Technology, Discovery & Innovation NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
This ad will display for the next 20 seconds. Click for more information, or
Home Computing Digital Life Discovery Space More Topics...
Advertisement
Free Gartner Report:
Drive innovation & collaboration
with the "Everyone's IT" approach.

View the research report
Data Security
Average Rating:
Rate this article:  
Attention, Macs! More Trojan Malware Is Gunning for You

Attention, Macs! More Trojan Malware Is Gunning for You
By Barry Levine

Share
Share on Facebook Share on Twitter Share on Linkedin Share on Google Plus

The Flashback Trojan and MacDefender, combined with this latest Trojan malware, could represent a turning point in Mac's reputation for security. While there had previously been demonstrations of Mac-targeted proof-of-concept viruses, as well as Office macro viruses and several other minor threats, Macs were generally ignored as a security target.
 



If you still harbor the delusion that Macs are relatively impervious to malware, yet another Mac-targeted attack should disabuse you of that notion. A security firm has located another Trojan that is designed for OS X, and, like another recent Trojan, it uses vulnerabilities in Java.

The newly discovered Trojan, called Backdoor.OSX.SabPub.a, allows the attacker to connect the infected machine to a Web site that can commandeer the Mac's operations, enabling remote execution of commands.

Under Development?

Kaspersky Lab's Costin Raiu, who reported the new Trojan on Saturday, noted on the company's SecureList blog that its "Java exploits appear to be pretty standard," but added that they have "been obfuscated using ZelixKlassMater" in order to avoid detection from anti-malware products.

Raiu said that it is currently unclear how many machines have been infected by this Trojan, but he noted that the backdoor functionality and other factors indicate that "it is most likely used in targeted attacks." He noted several reports that suggest the attack was "launched through e-mails containing a URL pointing to two Web sites hosting the exploit, located in U.S. and Germany."

Raiu also said that this Trojan's backdoor "has been compiled with debug information," which makes analysis easy and could indicate it is still under development.

Raiu has recommended 10 tips for boosting Mac security. These include creating a non-administrator account for everyday activities, using a sandboxed-Web browser such as Chrome, uninstalling the standalone Flash Player, uninstalling Java or at least disabling it in browsers, and using Office 2011 instead of 2008.

Flashback Malware Removal Tool

He also recommends using Mac's built-in Keychain password manager, enabling full disk encryption or FileVault, upgrading to Adobe Reader 10 or later, and installing a good security solution. For the latter, as might be expected, Raiu recommends Kaspersky Anti-Virus for Mac.

On a related front, Apple on Friday released the Flashback malware removal tool, in addition to the Java update it issued last week.

Earlier this month, Russian security firm Dr. Web said that more than 500,000 Macs had been infected by a Flashback Trojan, meaning that about 1 percent of the total installed base of Apple computers had been hit.

Some observers think the Flashback Trojan was created by the developers of last year's MacDefender attack. The Flashback Trojan is a drive-by download, which uses a Java vulnerability in Java-enabled browsers to install itself without user intervention.

The Flashback Trojan and MacDefender could represent a turning point in Mac's reputation for security. While there had previously been demonstrations of Mac-targeted proof-of-concept viruses, as well as Office macro viruses and several other minor threats, Macs were generally ignored as a target in favor of Windows, a much bigger target.

Charles King, an analyst with Pund-IT, noted that Microsoft has an "ongoing relationship" with Java owner Oracle, and so can pinpoint a Java-related problem and supply a fix relatively quickly.

But Apple, King said, "apparently doesn't have that kind of relationship with Oracle," and Apple's response "took longer" than was needed. In the future, with the prospects of more Mac-targeted attacks looming, King said the computer maker needs to respond "more transparently" and more quickly if it doesn't want to lose customers, particularly in enterprises.
 

Tell Us What You Think
Comment:

Name:

LP Bowden:

Posted: 2012-04-24 @ 6:33am PT
I find the 10 tips beyond my comprehension and ability to execute!
Need much simpler advice.



Get Powerful App Acceleration with Cisco. In a world where time is money, you need to accelerate the speed at which data moves through your data center. Cisco UCS Invicta delivers powerful, easy-to-manage application acceleration for data-intensive workloads. So you can make decisions faster and outpace the competition. Learn More.


 Data Security
1.   Gmail Hackable by Android Apps
2.   UPS Stores Hit by Data Breach
3.   9 Norton Security Products Are Now 1
4.   Data Stolen from U.S. Health Network
5.   FBI Cybersquad To Add Agents


advertisement
UPS Stores Hit by Data Breach
Biz must adopt better security measures.
Average Rating:
Data Stolen from U.S. Health Network
Chinese hackers targeted hospital firm.
Average Rating:
9 Norton Security Products Are Now 1
Symantec takes software-as-service tack.
Average Rating:


advertisement
Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
Researchers Find Malicious Android Apps Can Hack Gmail
A new study shows that a weakness in the Android mobile operating system can be used to steal sensitive, personal info from unwitting users. Gmail proved to be the easiest app to attack; Amazon, the hardest.
 
UPS Stores in 24 States Hit by Data Breach
Big Brown has been breached. UPS said that about 105,000 customer transactions at 51 of its UPS Store locations in 24 states could have been compromised between January and August.
 
Cost of Target Data Breach: $148 Million Plus Loss of Trust
The now infamous Target data breach is still costing the company -- and its shareholders -- plenty. In fact, the retailing giant forecast the December 2013 incident cost shareholders $148 million.
 

Enterprise Hardware Spotlight
Acer's New Desktop Box Rides the Chrome OS Wave
Filling out its Chrome OS line, Acer is following the introduction of a larger Chromebook line earlier this month with a new tiny $180 desktop Chromebox and also a smaller Chromebook.
 
Feds OK $2.3 Billion IBM-Lenovo x86 Server Deal
IBM and Lenovo are celebrating U.S. approval of their x86-based server deal, having cleared some major security hurdles. The deal makes Lenovo a major player for enterprise data centers.
 
Three New Lenovo PCs Aimed at Business Users
With businesses wanting computing solutions that do more for less money, Lenovo has unveiled three new desktop PCs that it says offer solid computing at a budget-minded price.
 

Mobile Technology Spotlight
Screen Shortage Briefly Puts Brakes on iPhone 6
RAM? Check. Antenna switch? Check. Screen? Oops. Parts suppliers for Apple have found themselves facing a shortage of screens for the new iPhone 6 as next month's release date for the new smartphone looms.
 
Bounty Offered to Coders for Oculus Rift Bugs
Coders who find bugs in software for the Oculus Rift VR immersive headset could receive a reward of at least $500 under Facebook's White Hat bounty program. Facebook acquired Oculus in March.
 
Google Glass Adds Voice Access to Phone Contacts
The latest update to Google Glass will let users access their top 20 phone contacts with voice commands alone. A user can then choose a phone call, Google hangouts, e-mail or text messaging.
 

Navigation
Sci-Tech Today
Home/Top News | Computing | Digital Life | Discovery | Space | Innovation | Health | Science News
Environment
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.