Lock up your Pros and hide your Airs, because it turns out that one of the more notorious Mac trojans is back in action. Known as Flashback, this trojan was found to be in action about five months ago, disguising itself as a new Flash Player for Mac. It was soon identified by security researchers and the alert was raised, but now it’s back and trying not one but three different tactics to install itself on a user’s Mac.
First up is a pair of Java vulnerabilities. If those are already patched, then the trojan tries to find vulnerability in the user instead. It displays a digital signature supposedly belonging to Apple and asks for access to your computer. There are a few things fishy about this, but the average user is unlikely to pick up on them. Many people, especially if tired or distracted, could easily click “Continue” without realising.
If successfully installed, Flashback goes back to its old tricks of looking for usernames and passwords. It specifically targets banking websites, no doubt seeking information useful for identity theft.
Now, let’s talk about the good news. This version of Flashback purposely attempts to avoid systems that have an anti-virus installed, so the mere presence of security software is a boon. In addition, the method used by this trojan to intercept and report passwords will cause some software that requires network access, such as Skype, to crash. This can give you the heads-up.
Source: Intego Mac Security Blog
MakeUseOf Recommends
More articles about:
Hide 11 Comments
Hopefully this will put paid to the constant myth that Macs are immune from malware.
No sensible mac user will claim their machine is immune from any infection. What they can legitimately claim is that there is virtually no malware, trojans or viruses likely to attack a Mac.
Flashback is not new, and can’t be installed without the user first giving permission. It’s not a drive by infection.
My understanding is that an exploit of the java vulnerabilities would not require user action to be successful. Am I wrong?
No your not wrong but it would depend on which version of OS X your running. Java is not installed by default on Lion, on Snow Leopard and older it is.
Forwarding this to my parents in the hope that they will now agree to install an anti-virus
anybody have suggestions on favored AV software?
Eset Nod32 or Sophos are good AV’s for a Mac.
good riddens
damn stupid smug no good mac users
It makes me laugh how butt hurt PC users get just because someone chooses to use a more reliable computer. Take that anger out on some zombies. ;)
@ubuntuBbetter – I’d be more impressed if you could actually spell.
I think you’ll find most Mac users can :-)
Premature publicity is bteter than no publicityI guess. Maybe. At any rate, my latest secret project, is no longer secret: Phoronix ran an article about Wayland and slashdot in turn picked it up. They got the headline wrong, though, it’s not a new X server, it’s a tiny display server + compositing manager. And it’s a very young project with a lot of FIXMEs and hand waving.The core idea is that all windows are redirected, we can do all rendering client side and pass a buffer handle to the server and the compositing manager runs in the display server. One of the goals is to get an X server running on Wayland, first in a full screen window (like Xnest), then rootless, since X just isn’t going aways anytime soon. Many more details in the NOTES file of the project.