Forgot your password?
typodupeerror
Google Bug Security Apple IT

Google Releases VirusTotal Uploader For OS X 37

Posted by samzenpus
from the check-it-out dept.
An anonymous reader writes "Google today announced the release of VirusTotal Uploader for OS X, allowing Mac users to upload suspicious files for scanning. You can download it now directly for OS X 10.8 and 10.9 from VirusTotal. For those who don't know, VirusTotal Uploader for Windows is a popular tool for submitting suspicious files to the online scanning service. The process is as simple as right-clicking any file and selecting the relevant option from the context menu."
This discussion has been archived. No new comments can be posted.

Google Releases VirusTotal Uploader For OS X

Comments Filter:
  • This will throw up so many false positives for Mac users...
  • Multi-scanner (Score:4, Informative)

    by DigiShaman (671371) on Monday May 26, 2014 @01:02PM (#47093541) Homepage

    Basically, you use VirusTotal when you're unsure of a potential infection or outbreak. This site is basically a giant filter that runs the file against multiple engines and provides a score. I've seen a new outbreak where my AV didn't catch it, but 1/4th of the scanners at VirusTotal did. It was obviously so new that not all of the AV vendors had time to catch up yet within the 12 hour window or less. It happens; quite common in fact.

    • by TubeSteak (669689)

      I've seen a new outbreak where my AV didn't catch it, but 1/4th of the scanners at VirusTotal did.

      I've also seen 1/4th of the scanners at VirusTotal claim known good binaries = generic malware because of the packer used to build the exe.

    • Neat idea, and thanks for explaining it to those of us who didn't know what it did, but it doesn't seem particularly useful in this case. And I'm not just saying that because Macs have been by-and-large (though obviously not completely) free of malware in everyday use. I say that because normal users, who are the sort that are likely to be afflicted with an infection, will never hear about it, while the sorts of users who do hear about it (i.e. folks like us) already engage in best practices and will essent

  • by Jeremy Erwin (2054) on Monday May 26, 2014 @01:02PM (#47093545) Journal

    Virus Total Uploader sounds like a malware development kit. The Headline had me thinking of Google taking the IOS-Android war to new levels of barbarity.

    • by munch117 (214551)
      It is a malware development kit, you know. Or rather, part of one. The bad guys use tools like this to create virus-scanner-proof malware.

      1. Create 1000 random variations of your malware.
      2. Select a variation that's given a clean sheet by Virus Total. If there isn't any, just create more variations.
      3. ?? (*)
      4. Profit.

      (*) Release the malware into the wild.

    • Indeed. "This is a virus that totally uploads all your stuff to Google."
  • by Anonymous Coward

    Just right click and send all your personal files to Google. They'll keep them safe and scan them for viruses.

    Big Brother doesn't have to work hard when we so willingly hand over anything and everything.

    • by ledow (319597)

      Nobody's making you do it.

      And with Virustotal, you're free to calculate the hash yourself and go look up the URL it goes to (in fact, VirusTotal clients do this - generate a hash, lookup the hash, and only upload if it doesn't already exist).

      And why would you be uploading personal files to check for viruses? Surely your personal files are the ones you KNOW are clean? It's the random crap you download and are sent that you have to scan.

      • And why would you be uploading personal files to check for viruses? Surely your personal files are the ones you KNOW are clean? It's the random crap you download and are sent that you have to scan.

        Because doing so helps strengthen all anti-virus software which VirusTotal uses. The mistake is thinking of VirusTotal as just a big ol' multi-scanner, when under the hood it's a clearinghouse of virus and malware information for the participating vendors of detection and remedy software.

        If they get a file that

      • Nobody's making you do it.

        And with Virustotal, you're free to calculate the hash yourself and go look up the URL it goes to (in fact, VirusTotal clients do this - generate a hash, lookup the hash, and only upload if it doesn't already exist).

        And why would you be uploading personal files to check for viruses? Surely your personal files are the ones you KNOW are clean? It's the random crap you download and are sent that you have to scan.

        So what you are saying is that the only time you ever have to actually upload something - it's a file unique to you. Which is totally not a personal thing.

      • by smash (1351)
        Nobody's making ME do it, but if i send any of the content i generate to others, there's nothing stopping them uploading my content, is there?
  • by Anonymous Coward

    There's no need to upload files to Virustotal most of the time. Just calculate the MD5 or SHA-1 hash (or whatever else is supported) for the file, and search [virustotal.com] for it on Virustotal. More often than not someone else has already uploaded the exact same file very recently.

    Then again, I guess for some users uploading might actually be easier.

  • by GrahamCox (741991) on Monday May 26, 2014 @05:54PM (#47095541) Homepage
    In Objective-C of course ;-)

    - (BOOL) isKnownMacVirus:(NSURL*) url
    {
    return NO;
    }

  • This is the first step and the convenient slippery slope to a world where you will automatically send all your files needing a virus check to the server. They will reason this by saying that they can offer "better and more up-to-date service" when the system is running remotely instead of a local virus scanning program. And you will reason this by saying that "everyone else does this too" and "I have nothing to hide".
    • by smash (1351)
      Already happens... plenty of companies run Microsoft Online Protection for exchange (or whatever they call it this week) which scans all inbound and outbound mail for their domain. Oh, what you never consented to microsoft getting a copy of your files? Too bad...
  • Wow. Just went over to download the Windows version of the Uploader tool - the installer isn't digitally signed. WTF?!?!?

    I'm still shocked that so much software from legitimate companies isn't digitally signed. I do a lot of firmware development, and very few companies' installers are digitally signed (IAR, I'm looking at you). Sheesh. Even a tiny company like Saleae and the main developer of TortoiseSVN ,Stefan Küng, have digital certificates for signing code, why can't a bigger company be bother

  • Google today announced the release of VirusTotal Uploader for OS X, allowing Mac users to upload suspicious files for scanning. You can download it now directly for OS X 10.8 and 10.9 from VirusTotal (8.52MB).

"Out of register space (ugh)" -- vi

Working...