Apple, Mac, iOS4,...
Follow
Find tag "Mac"
6.5K views | +0 today
Apple, Mac, iOS4, iPad, iPhone and (in)security...
Everything related to the (in)security of Apple products
Curated by Gust MEES
Your new post is loading...
Scooped by Gust MEES
Scoop.it!

Schon wieder: neuer Mac-Trojaner entdeckt

Schon wieder: neuer Mac-Trojaner entdeckt | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Die Sicherheitsexperten von Kaspersky Lab haben einen neuen Mac-Trojaner entdeckt. Die Schadsoftware heisst SabPub und verbreitet sich über Word-Dokumente.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Checking for the new PubSab malware in OS X

Checking for the new PubSab malware in OS X | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

This new minimum-threat malware development for OS X copies Flashback and suggests criminals jump on opportunistic bubbles. 

 

Recently the Flashback malware attacks on OS X gained headlines, not because of the presence of the Trojan, which had been around for some months prior to the increase in attention, but rather because it gained the possibility of installation in a drive-by-download attack that did not require any interaction from the user in order to install.


This development was made possible because of a vulnerability in Java that allowed for a maliciously crafted applet to break the Java sandbox and write files to the disk. Apple has since patched this issue and it, along with other companies, have released Flashback Trojan removal tools to combat the malware; however, in its prime, the malware did reach more than 600,000 Mac users.

 

Read more...

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Two Mac Trojans: Apple Patching Fast Enough?

Two Mac Trojans: Apple Patching Fast Enough? | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Attackers behind the Flashback and SabPub malware likely reverse-engineered a Java vulnerability patched for Windows almost two
months ago by Oracle.

 

Apple, which normally refuses to comment on any vulnerabilities in its products until after it's released a fix, broke with tradition by last week confirming that it was coding an OS X upgrade to nuke Flashback.

 

===> According to various security firms, approximately 600,000 Macs had been infected by Flashback, which makes it the largest malware infection to ever hit OS X users. <===

 

In addition, Kaspersky managed to tie the botnet to six malicious Microsoft Word documents that it's seen in the wild, two of which drop the SabPub vulnerability, and four of which drop the MaControl bot, which appears to be an earlier effort by the same virus writers. One key difference, however, is that MaControl didn't target the Java vulnerability exploited by Flashback and SabPub.

 

===> Another is that SabPub managed to remain active for about six weeks before anyone detected it. <===

 

Read more...

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Kaspersky warnt vor neuem Mac-Trojaner

Kaspersky warnt vor neuem Mac-Trojaner | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Die Sicherheitsexperten von Kaspersky warnen vor einem neuen Mac-Trojaner, der nach dem Flashback-Schädling erneut auf Apple-Anwender abzielt.

 

Der Flashback-Trojaner schaffte es vor wenigen Tagen binnen kürzester Zeit über 700.000 Macs zu infizieren und zu einem Teil eines Botnetzes zu machen. Der Schädling demonstrierte damit, dass Mac-Nutzer keineswegs sicher vor Online-Kriminellen sind.

 

Der von Kaspersky Lab neu entdeckte Schädling wurde auf den Namen SabPub getauft und verbreitet sich über Word-Dokumente.

 

Dabei wird dieses Mal die bereits bekannte Java-Schwachstelle CVE-2009-0563 ausgenutzt. Die Online-Kriminelle nutzen SabPub zum Aufbau eines Botnetzes, das unter anderem für Datenspionage genutzt wird.

 

Kaspersky warnt:"Das Schadprogramm wird via Spear Phishing – einer sehr zielgerichteten Phishing-Attacke – verbreitet.

 

Als Social-Engineering-Trick wird das Thema Tibet/Dalai Lama ausgenutzt, wie dies auch im so genannten „Lucky Cat“-Fall geschehen ist."

 

Read more...

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

New Mac malware uses Flashback Java exploit

New Mac malware uses Flashback Java exploit | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

Apple's decision to push out a Flashback malware removal tool for OS X Lion bundled with a new Java security update has proven to be rather fortunate, as a new Mac OS X threat has been discovered taking advantage of the vulnerability (CVE-2012-0507) exploited by the latest Flashback variants.

 

The security update in question configures the Java web plug-in to disable the automatic execution of Java applets in browsers, a move that should prevent users from inadvertently falling victim to similar drive-by malware attacks in the future.

 

 

In the meantime, those who haven't installed the update are at risk of getting their machines compromised by a newly detected backdoor Trojan that Kaspersky Lab researchers dubbed SabPub.

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

New Mac OS X Trojan unearthed. Call it SabPub

New Mac OS X Trojan unearthed. Call it SabPub | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
The folks at Kaspersky Lab report that there's new Mac malware in the wild, called Backdoor.OSX.SabPub.a.

 

There are at least two variants being spread through Java exploits. Read this blog post by Don Reisinger on Security & Privacy.

 

Read more...

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Five OS X security threats that fizzled

Five OS X security threats that fizzled | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
In the aftermath of Flashback—one of the highest profile malware attacks on the Mac—Ars takes a look back at other security threats that didn't quite make such a big blip on the radar.

 

===> As Apple continues to increase its share of the PC market, Macs are becoming a viable target for malware authors, sprouting a handful or two of trojans in the last decade. <===

 

Here are five in particular that were considered (by some) to be harbingers of a great malware infestation for OS X that instead proved to be more bark than bite.

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

New targeted Mac OS X Trojan requires no user interaction

New targeted Mac OS X Trojan requires no user interaction | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Another Mac OS X Trojan has been spotted in the wild, which exploits Java vulnerabilities, just like the Flashback Trojan.

 

Another Mac OS X Trojan has been spotted in the wild, which exploits Java vulnerabilities, just like the Flashback Trojan.

 

===> Also just like Flashback, this new Trojan doesn’t require any user interaction to infect your Apple Mac. <===

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple publie son correctif anti-Flashback - LogicielMac.com

Apple publie son correctif anti-Flashback - LogicielMac.com | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Après Kapersky qui propose depuis quelques jours un outil permettant de vérifier si votre Mac est infecté par le malware Flashback, et si c'est le cas, de le supprimer, Apple publie aujourd'hui son propre correctif de sécurité destiné à...
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Flashback Malware Puts Apple in Security Spotlight: Apple's Image of Invulnerability--Gone

Flashback Malware Puts Apple in Security Spotlight: Apple's Image of Invulnerability--Gone | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Increased market share coupled with Apple's lack of transparency are largely to blame for an uptick in Mac security problems, say experts.

 

Ponemon and others say the Flashback Trojan horse is the final nail in the coffin for Apple's stellar security image.

 

He says that although Microsoft juggles a much larger number of threats, it does a better job of warning customers and delivering fixes.

 

                         Read more... ===> A MUST READ! <===

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple Releases Mac Flashback Trojan Removal Tool

Apple Releases Mac Flashback Trojan Removal Tool | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple has now released a tool that removes the Flashback Trojan from infected Mac computers, according to a security update posted to Apple.com on Thursday.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple issues Trojan removal tool

Apple issues Trojan removal tool | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple has released a fresh Java update, designed to remove the Flashback Trojan malware that exposed Macs to a botnet.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

New Java update from Apple removes Flashback malware | Macworld

New Java update from Apple removes Flashback malware | Macworld | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
As promised, Apple has released a tool to remove Flashback from infected Macs.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Technology News: Malware: Flashback Mac Trojan Sputters and Stalls

Technology News: Malware: Flashback Mac Trojan Sputters and Stalls | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
A week after the Flashback Trojan began running rampant on Macintosh computers, the malware appears to be in remission.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

New version of Mac OS X Trojan exploits Word, not Java

New version of Mac OS X Trojan exploits Word, not Java | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
A second variant of the Mac OS X Trojan referred to as Backdoor.OSX.SabPub.a or SX/Sabpab-A is exploiting a Microsoft Word security hole, not the usua...
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Mac Trojan infects machines through Microsoft Office exploit

Mac Trojan infects machines through Microsoft Office exploit | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
A new OSX Trojan has been discovered – called Backdoor.OSX.SabPub.a – which uses a Java exploit which bypasses malware detection programs. It comes after the discovery of the Flashback Trojan this month.

 

According to Kaspersky Lab, the Trojan connects to a command and control server and ===> uses a Java exploit with an obfuscator to bypass malware detection programmes. <===

 

It’s the latest Mac Trojan discovered this month. Earlier, the Flashback Trojan was discovered and infected 600,000 Macs worldwide. Apple has since released software to detect and combat the Flashback Trojan.

 

Read more...

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

New version of Sabpab Mac Trojan emerges, spread via Word documents

New version of Sabpab Mac Trojan emerges, spread via Word documents | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
A new version of the Mac OS X Sabpab Trojan horse has come to light, and rather than relying upon a Java vulnerability - it appears to be exploiting malformed Word documents instead.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Did the Mac malware wake-up call fall on deaf ears?

Did the Mac malware wake-up call fall on deaf ears? | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Many Mac users still refuse to understand what the successful Flashback attack really means.

 

No one, Apple included, ever said that OS X was immune


Maybe not "immune," but Apple has run ads over the last decade strongly implying that Macs lack the malware and security problems of Windows. In fact, some of the comments I received reiterated that very notion.

 

===> Mac users are still resisting the idea that their platform has become a popular attack target and that those attacks are succeeding. <===

 

Read more to have a realistic vue ;) and stop dreaming!

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

New Mac OS X Trojan discovered

New Mac OS X Trojan discovered | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Sabpab exploits same Java vulnerability as Flashback...

 

Mac users should make sure they have applied Apple's latest Java update and installed anti-virus software after a new Trojan targeting OS X was spotted in the wild.

 

Ironically discovered on Friday 13th, the new Trojan - Sabpab - uses the same vulnerability in the OS X's Java plug-in to infect Macs, warns security firm Sophos.

 

===> It also doesn't require any user interaction to infect a system either - just like Flashback - all that needs to happen is for you to visit an infected webpage. <===

 

 

"The newly discovered Sabpab malware is in many ways a basic backdoor Trojan horse. It connects to a control server using HTTP, receiving commands from remote hackers as to what it should do.

 

The criminals behind the attack can grab screenshots from infected Macs, upload and download files, and execute commands remotely," said Graham Cluley, senior technology consultant at Sophos.

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple releases Flashback malware removal tool, for OS X Lion only

Apple releases Flashback malware removal tool, for OS X Lion only | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
In its ongoing battle against the widespread Flashback malware attack, Apple has released a standalone removal tool.

 

===> The downloadable utility is available exclusively for Mac owners running OS X Lion. It will not run on Mac OS X 10.6 (Snow Leopard) or earlier versions. <===

 

Apple has not officially acknowledged the discontinuation of support for users of pre-Snow Leopard versions of OS X. Under the “Additional information” heading in its bulletin describing the Flashback malware, the company says: “For Macs running Mac OS X v10.5 or earlier, you can better protect yourself from this malware by disabling Java in your web browser(s) preferences.”

 

Several security companies have reported the discovery of a different malware variant that appears to attack the same Java vulnerability.

 

===> Like Flashback, this new Trojan requires no user interaction to infect your Apple Mac. Kaspersky refers to it as “Backdoor.OSX.SabPub.a” while Sophos calls it at “SX/Sabpab-A.” <===

 

Read more...

 

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

SabPub Mac OS X Backdoor: Java Exploits, Targeted Attacks and Possible APT link

SabPub Mac OS X Backdoor: Java Exploits, Targeted Attacks and Possible APT link | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
we can confirm yet another Mac malware in the wild - Backdoor.OSX.SabPub.a being spread through Java exploits. This new threat is a custom OS X backdoor, which appears to have been designed for use in targeted attacks.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Java mis à jour pour éradiquer Flashback

Java mis à jour pour éradiquer Flashback | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple propose une mise à jour de Java qui permet de supprimer les diverses variantes de Flashback et modifie le comportement du plugin.
more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Sabpab, new Mac OS X backdoor Trojan horse discovered

Sabpab, new Mac OS X backdoor Trojan horse discovered | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
More Mac malware has been discovered, capable of giving remote hackers access to your Apple Mac.

Isn't it time you ran anti-virus software on your Mac?

 

And just like Flashback, the new Trojan doesn't require any user interaction to infect your Apple Mac.

 

The Sabpab Trojan horse exploits the same drive-by Java vulnerability used to create the Flashback botnet.

 

===> It's time for Mac users to wake up and smell the coffee. Mac malware is becoming a genuine issue, and cannot be ignored any longer. <===

 

more...
No comment yet.
Rescooped by Gust MEES from ICT Security-Sécurité PC et Internet
Scoop.it!

New Mac Threat, OSX.Sabpab exploiting the same Java vulnerability as #Flashback

New Mac Threat, OSX.Sabpab exploiting the same Java vulnerability as #Flashback | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it

New Mac Threat, OSX.Sabpab exploiting the same Java vulnerability as #Flashback

 

Read more...

 

more...
No comment yet.
Scooped by Gust MEES
Scoop.it!

Apple pumps out yet another Java update

Apple pumps out yet another Java update | Apple, Mac, iOS4, iPad, iPhone and (in)security... | Scoop.it
Apple has delivered - or so it says - on its promise to provide a Flashback malware removal tool, wrapped in another Java update.
more...
No comment yet.