 Your new post is loading...
Your new post is loading...
|
Scooped by
Gust MEES
|
This new minimum-threat malware development for OS X copies Flashback and suggests criminals jump on opportunistic bubbles. Recently the Flashback malware attacks on OS X gained headlines, not because of the presence of the Trojan, which had been around for some months prior to the increase in attention, but rather because it gained the possibility of installation in a drive-by-download attack that did not require any interaction from the user in order to install.
This development was made possible because of a vulnerability in Java that allowed for a maliciously crafted applet to break the Java sandbox and write files to the disk. Apple has since patched this issue and it, along with other companies, have released Flashback Trojan removal tools to combat the malware; however, in its prime, the malware did reach more than 600,000 Mac users.
Read more...
|
|
Scooped by
Gust MEES
|
Attackers behind the Flashback and SabPub malware likely reverse-engineered a Java vulnerability patched for Windows almost two
months ago by Oracle. Apple, which normally refuses to comment on any vulnerabilities in its products until after it's released a fix, broke with tradition by last week confirming that it was coding an OS X upgrade to nuke Flashback. ===> According to various security firms, approximately 600,000 Macs had been infected by Flashback, which makes it the largest malware infection to ever hit OS X users. <=== In addition, Kaspersky managed to tie the botnet to six malicious Microsoft Word documents that it's seen in the wild, two of which drop the SabPub vulnerability, and four of which drop the MaControl bot, which appears to be an earlier effort by the same virus writers. One key difference, however, is that MaControl didn't target the Java vulnerability exploited by Flashback and SabPub. ===> Another is that SabPub managed to remain active for about six weeks before anyone detected it. <=== Read more...
|
|
Scooped by
Gust MEES
|
Die Sicherheitsexperten von Kaspersky warnen vor einem neuen Mac-Trojaner, der nach dem Flashback-Schädling erneut auf Apple-Anwender abzielt. Der Flashback-Trojaner schaffte es vor wenigen Tagen binnen kürzester Zeit über 700.000 Macs zu infizieren und zu einem Teil eines Botnetzes zu machen. Der Schädling demonstrierte damit, dass Mac-Nutzer keineswegs sicher vor Online-Kriminellen sind. Der von Kaspersky Lab neu entdeckte Schädling wurde auf den Namen SabPub getauft und verbreitet sich über Word-Dokumente. Dabei wird dieses Mal die bereits bekannte Java-Schwachstelle CVE-2009-0563 ausgenutzt. Die Online-Kriminelle nutzen SabPub zum Aufbau eines Botnetzes, das unter anderem für Datenspionage genutzt wird. Kaspersky warnt:"Das Schadprogramm wird via Spear Phishing – einer sehr zielgerichteten Phishing-Attacke – verbreitet. Als Social-Engineering-Trick wird das Thema Tibet/Dalai Lama ausgenutzt, wie dies auch im so genannten „Lucky Cat“-Fall geschehen ist." Read more...
|
|
Scooped by
Gust MEES
|
Apple's decision to push out a Flashback malware removal tool for OS X Lion bundled with a new Java security update has proven to be rather fortunate, as a new Mac OS X threat has been discovered taking advantage of the vulnerability (CVE-2012-0507) exploited by the latest Flashback variants. The security update in question configures the Java web plug-in to disable the automatic execution of Java applets in browsers, a move that should prevent users from inadvertently falling victim to similar drive-by malware attacks in the future. In the meantime, those who haven't installed the update are at risk of getting their machines compromised by a newly detected backdoor Trojan that Kaspersky Lab researchers dubbed SabPub.
|
|
Scooped by
Gust MEES
|
The folks at Kaspersky Lab report that there's new Mac malware in the wild, called Backdoor.OSX.SabPub.a. There are at least two variants being spread through Java exploits. Read this blog post by Don Reisinger on Security & Privacy. Read more...
|
|
Scooped by
Gust MEES
|
In the aftermath of Flashback—one of the highest profile malware attacks on the Mac—Ars takes a look back at other security threats that didn't quite make such a big blip on the radar. ===> As Apple continues to increase its share of the PC market, Macs are becoming a viable target for malware authors, sprouting a handful or two of trojans in the last decade. <=== Here are five in particular that were considered (by some) to be harbingers of a great malware infestation for OS X that instead proved to be more bark than bite.
|
|
Scooped by
Gust MEES
|
Another Mac OS X Trojan has been spotted in the wild, which exploits Java vulnerabilities, just like the Flashback Trojan. Another Mac OS X Trojan has been spotted in the wild, which exploits Java vulnerabilities, just like the Flashback Trojan. ===> Also just like Flashback, this new Trojan doesn’t require any user interaction to infect your Apple Mac. <===
|
|
Scooped by
Gust MEES
|
Après Kapersky qui propose depuis quelques jours un outil permettant de vérifier si votre Mac est infecté par le malware Flashback, et si c'est le cas, de le supprimer, Apple publie aujourd'hui son propre correctif de sécurité destiné à...
|
|
Scooped by
Gust MEES
|
Increased market share coupled with Apple's lack of transparency are largely to blame for an uptick in Mac security problems, say experts. Ponemon and others say the Flashback Trojan horse is the final nail in the coffin for Apple's stellar security image. He says that although Microsoft juggles a much larger number of threats, it does a better job of warning customers and delivering fixes. Read more... ===> A MUST READ! <===
|
|
Scooped by
Gust MEES
|
Apple has now released a tool that removes the Flashback Trojan from infected Mac computers, according to a security update posted to Apple.com on Thursday.
|
|
Scooped by
Gust MEES
|
Apple has released a fresh Java update, designed to remove the Flashback Trojan malware that exposed Macs to a botnet.
|
|
Scooped by
Gust MEES
|
As promised, Apple has released a tool to remove Flashback from infected Macs.
|
|
Scooped by
Gust MEES
|
There are millions of Mac users who are running vulnerable old versions of Java, which are being exploited by the Flashback malware. ===> "50% of all visitors of our Online #FlashbackChecker http://flashbackcheck.com are running a vulnerable version of Java," Aleks Gostev, chief security expert at Kaspersky said on Twitter Wednesday. <===
|
|
|
Scooped by
Gust MEES
|
A second variant of the Mac OS X Trojan referred to as Backdoor.OSX.SabPub.a or SX/Sabpab-A is exploiting a Microsoft Word security hole, not the usua...
|
|
Scooped by
Gust MEES
|
A new OSX Trojan has been discovered – called Backdoor.OSX.SabPub.a – which uses a Java exploit which bypasses malware detection programs. It comes after the discovery of the Flashback Trojan this month. According to Kaspersky Lab, the Trojan connects to a command and control server and ===> uses a Java exploit with an obfuscator to bypass malware detection programmes. <=== It’s the latest Mac Trojan discovered this month. Earlier, the Flashback Trojan was discovered and infected 600,000 Macs worldwide. Apple has since released software to detect and combat the Flashback Trojan. Read more...
|
|
Scooped by
Gust MEES
|
A new version of the Mac OS X Sabpab Trojan horse has come to light, and rather than relying upon a Java vulnerability - it appears to be exploiting malformed Word documents instead.
|
|
Scooped by
Gust MEES
|
Many Mac users still refuse to understand what the successful Flashback attack really means. No one, Apple included, ever said that OS X was immune
Maybe not "immune," but Apple has run ads over the last decade strongly implying that Macs lack the malware and security problems of Windows. In fact, some of the comments I received reiterated that very notion.
===> Mac users are still resisting the idea that their platform has become a popular attack target and that those attacks are succeeding. <=== Read more to have a realistic vue ;) and stop dreaming!
|
|
Scooped by
Gust MEES
|
Sabpab exploits same Java vulnerability as Flashback... Mac users should make sure they have applied Apple's latest Java update and installed anti-virus software after a new Trojan targeting OS X was spotted in the wild. Ironically discovered on Friday 13th, the new Trojan - Sabpab - uses the same vulnerability in the OS X's Java plug-in to infect Macs, warns security firm Sophos. ===> It also doesn't require any user interaction to infect a system either - just like Flashback - all that needs to happen is for you to visit an infected webpage. <=== "The newly discovered Sabpab malware is in many ways a basic backdoor Trojan horse. It connects to a control server using HTTP, receiving commands from remote hackers as to what it should do. The criminals behind the attack can grab screenshots from infected Macs, upload and download files, and execute commands remotely," said Graham Cluley, senior technology consultant at Sophos.
|
|
Scooped by
Gust MEES
|
In its ongoing battle against the widespread Flashback malware attack, Apple has released a standalone removal tool. ===> The downloadable utility is available exclusively for Mac owners running OS X Lion. It will not run on Mac OS X 10.6 (Snow Leopard) or earlier versions. <=== Apple has not officially acknowledged the discontinuation of support for users of pre-Snow Leopard versions of OS X. Under the “Additional information” heading in its bulletin describing the Flashback malware, the company says: “For Macs running Mac OS X v10.5 or earlier, you can better protect yourself from this malware by disabling Java in your web browser(s) preferences.” Several security companies have reported the discovery of a different malware variant that appears to attack the same Java vulnerability. ===> Like Flashback, this new Trojan requires no user interaction to infect your Apple Mac. Kaspersky refers to it as “Backdoor.OSX.SabPub.a” while Sophos calls it at “SX/Sabpab-A.” <=== Read more...
|
|
Scooped by
Gust MEES
|
we can confirm yet another Mac malware in the wild - Backdoor.OSX.SabPub.a being spread through Java exploits. This new threat is a custom OS X backdoor, which appears to have been designed for use in targeted attacks.
|
|
Scooped by
Gust MEES
|
Apple propose une mise à jour de Java qui permet de supprimer les diverses variantes de Flashback et modifie le comportement du plugin.
|
|
Scooped by
Gust MEES
|
More Mac malware has been discovered, capable of giving remote hackers access to your Apple Mac.
Isn't it time you ran anti-virus software on your Mac? And just like Flashback, the new Trojan doesn't require any user interaction to infect your Apple Mac. The Sabpab Trojan horse exploits the same drive-by Java vulnerability used to create the Flashback botnet. ===> It's time for Mac users to wake up and smell the coffee. Mac malware is becoming a genuine issue, and cannot be ignored any longer. <===
New Mac Threat, OSX.Sabpab exploiting the same Java vulnerability as #Flashback Read more...
|
|
Scooped by
Gust MEES
|
Apple has delivered - or so it says - on its promise to provide a Flashback malware removal tool, wrapped in another Java update.
|
|
Scooped by
Gust MEES
|
This Java security update removes the most common variants of the Flashback malware. ...
|
