Author Topic: Mac Flashback Trojan Exploits Unpatched Java Vulnerability  (Read 377 times)

0 Members and 1 Guest are viewing this topic.

Offline Bugbatter

  • Microsoft® MVP
  • Administrator
  • Diamond Member
  • Posts: 8453
To quote Eugene Kaspersky on Twitter: "...the age of massive MacOS attacks has started." Kaspersky Labs has independently replicated Drweb's results and confirmed the 600K count of Flashback-infected Macs.

http://news.drweb.com/show/?i=2341&lng=en&c=14
http://www.securelist.com/en/blog/208193441/Flashfake_Mac_OS_X_botnet_confirmed

A patch is now available. If you're visiting your parents or friends this holiday weekend, and they have a Mac, help them update, disable, or remove their Java client plugin/installation.

Related: http://news.cnet.com/8301-13579_3-57410476-37/apples-security-code-of-silence-a-big-problem/

Edit: I like the graphic used in the Forbes article: http://www.forbes.com/sites/andygreenberg/2012/04/06/researchers-confirm-flashback-trojan-infects-600000-macs-being-used-for-clickfraud/
« Last Edit: April 06, 2012, 01:18:05 pm by Bugbatter »




Microsoft MVP - Consumer Security

Offline Bugbatter

  • Microsoft® MVP
  • Administrator
  • Diamond Member
  • Posts: 8453
Re: Mac Flashback Trojan Exploits Unpatched Java Vulnerability
« Reply #1 on: April 06, 2012, 05:39:21 pm »
Check if your Mac has the Flashback (weakness in Java) Malware

http://www.geek.com/articles/apple/check-if-your-mac-has-the-flashback-trojan-2012046/


Microsoft MVP - Consumer Security

Offline Bugbatter

  • Microsoft® MVP
  • Administrator
  • Diamond Member
  • Posts: 8453
Re: Mac Flashback Trojan Exploits Unpatched Java Vulnerability
« Reply #2 on: April 08, 2012, 06:33:17 pm »
Regarding Apple updates:
See  http://support.apple.com/kb/HT1222


Microsoft MVP - Consumer Security

Offline Bugbatter

  • Microsoft® MVP
  • Administrator
  • Diamond Member
  • Posts: 8453
Re: Mac Flashback Trojan Exploits Unpatched Java Vulnerability
« Reply #3 on: April 10, 2012, 06:30:27 am »
Are Macs safer than PCs?

Mikko Hypponen, Chief Research Officer at F-Secure, put it very well when he said that, proportionally, the Flashback Trojan was as widespread amongst Macs as the notorious Conficker worm had been amongst Windows-based PCs.

    "Flashback would now have infected 1% of Macs, making Flashback roughly as common for Mac as Conficker was for Windows" macworld.com/article/116625…
    —
    Mikko Hypponen (@mikko) April 06, 2012

The attack has left a lingering question: how secure are Apple Macs?

Complete article:
http://nakedsecurity.sophos.com/2012/04/10/macs-safer-than-pcs/


Microsoft MVP - Consumer Security