http://images.google.ca/images?q=tbn:pFR6-DabeDiTDM:http://www.physorg.com/newman/gfx/news/SGE.DEP36.300805200518.photo00.quicklook.default-217x217.jpgOnline fraudsters may be ready to put Mac users in their sights.

On Thursday, antivirus firm F-Secure published a brief analysis of a proof-of-concept adware program for the Mac OS X that could theoretically hook into any application to run attacker-specified code. The program, dubbed IAdware by F-Secure, could be silently installed in a user's account without requiring administrator rights.

"We won't disclose the exact technique used here--it's a feature not a bug--but let's just say that installing a System Library shouldn't be allowed without prompting the user," stated F-Secure in the blog post. "Especially as it only requires Copy permissions."

:source: Source: http://www.securityfocus.com/brief/366

Here comes Window's User Account Protection (UAP) for MAC OSX

F-Secure does have a sense of humor tho .

The result: This particular sample successfully launched the Mac's Web browser when we used any of a number of applications.

This is easier to do than with Windows. After all, it's a Mac.

Heres the Blog post:

http://www.f-secure.com/weblog/archives/archive-112006.html#00001030

I see there's a security update :

Apple Computer on Tuesday released a security update for Mac OS X to repair 31 vulnerabilities, including a zero-day Wi-Fi hijack flaw.

Link : http://news.zdnet.com/Apple+Mac+OS+X+patch+plugs+31+vulnerabilities/2100-1009_22-6139117.html?part=netscape-zdnet&tag=mynetscape&subj=technews