SophosLabs has discovered a new edition of the BlackHole RAT (Remote Access Trojan) that targets Mac OS X systems. Once a Mac user is tricked into installing the Trojan (via pirated software perhaps), attackers will have full control over the computer.
According to Sophos senior security advisor Chester Wisniewski, the Mac OS X variant is "very basic," with a mix of German and English in the user interface.
* Placing text files on the desktop.
* Sending a restart, shutdown or sleep command.
* Running arbitrary shell commands.
* Placing a full screen window with a message that only allows you to click reboot.
* Sending URLs to the client to open a website.
* Popping up a fake "Administrator Password" window to phish the target.