has been compromised, and is -- in fact -- plugged into the botnet network.

In order to do this, it cross-checks your Mac's unique hardware with its own database of machines that have been compromised. If it doesn't find your machine, you're in the clear.

The process does include a very mild amount of tooling around your machine's System Information utility to find your Mac's UUID number, then copying and pasting it into a Web form, but that's all that's needed. http://news.cnet.com/8301-13579_3-57410654-37/web-tool-checks-if-your-mac-is-flashback-free/?

For 'Flashback', all I have to go on is Apple Support's recommendation: Go to:
http://botnetchecker.com/ to see if you have a problem.

One the face of it, I would not be surprised if Dr. Web has had some connection with the exploit's authors, but I am stunned CNET would promote a site that asks readers to give away a hardware UUID. Putting that information together with a IP address is not a good look.

InfoView thread info, including edit history TrashPut this thread in your Trash Can (My DU » Trash Can) BookmarkAdd this thread to your Bookmarks (My DU » Bookmarks) 0 replies, 3566 views
ShareGet links to this post and/or share on social media AlertAlert this post for a rule violation PowersThere are no powers you can use on this post EditCannot edit other people's posts ReplyReply to this post EditCannot edit other people's posts Rec (1) ReplyReply to this post
Reply to this discussion
Latest Discussions»Culture Forums»Apple Users»SCAM: A Russian vendor wo...
Home | Latest Discussions | Greatest Discussions | Latest Videos | All Forums

About | Copyright | Privacy | Terms of service | Contact

In Memoriam

© 2001 - 2024 Democratic Underground, LLC. Thank you for visiting.