Apple, Mac, iOS4,...
Follow
Find tag "Mac-Backdoor"
8.9K views | +0 today
Apple, Mac, iOS4, iPad, iPhone and (in)security...
Everything related to the (in)security of Apple products
Curated by Gust MEES
Your new post is loading...
Your new post is loading...
Scooped by Gust MEES
Scoop.it!

Flashback-Welle auf Macs bereits eingedämmt?

Flashback-Welle auf Macs bereits eingedämmt? | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Die Sicherheitsexperten von Kaspersky melden, dass nur noch 30.000 Rechner mit dem Mac-Trojaner Flashback infiziert wären. Dr.Web geht hingegen von 566.000 Betroffenen aus.

 

 

 

===> Für Systeme mit einer älteren Version als Mac OS X 10.6 gibt es derzeit jedoch kein offizielles Java-Sicherheitsupdate!!! <===

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Interview : Flashback et la mécanique d'un malware

Interview : Flashback et la mécanique d'un malware | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Le retour récent dans l'actualité du malware Flashback a remis en avant les questions de sécurité autour du Mac.

 

Les auteurs de ces malware ont également un total contrôle des Mac infectés et peuvent installer et exécuter de nouveaux codes natifs OS X, via le processus de mise à jour de Flashback. Je l'ai observé dans une de mes boîtes virtuelles (un OS X fonctionnant dans une machine VMware), un binaire shell a été installé et un malfaiteur a exécuté des commandes shell sur cette machine virtuelle, pour vite s'apercevoir de la supercherie (on peut voir ces machines virtuelles comme des chèvres attachées à un piquet…, ndr). À mon avis la personne à l'autre bout avait un doute sur l'infection réalisée… et il avait raison.

 

Veuillez lire plus, très intéressant...

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac users may think they're safe from malware, but they're not

Mac users may think they're safe from malware, but they're not | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Kate Bevan: For too long Mac users have been complacent about malware – it's time they woke up to the threat from trojans like Flashback...

 

===> Mac users should 'become responsible members of the wider computing community.' <===

 

Read more...

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Java update is no protection against new SabPub Mac Trojan

Java update is no protection against new SabPub Mac Trojan | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Java update is no protection against new SabPub Mac Trojan!

 

SabPub Mac Trojan is spreading via Word documents, using an ancient vulnerability...

 

Read more...

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

SabPub : un nouveau cheval de Troie identifié sur Mac OS X

SabPub : un nouveau cheval de Troie identifié sur Mac OS X | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Repéré par des chercheurs de chez Kasperky, le malware SabPub exploite une fois encore une faille de sécurité Java dans Mac OS X via des documents Word piégés.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac OS X : après Flashback, voici le cheval de Troie SabPub

Mac OS X : après Flashback, voici le cheval de Troie SabPub | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Découvert par Kaspersky, ce nouveau malware qui cible les Mac exploite une faille de sécurité Java.

 

Le répit aura été de courte durée. À peine Apple avait-il publié une mise à jour de Java contenant un logiciel de suppression du malware Flashback qu’un nouveau fléau était découvert. Baptisé SabPub, il a été découvert par l’éditeur Kaspersky qui en a repéré deux variantes.

 

Comme Flashback, SabPub passe par une faille de sécurité de Java au moyen d’un document Word piégé. Le Mac infecté va ensuite se connecter à un site web depuis lequel sont envoyées des commandes. Un pirate peut notamment obtenir des captures d’écran du Mac de la victime.

 

Cependant, le mode de diffusion de ce malware via des documents Word piégés rend sa propagation moins puissante que celle de Flashback qui a touché 600 000 machines de par le monde.

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Symantec: Flashback malware now down to 140K machines

Symantec: Flashback malware now down to 140K machines | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

The Flashback malware is still on the decline, but the security firm says its latest estimate of infected machines is higher than expected. 

 

In a blog post today, software maker and security firm Symantec lowered its estimate of machines that still have the malware to 140,000, which is down considerably from estimates of more than 600,000 less than two weeks ago. Even so, the firm said it was expecting a lower tally.

 

Read more...

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Macs under attack, who is safe?

Macs under attack, who is safe? | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

April 17, 2012 — Network World — It was always thought that as Apple products increased in popularity, so would the target on its back placed by cybercriminals. Always looking to take down the king of the hill, cybercriminals finally got to Apple's Macs last week with a botnet that attacked more than 600,000 machines.

 

With such an accomplishment, the question is who is really safe from these attacks? The quick answer is no one. Anonymous has proven that.

 

One expert said recently, "it's the malware lurking in the background from these attacks that is truly scary. "Right now advanced persistent malware is very expensive to do right and is not being produced by very many organizations, but it is getting cheaper, it's going to get modularized and mass produced."

 

Read more...

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

'Flashback' virus shows Macs more vulnerable

'Flashback' virus shows Macs more vulnerable | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Because Mac laptops' market share has grown so much, it appears Macs are being targeted more.

 

I hope the very legitimate sense of security Mac users have long had isn’t turning into a false sense of security.

 

“For years, Mac users have been able to believe that they are safer than the average computer user and turned their noses up at antivirus software. But as Apple’s market share has grown, so has the threat to Mac users’ security,” the Washington Post reports. Specifically, the Post was referring to a virus called “Flashback” that may have infected “up to 600,000 Macs … mostly in the United States and Canada” which seem now to be part of growing bonnet.” A botnet is a network of “bots” (also called “zombie networks”) that are basically compromised computers – infected computers that are obviously no longer controlled entirely by their owners.

 

Flashback “should be a wake-up call to those who still think that their Mac is invulnerable to attacks like this,” the Posts added.

 

The security advice offered in the article sounds a whole lot like what PC owners have been told for very a long time:

 

Read more...

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Technology News: Malware: Flashback Mac Trojan Sputters and Stalls

Technology News: Malware: Flashback Mac Trojan Sputters and Stalls | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
A week after the Flashback Trojan began running rampant on Macintosh computers, the malware appears to be in remission.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

New version of Mac OS X Trojan exploits Word, not Java

New version of Mac OS X Trojan exploits Word, not Java | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
A second variant of the Mac OS X Trojan referred to as Backdoor.OSX.SabPub.a or SX/Sabpab-A is exploiting a Microsoft Word security hole, not the usua...
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac Trojan infects machines through Microsoft Office exploit

Mac Trojan infects machines through Microsoft Office exploit | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
A new OSX Trojan has been discovered – called Backdoor.OSX.SabPub.a – which uses a Java exploit which bypasses malware detection programs. It comes after the discovery of the Flashback Trojan this month.

 

According to Kaspersky Lab, the Trojan connects to a command and control server and ===> uses a Java exploit with an obfuscator to bypass malware detection programmes. <===

 

It’s the latest Mac Trojan discovered this month. Earlier, the Flashback Trojan was discovered and infected 600,000 Macs worldwide. Apple has since released software to detect and combat the Flashback Trojan.

 

Read more...

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

New version of Sabpab Mac Trojan emerges, spread via Word documents

New version of Sabpab Mac Trojan emerges, spread via Word documents | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
A new version of the Mac OS X Sabpab Trojan horse has come to light, and rather than relying upon a Java vulnerability - it appears to be exploiting malformed Word documents instead.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Malware Flashback : l’infection serait descendue à 30 000 Mac

Malware Flashback : l’infection serait descendue à 30 000 Mac | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Selon l’éditeur de sécurité Kaspersky, il ne reste plus que 30 000 Mac infectés par le malware Flashback à la date du 19 avril, contre 600 000 une dizaine de jours plus tôt.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Flashback malware infections drop to 30,000 Macs

Flashback malware infections drop to 30,000 Macs | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
The Flashback malware threat for OS X is on a steep decline, but still underscores that Mac systems are not immune to threats. Read this blog post by Topher Kessler on MacFixIt.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

New Mac Trojan: Sabpab

New Mac Trojan: Sabpab | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

A new Trojan known as “Sabpab” could hurt Mac users who run Java and Microsoft Word. Security researchers are warning users to make sure their computers

 

===> have the latest software updates from both Apple and Microsoft, <=== and to use anti-virus software.

 

In some cases, manual removal of Sabpab may be needed.

 

Word about Sabpab comes on the heels of another nasty piece of malware, Flashback, that infected up to as many as 600,000 Macs, security experts said, by exploiting a vulnerability in Java software.

 

Apple last week issued a software-base removal tool for that malware, which can be used by criminals to steal personal information, including passwords.

 

Read more...

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

D'autres chevaux de Troie, moins graves que Flashback, ont visé Mac OS X

D'autres chevaux de Troie, moins graves que Flashback, ont visé Mac OS X | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
D'autres chevaux de Troie, moins graves que Flashback, ont visé Mac OS X - Malware - Après avoir découvert le Cheval de Troie Flashback sur Mac, les...
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Flashback botnet decline not as fast as expected

Flashback botnet decline not as fast as expected | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Given the attention that the Flashback Mac malware has received since the discovery of the 600K strong botnet of computers infected with it and the number of tools that various security firms and Apple issued for its removal, it's somewhat disheartening to hear that===> the botnet still counts around 140,000 zombies. <===

 

Read more...

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

SabPub : un nouveau trojan agressif sur Mac

SabPub : un nouveau trojan agressif sur Mac | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Alors qu'Apple et plusieurs éditeurs en sécurité viennent de publier des correctifs pour venir à bout du cheval de Troie Flashback, un nouveau malware s'invite actuellement sur Mac OS X. Son nom : Backdoor.OSX.SabPub.a.

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac Trojan 'SabPub' Proves Cybercriminals Actively Target OS X

Mac Trojan 'SabPub' Proves Cybercriminals Actively Target OS X | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

"SabPub" proves Macs are now targets of Advanced Persistant Threats (APTs), a persistent type of cyber attack operated by cyber criminals, Kaspersky Lab confirmed.

 

In an update to the ongoing SabPub saga, Kaspersky's researchers reported some unusual activity once the SabPub payload was dropped in its machine bait over the weekend.

 

===> The attackers were actively analyzing the computer's contents, clearly searching for something: <===

 

Read more...

 

more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

FLAMING RETORT: All this new Mac malware - whose fault is it?

FLAMING RETORT: All this new Mac malware - whose fault is it? | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Flaming Retort is back, this time trying to Coole and Explayne the flames we've had from some Mac users in the past few days.

In a back-to-front way of making Mac fans feel better, I'll start bymaking everyone feel slightly worse, taking a small potshot at Windows, OS X and Linux fans alike.

 

My point here is not to prove that it is somebody's fault, but simply to remind us that perennially finding someone else to blame for our computer security woes is a bad idea. ...

 

===> Security is the responsibility of all of us: technologists, coders, mobile phone users, writers, video watchers, bloggers, Wikipedia readers, bank clerks, bicycle couriers, politicians, policemen and gardeners. <===

 

            ===> It's not your fault. It's your responsibility. <===

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Schon wieder: neuer Mac-Trojaner entdeckt

Schon wieder: neuer Mac-Trojaner entdeckt | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Die Sicherheitsexperten von Kaspersky Lab haben einen neuen Mac-Trojaner entdeckt. Die Schadsoftware heisst SabPub und verbreitet sich über Word-Dokumente.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Checking for the new PubSab malware in OS X

Checking for the new PubSab malware in OS X | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

This new minimum-threat malware development for OS X copies Flashback and suggests criminals jump on opportunistic bubbles. 

 

Recently the Flashback malware attacks on OS X gained headlines, not because of the presence of the Trojan, which had been around for some months prior to the increase in attention, but rather because it gained the possibility of installation in a drive-by-download attack that did not require any interaction from the user in order to install.


This development was made possible because of a vulnerability in Java that allowed for a maliciously crafted applet to break the Java sandbox and write files to the disk. Apple has since patched this issue and it, along with other companies, have released Flashback Trojan removal tools to combat the malware; however, in its prime, the malware did reach more than 600,000 Mac users.

 

Read more...

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Two Mac Trojans: Apple Patching Fast Enough?

Two Mac Trojans: Apple Patching Fast Enough? | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Attackers behind the Flashback and SabPub malware likely reverse-engineered a Java vulnerability patched for Windows almost two
months ago by Oracle.

 

Apple, which normally refuses to comment on any vulnerabilities in its products until after it's released a fix, broke with tradition by last week confirming that it was coding an OS X upgrade to nuke Flashback.

 

===> According to various security firms, approximately 600,000 Macs had been infected by Flashback, which makes it the largest malware infection to ever hit OS X users. <===

 

In addition, Kaspersky managed to tie the botnet to six malicious Microsoft Word documents that it's seen in the wild, two of which drop the SabPub vulnerability, and four of which drop the MaControl bot, which appears to be an earlier effort by the same virus writers. One key difference, however, is that MaControl didn't target the Java vulnerability exploited by Flashback and SabPub.

 

===> Another is that SabPub managed to remain active for about six weeks before anyone detected it. <===

 

Read more...

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Kaspersky warnt vor neuem Mac-Trojaner

Kaspersky warnt vor neuem Mac-Trojaner | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Die Sicherheitsexperten von Kaspersky warnen vor einem neuen Mac-Trojaner, der nach dem Flashback-Schädling erneut auf Apple-Anwender abzielt.

 

Der Flashback-Trojaner schaffte es vor wenigen Tagen binnen kürzester Zeit über 700.000 Macs zu infizieren und zu einem Teil eines Botnetzes zu machen. Der Schädling demonstrierte damit, dass Mac-Nutzer keineswegs sicher vor Online-Kriminellen sind.

 

Der von Kaspersky Lab neu entdeckte Schädling wurde auf den Namen SabPub getauft und verbreitet sich über Word-Dokumente.

 

Dabei wird dieses Mal die bereits bekannte Java-Schwachstelle CVE-2009-0563 ausgenutzt. Die Online-Kriminelle nutzen SabPub zum Aufbau eines Botnetzes, das unter anderem für Datenspionage genutzt wird.

 

Kaspersky warnt:"Das Schadprogramm wird via Spear Phishing – einer sehr zielgerichteten Phishing-Attacke – verbreitet.

 

Als Social-Engineering-Trick wird das Thema Tibet/Dalai Lama ausgenutzt, wie dies auch im so genannten „Lucky Cat“-Fall geschehen ist."

 

Read more...

more...
No comment yet.