Will Apple’s New Software Help Macs Fight Flashback Trojan?
By Shruti Hirur | April 12, 2012 4:43 PM EST
More than half-a-million Mac computers have reportedly been infested with the Flashback Trojan and a study has been conducted, by Russian anti-virus vendor Dr Web, to establish details of the spreading Trojan BackDoor.Flashback on systems running Mac OS X. According to Symantec, the US has the highest concentration of Flashback infections with 47.3 percent, followed by Canada with 13 percent and UK with 6.1 percent.
BackDoor.Flashback.39 infects the systems after a user gets redirected to a bogus site via compromised resource or a traffic distribution system.
According to Apple Insider, Apple Inc. has confirmed it is working on software to detect and remove the Flashback malware. The company has provided a support document which describes the software. It also mentions that a Java update was released on 3 April which fixes the Java security flaw for systems running on OS X v10.7 and Mac OS X v10.6. Mac systems can run the software update at any time to check for the recent updates. In addition, the users can get the automatic checks for software updates every week; these are set by default. However, it is recommended to make the changes in the Software Update preferences.
According to site, the tech giant is developing software which will detect and remove the Flashback malware. A Trojan could give full control of an infected computer to another system, allowing a hacker to remotely access the victim's computer system. Apple has been working with Internet Service Providers (ISPs) worldwide to disable command and control networks, which are being utilised by the hackers to exploit the malware.
"In addition to the Java vulnerability, the Flashback malware depends on computer servers which are hosted by the malware authors to perform any of its critical functions," Apple elaborated.
Macs running on Macs OS X v10.5 or earlier can protect their systems from malware by disabling Java in web browser preferences. Moreover, according to PC Mag, the number of systems getting infected has declined in the last 24 hours - from a reported 380,000 on 10 April to 270,000 over the last 24 hours.
According to PC Mag Security Watch, these malicious Web sites exploited a specific Java vulnerability (CVE-2012-0507) that allowed the Flashback.K to download itself without alerting the user. Once installed, the malware displayed a dialog window to ask the user for the administrative password. Even if users didn't enter the password, it was too late, as the malware was already resident on the computer.
To contact the editor, e-mail:
Join the Conversation
- 5 Proofs Russia is Geared-Up for Shooting War with U.S. and Can Win Future Nuclear Showdown
- Target’s ‘Surprise Doorbusters’ Black Friday 2014 Deals On TV Sets, Entertainment Centres, DVD Players And More
- IKEA Black Friday 2014 Ad Includes Discounts On Home Furnishings, Appliances, Kitchen Designs, Beds, Sofas, Mattresses And Toys
- T-Mobile’s Black Friday 2014 Deals On Apple iPhone 6, Samsung Galaxy Note 4/Edge, Nexus 6, HTC One M8, LG G3, iPad Air 2 And Mini 3
- ISIS Drug Transit From Afghanistan To Europe Confirmed By Russia: Money Goes Into Terror Funding And In New Recruitments
- Bill Clinton At It Again, Caught By Camera In Jerusalem Peeking At Woman’s Breast
- Walmart Canada Black Friday 2014 Ad For Nov. 28, 2014 Up To Dec. 1, 2014 Includes Savings On The iPad Mini 16GB And The Beats Solo HD Drenched Headphones