Both Intego and Microsoft have reported connections between MacDefender and a gang responsible for one of the biggest Windows scareware families.
Intego has said that the group simply added MacDefender to its scam arsenal by developing the Mac-specific fake antivirus program, then seeded it to the same malicious sites that were already serving up Windows scareware, in effect getting a bigger bang for its buck.
Apple's increased sales of Macs may have triggered the move by the gang. While Windows PC sales have stalled -- and still greatly outnumber Mac sales -- Apple's sales of desktops and notebooks has outpaced PC sales for 20 consecutive quarters.
Where there's a market for malware, there's malware.
What can I do to keep MacDefender and its like off my Mac? Lots of things, actually.
For one, be wary of search results on hot news topics, since scareware scammers constantly "poison" those results to push their sites higher on the list. When MacDefender first appeared, it was spread through sites that ranked high on Google Image searches, and those resulting from searches for information on Osama Bin Laden's death.
For another, don't install anything you haven't downloaded yourself.
If you browse with Safari, head to its Preferences screen, then uncheck the box marked "Open 'safe' files after downloading" at the bottom of the General tab: That keeps Safari from automatically opening the installation screen of MacDefender.
Only type in your account password when installing software you actually want and asked to be installed. If the account password dialog pops up and you don't know why, don't enter your password.
Speaking of accounts, the newest MacGuard scam doesn't require a password when you're running under an administrator account. You might want to switch to a standard account instead, which will prompt you for a password when MacGuard tries to install. Check out this Apple support document for how to set up a standard account in Snow Leopard.
Don't pay for security software you haven't asked for. Don't enter your credit card information in any prompt to register such software.
Consider adding an antivirus program to your Mac. Sophos gives one away free, and others, including F-Secure, Intego and Symantec, sell products that will block scareware and remove it if it's infected your machine.
Is the Mac now in the same security boat as Windows PCs? Not by a long shot.
Windows remains the most popular target for hackers because it's the most popular platform on the planet. But the appearance of MacDefender marks a change in criminal tactics that you'd be foolish to ignore. Scammers are nothing if not copy-cats.
Sign up for CIO Asia eNewsletters.