Another piece of malware, NetWeirdRC, is targeting Mac OS X 10.6 and later, as well as Windows, Linux and Solaris, according to the Mac security company Intego.
It’s a commercial remote access tool, that after installation, calls home to the IP address 126.96.36.199 on port 4141 and awaits instructions. Then it carries out functions including installing files, gathering system information, stealing browser passwords and grabbing screen shots.
Due to a bug NetWeirdRC doesn’t run after the Mac is restarted, it merely opens the Home folder.
Intego considers the risk to be low at this time.
The product is sold for US$60 in the malware world, relatively cheap in comparison to the OSX/Crisis malware that was being sold for €200,000 ($240,000), notes Intego.