Apple, Mac, iOS4,...
Follow
Find tag "Flashback"
9.0K views | +7 today
Apple, Mac, iOS4, iPad, iPhone and (in)security...
Everything related to the (in)security of Apple products
Curated by Gust MEES
Your new post is loading...
Your new post is loading...
Scooped by Gust MEES
Scoop.it!

Drastic drop of Flashbackridden Macs appears premature

Drastic drop of Flashbackridden Macs appears premature | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
At least two security firms that estimated a significant drop in Mac systems infected with the datastealing Flashback trojan admit they made erroneous calls.

 

The company said its ===> count may have been distorted because a third-party sinkhole that used a “tarpitting” technique to prevent the malware from attempting to connect to subsequent domains, such as the one set up by Symantec to tally the number of infected Macs, Liam O Murchu, director of operations at the company's Security Response Center, said in an email Monday to SCMagazine.com. <===

 

Read more...

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

New Flashback variant silently infects Macs

New Flashback variant silently infects Macs | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
A new Flashback Trojan has been discovered that infects Macs without prompting the user for a password.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Noch 550.000 Macs mit Flashback verseucht

Noch 550.000 Macs mit Flashback verseucht | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Trotz gegenteiliger Meldung: Noch 550.000 Macs mit Flashback verseucht
Obwohl Zahlen von Kaspersky erst etwas anderes sagten, warnt Dr. Web davor, den Apple-Ausnahmezustand vorzeitig zu beenden. Laut seiner aktuellen Statistik seien noch immer 556.000 Macintoshs infiziert. Dieser Ansicht schließt sich auch Symantec an.

 

Sollten die Zahlen von Dr. Web korrekt sein, steht Apple noch viel Arbeit bevor. Bislang hat das Unternehmen drei Java-Updates veröffentlicht. Das jüngste soll Flashback von Macs mit OS X Lion und OS X Snow Leopard entfernen. Diese Updates sind aber nur effektiv, wenn sie auch installiert werden, was nach Untersuchungen von Sicherheitsforschern nicht alle Nutzer machen. Zudem verwenden rund 17 Prozent der Mac-Anwender eine ältere Version von Mac OS X, für die es keine Sicherheitsupdates gibt. Das entspricht rund 10 Millionen Apple-Computern.

 

Unabhängigen Sicherheitsexperten zufolge handelte es sich bei Flashback um die bislang größte Infektion von Apples Mac-Plattform.

 

===> Die Zeiten, in denen Mac OS als immun gegen Schaftsoftware aller Art galt, seien endgültig vorbei. <===

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Flashback-Welle auf Macs bereits eingedämmt?

Flashback-Welle auf Macs bereits eingedämmt? | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Die Sicherheitsexperten von Kaspersky melden, dass nur noch 30.000 Rechner mit dem Mac-Trojaner Flashback infiziert wären. Dr.Web geht hingegen von 566.000 Betroffenen aus.

 

 

 

===> Für Systeme mit einer älteren Version als Mac OS X 10.6 gibt es derzeit jedoch kein offizielles Java-Sicherheitsupdate!!! <===

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Interview : Flashback et la mécanique d'un malware

Interview : Flashback et la mécanique d'un malware | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Le retour récent dans l'actualité du malware Flashback a remis en avant les questions de sécurité autour du Mac.

 

Les auteurs de ces malware ont également un total contrôle des Mac infectés et peuvent installer et exécuter de nouveaux codes natifs OS X, via le processus de mise à jour de Flashback. Je l'ai observé dans une de mes boîtes virtuelles (un OS X fonctionnant dans une machine VMware), un binaire shell a été installé et un malfaiteur a exécuté des commandes shell sur cette machine virtuelle, pour vite s'apercevoir de la supercherie (on peut voir ces machines virtuelles comme des chèvres attachées à un piquet…, ndr). À mon avis la personne à l'autre bout avait un doute sur l'infection réalisée… et il avait raison.

 

Veuillez lire plus, très intéressant...

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac users may think they're safe from malware, but they're not

Mac users may think they're safe from malware, but they're not | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Kate Bevan: For too long Mac users have been complacent about malware – it's time they woke up to the threat from trojans like Flashback...

 

===> Mac users should 'become responsible members of the wider computing community.' <===

 

Read more...

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Java update is no protection against new SabPub Mac Trojan

Java update is no protection against new SabPub Mac Trojan | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Java update is no protection against new SabPub Mac Trojan!

 

SabPub Mac Trojan is spreading via Word documents, using an ancient vulnerability...

 

Read more...

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

SabPub : un nouveau cheval de Troie identifié sur Mac OS X

SabPub : un nouveau cheval de Troie identifié sur Mac OS X | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Repéré par des chercheurs de chez Kasperky, le malware SabPub exploite une fois encore une faille de sécurité Java dans Mac OS X via des documents Word piégés.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac OS X : après Flashback, voici le cheval de Troie SabPub

Mac OS X : après Flashback, voici le cheval de Troie SabPub | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Découvert par Kaspersky, ce nouveau malware qui cible les Mac exploite une faille de sécurité Java.

 

Le répit aura été de courte durée. À peine Apple avait-il publié une mise à jour de Java contenant un logiciel de suppression du malware Flashback qu’un nouveau fléau était découvert. Baptisé SabPub, il a été découvert par l’éditeur Kaspersky qui en a repéré deux variantes.

 

Comme Flashback, SabPub passe par une faille de sécurité de Java au moyen d’un document Word piégé. Le Mac infecté va ensuite se connecter à un site web depuis lequel sont envoyées des commandes. Un pirate peut notamment obtenir des captures d’écran du Mac de la victime.

 

Cependant, le mode de diffusion de ce malware via des documents Word piégés rend sa propagation moins puissante que celle de Flashback qui a touché 600 000 machines de par le monde.

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Symantec: Flashback malware now down to 140K machines

Symantec: Flashback malware now down to 140K machines | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

The Flashback malware is still on the decline, but the security firm says its latest estimate of infected machines is higher than expected. 

 

In a blog post today, software maker and security firm Symantec lowered its estimate of machines that still have the malware to 140,000, which is down considerably from estimates of more than 600,000 less than two weeks ago. Even so, the firm said it was expecting a lower tally.

 

Read more...

more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

FLAMING RETORT: All this new Mac malware - whose fault is it?

FLAMING RETORT: All this new Mac malware - whose fault is it? | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Flaming Retort is back, this time trying to Coole and Explayne the flames we've had from some Mac users in the past few days.

In a back-to-front way of making Mac fans feel better, I'll start bymaking everyone feel slightly worse, taking a small potshot at Windows, OS X and Linux fans alike.

 

My point here is not to prove that it is somebody's fault, but simply to remind us that perennially finding someone else to blame for our computer security woes is a bad idea. ...

 

===> Security is the responsibility of all of us: technologists, coders, mobile phone users, writers, video watchers, bloggers, Wikipedia readers, bank clerks, bicycle couriers, politicians, policemen and gardeners. <===

 

            ===> It's not your fault. It's your responsibility. <===

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Schon wieder: neuer Mac-Trojaner entdeckt

Schon wieder: neuer Mac-Trojaner entdeckt | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Die Sicherheitsexperten von Kaspersky Lab haben einen neuen Mac-Trojaner entdeckt. Die Schadsoftware heisst SabPub und verbreitet sich über Word-Dokumente.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Checking for the new PubSab malware in OS X

Checking for the new PubSab malware in OS X | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

This new minimum-threat malware development for OS X copies Flashback and suggests criminals jump on opportunistic bubbles. 

 

Recently the Flashback malware attacks on OS X gained headlines, not because of the presence of the Trojan, which had been around for some months prior to the increase in attention, but rather because it gained the possibility of installation in a drive-by-download attack that did not require any interaction from the user in order to install.


This development was made possible because of a vulnerability in Java that allowed for a maliciously crafted applet to break the Java sandbox and write files to the disk. Apple has since patched this issue and it, along with other companies, have released Flashback Trojan removal tools to combat the malware; however, in its prime, the malware did reach more than 600,000 Mac users.

 

Read more...

more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

WordPress gets updated for security issues

WordPress gets updated for security issues | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
WordPress installations received a security upgrade on Friday to patch a number of vulnerabilities.

 

The update to version 3.3.2, as well as 3.4 Beta 3, fixes issues in file uploaders Plupload and SWFUpload, and Adobe Flash embedding tool SWFObject. The new version also comes with fixes for several privilege escalation and cross-site scripting bugs.

 

Cyber criminals heavily use vulnerable WordPress sites to spread malware, and they may have been utilized in the recent Flashback trojan attacks on Mac OS X systems.

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

New Java trojan and old MS Word vulnerabilities need patching

New Java trojan and old MS Word vulnerabilities need patching | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

According to fresh warnings by security vendor Intego, another Java vulnerability is attacking Macs that haven’t been patched with Apple’s Java for OS X Lion 2012-002 and Java for Mac OS X 10.6 Update 7, released earlier this month.

 

Meanwhile, the security analysts warned that many copies of older versions of MS Word haven’t been patched and are being infected.

 

The Word vulnerability was patched by Microsoft several years ago, however, many Mac users haven’t bothered to install the patches or have turned off the automated Microsoft updates installer. According to Integro, MS Word 2004 and 2008 are vulnerable, but Word 2011 is not. In addition, the older .DOC format is vulnerable, not the .DOCX format.

 

Read more...

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Flashback Spread via Hijacked WordPress Blogs

Flashback Spread via Hijacked WordPress Blogs | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
The massive Flashback botnet of Mac machines relied on hacked and malware-rigged WordPress blog sites to spread and infect users, according to Kaspersky Lab researchers.

 

Flashback Slashed
We now know where the infection originated, and we have a number of removal tools available to get rid of the infection. But there is some disagreement on exactly how many Macs are still infected with Flashback, nearly two weeks later. Kaspersky researchers said a little over 30,000 Macs are still infected, as of Apr. 19. The biggest drop in the infections came after Apple released its final Java update to patch the flaw and remove the malware, according to Kaspersky Lab.

 

On the other hand, Symantec researchers claimed there were still 140,000 infected machines.

"The statistics from our sinkhole are showing declining numbers on a daily basis. However, we had originally believed that we would have seen a greater decline in infections at this point in time, but this has proven not to be the case," Symantec said.

 

Read more...

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Malware Flashback : l’infection serait descendue à 30 000 Mac

Malware Flashback : l’infection serait descendue à 30 000 Mac | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Selon l’éditeur de sécurité Kaspersky, il ne reste plus que 30 000 Mac infectés par le malware Flashback à la date du 19 avril, contre 600 000 une dizaine de jours plus tôt.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Flashback malware infections drop to 30,000 Macs

Flashback malware infections drop to 30,000 Macs | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
The Flashback malware threat for OS X is on a steep decline, but still underscores that Mac systems are not immune to threats. Read this blog post by Topher Kessler on MacFixIt.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

New Mac Trojan: Sabpab

New Mac Trojan: Sabpab | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

A new Trojan known as “Sabpab” could hurt Mac users who run Java and Microsoft Word. Security researchers are warning users to make sure their computers

 

===> have the latest software updates from both Apple and Microsoft, <=== and to use anti-virus software.

 

In some cases, manual removal of Sabpab may be needed.

 

Word about Sabpab comes on the heels of another nasty piece of malware, Flashback, that infected up to as many as 600,000 Macs, security experts said, by exploiting a vulnerability in Java software.

 

Apple last week issued a software-base removal tool for that malware, which can be used by criminals to steal personal information, including passwords.

 

Read more...

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

D'autres chevaux de Troie, moins graves que Flashback, ont visé Mac OS X

D'autres chevaux de Troie, moins graves que Flashback, ont visé Mac OS X | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
D'autres chevaux de Troie, moins graves que Flashback, ont visé Mac OS X - Malware - Après avoir découvert le Cheval de Troie Flashback sur Mac, les...
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Flashback botnet decline not as fast as expected

Flashback botnet decline not as fast as expected | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Given the attention that the Flashback Mac malware has received since the discovery of the 600K strong botnet of computers infected with it and the number of tools that various security firms and Apple issued for its removal, it's somewhat disheartening to hear that===> the botnet still counts around 140,000 zombies. <===

 

Read more...

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

SabPub : un nouveau trojan agressif sur Mac

SabPub : un nouveau trojan agressif sur Mac | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Alors qu'Apple et plusieurs éditeurs en sécurité viennent de publier des correctifs pour venir à bout du cheval de Troie Flashback, un nouveau malware s'invite actuellement sur Mac OS X. Son nom : Backdoor.OSX.SabPub.a.

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Macs under attack, who is safe?

Macs under attack, who is safe? | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

April 17, 2012 — Network World — It was always thought that as Apple products increased in popularity, so would the target on its back placed by cybercriminals. Always looking to take down the king of the hill, cybercriminals finally got to Apple's Macs last week with a botnet that attacked more than 600,000 machines.

 

With such an accomplishment, the question is who is really safe from these attacks? The quick answer is no one. Anonymous has proven that.

 

One expert said recently, "it's the malware lurking in the background from these attacks that is truly scary. "Right now advanced persistent malware is very expensive to do right and is not being produced by very many organizations, but it is getting cheaper, it's going to get modularized and mass produced."

 

Read more...

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

'Flashback' virus shows Macs more vulnerable

'Flashback' virus shows Macs more vulnerable | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Because Mac laptops' market share has grown so much, it appears Macs are being targeted more.

 

I hope the very legitimate sense of security Mac users have long had isn’t turning into a false sense of security.

 

“For years, Mac users have been able to believe that they are safer than the average computer user and turned their noses up at antivirus software. But as Apple’s market share has grown, so has the threat to Mac users’ security,” the Washington Post reports. Specifically, the Post was referring to a virus called “Flashback” that may have infected “up to 600,000 Macs … mostly in the United States and Canada” which seem now to be part of growing bonnet.” A botnet is a network of “bots” (also called “zombie networks”) that are basically compromised computers – infected computers that are obviously no longer controlled entirely by their owners.

 

Flashback “should be a wake-up call to those who still think that their Mac is invulnerable to attacks like this,” the Posts added.

 

The security advice offered in the article sounds a whole lot like what PC owners have been told for very a long time:

 

Read more...

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Technology News: Malware: Flashback Mac Trojan Sputters and Stalls

Technology News: Malware: Flashback Mac Trojan Sputters and Stalls | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
A week after the Flashback Trojan began running rampant on Macintosh computers, the malware appears to be in remission.
more...
No comment yet.