Jump to content

Welcome to Geeks to Go - Register now for FREE

Geeks To Go is a helpful hub, where thousands of volunteer geeks quickly serve friendly answers and support. Check out the forums and get free advice from the experts. Register now to gain access to all of our features, it's FREE and only takes one minute. Once registered and logged in, you will be able to create topics, post replies to existing threads, give reputation to your fellow members, get your own private messenger, post status updates, manage your profile and so much more.

Create Account How it Works

Apple Ships iPods with Windows Virus

  • Please log in to reply

Retired Tech

Retired Tech

    Retired Staff

  • Retired Staff
  • 20,563 posts
Apple has apologized for shipping video iPods containing the Windows virus RavMonE.exe, which apparently made its way onto a small number of the ubiquitous devices at a manufacturing plant. Around 1 percent of units shipped after September 12, 2006 are affected.

RavMonE.exe is a mass storage virus that only affects Windows computers. According to antivirus vendors, which dub the malware Win32.RJump.a and Troj/Bdoor-DIJ, the virus is a Trojan that opens links to Web sites and allows others access to a computer.

After installation, the Trojan contacts several remote sites to report the infection and availability of the backdoor, according to security firm Sophos, which rates it as a low risk infection. All up-to-date antivirus applications should detect and remove the virus.

"So far we have seen less than 25 reports concerning this problem. The iPod nano, iPod shuffle and Mac OS X are not affected, and all Video iPods now shipping are virus free," Apple said in a statement on its support site.

The company also took the opportunity to blast Microsoft's Windows operating system for not doing more to protect customers from such malware. "As you might imagine, we are upset at Windows for not being more hardy against such viruses, and even more upset with ourselves for not catching it," Apple said.

iPod owners who might be at risk from the Trojan should run antivirus software to remove it from their computer. Customers can utilize Microsoft's free Windows Live OneCare Safety Scanner, which works within a Web browser.

"Because this Windows virus propagates via mass storage devices, we recommend that you scan any mass storage devices that you have recently attached to your Windows computers such as external hard drives, digital cameras with removable media, and USB flash drives," Apple added.

Although Mac OS X is not affected, the virus will remain on the device. Apple notes that customers can use the "restore" feature in iTunes 7 to wipe the iPod clean so it can be connected to Windows computers without problems in the future
  • 0




    Spyware Veteran

  • GeekU Moderator
  • 33,098 posts

I love that bit about

we are upset at Windows for not being more hardy against such viruses,

  • 0

Retired Tech

Retired Tech

    Retired Staff

  • Topic Starter
  • Retired Staff
  • 20,563 posts
Some security and quality-assurance experts reacted negatively to Apple's efforts to blame manufacturing problems that resulted in a small number of iPods shipping with a Window virus.

Security professionals, including Microsoft's own product release virus scanning chief, called Apple's efforts to deflect blame onto Microsoft misleading and said the batch of factory-infected iPods reveals a lack of thoroughness in the company's manufacturing process.

On Monday, Apple released a statement on its noting that a "small number of video iPods shipped with a Windows virus," which the company identified as RavMonE.exe. The number of affected iPods is small - less than 1 percent of all Video iPods available for purchase after 12 September.

Apple said: "As you might imagine, we are upset at Windows for not being more hardy against such viruses, and even more upset with ourselves for not catching it."

That statement drew criticism from security experts, including Jonathan Poon, the man in charge of scanning Microsoft products for viruses before they ship.

"It's not a matter of which platform the virus originated on. The fact that it's found on the portable player means that there's an issue with how the quality checks, specifically the content check, was done," Poon wrote.

James 'Randy' Abrams, who held Poon's job for more than a decade at Microsoft and is now director of technical education at ESET, agreed.

"The Apple iPod incident was not about Microsoft having a hardy operating system, it was all about security and process," Abrams told InfoWorld.

Viruses on Microsoft's network weren't unusual when Abrams was testing that company's products before shipping them, he said.

"I released software in an environment surrounded by Windows machines. Many machines on the corporate network were infected. We never introduced a virus into the software in the release or manufacturing processes because we had a professional understanding of what it took to release what we were supposed to," he said.

"That Apple would blame Microsoft demonstrates a lack of understanding of remedial security and manufacturing processes. Virus was only a symptom of the problem. Apple didn't know what they were shipping," Abrams said.

Apple did not respond to phone and email requests for comment before this story filed.

The news about the infected iPods was the second such story in recent days. On Monday, McDonald's admitted that 10,000 MP3 players that were given away in a promotion in Japan also contained a worm.

Both Poon and Abrams said that Apple's response to the infected iPods fell short of McDonald's, even though the burger giant has precious little experience in the consumer electronics space.

"The difference in how McDonald's and Apple handled similar incidents paints a stark difference between management integrity and customer service focus," Abrams wrote.

"Both cases were flawed manufacturing processes. Mistakes can happen and smart companies accept responsibility, make things right with the customer, and fix the problems. Lesser companies play the blame game," he wrote.

McDonald's fix: a single link to Trend Micro's 'Housecall' online virus scanning service and an open offer to replace infected players for free also won praise over Apple's response: a bunch of links to free antivirus software trials, including Microsoft's OneCare program, Poon wrote.

"Steve, if you need someone to advise on how to improve your quality checks, feel free to contact me," Poon said, referring to Apple CEO Steve Jobs.

Software companies have long known about the potential to introduce viruses and other malicious code during the manufacturing process, and have developed procedures to catch such infections.

Two such episodes in a week might indicate that malicious hackers have figured out that consumer device makers are less vigilant in their oversight, said Dennis Szerszen, vice president of marketing and corporate strategy at SecureWave, an end point security software vendor.

Apple may have had more lax oversight around the iPod because it wasn't software and wasn't, in itself, targeted by malicious code, he said.

"There may have been less rigour because they weren't cutting and shipping an OS," he said.

Given that, Apple is lucky that it was a virus that shipped on the iPods rather than pornography, pirated software, or some kind of religious or political propaganda that would have been even more damaging to Apple's name, Abrams said.

iPods and other consumer devices are increasingly finding their way onto enterprise networks, and are an increasingly common vector for attacks, he said.

"The end point is the final frontier in enterprise security, because it's where you and I bring our recreational attitudes and personal choices for how to work to bear," he said.

Companies should set up stringent policies about whether and how to use consumer electronics devices at work, but also set up systems to monitor their use and prevent malicious attacks or infections that might be carried by iPods, PDAs, and other consumer devices, Szerszen said.
  • 0

Similar Topics

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

As Featured On:

Microsoft Yahoo BBC MSN PC Magazine Washington Post HP