Flashback Mac trojan is back with new and improved exploit strategy

Status
Not open for further replies.
iPanik

iPanik

New Member
Thread author
Feb 28, 2011
530
9
11
35
Where the buses don't run
The "Flashback" Mac trojan is back, and it's smarter than ever. Mac security company Intego says the latest variant, Flashback.G, uses three new methods in order to make its way onto Macs, though it won't install itself at all if it detects a number of antivirus or anti-malware security programs already installed.
Click to expand...
Source
 
This thing looks like a nasty piece of kit.
I hope Apple stops their "we don't have malware" propaganda soon. As the popularity of Macs rise, that will come back to bite them.. you know where ;)
 
From that screenshot, if un-aware I would have clicked Continue.
 
Ahhh.. Java is giving headaches to the MAC users also........ maybe Oracle should do a re-think their Update system as the current one isn't really doing its job and most users have out-dated Java installations.

Earth said:
From that screenshot, if un-aware I would have clicked Continue.
Click to expand...

java-certificate.png


I'm not really sure if anyone would click it...... when they see the 'not trusted' alert in red..... however the MAC owners are known to be (like Prorootect said) blind when it comes to Security/Malware so you never know... Anyway +1 for the Apple Inc idea....

If I'm not mistaken it's really easy to remove malware from MAC..it's just like on Android (from the built in uninstaller).
 
Wow, people still think Mac has no viruses? This type of attitude will eventually rip Macs apart and destroy the userbase. Windows however openly admits it. They give you free AV software, so I don't mind it. Apple, please stop your propaganda and give us the info. Mac users eventually need to come to the realization there are viruses.
 
Jack said:
I'm not really sure if anyone would click it...... when they see the 'not trusted' alert in red..... however the MAC owners are known to be (like Prorootect said) blind when it comes to Security/Malware so you never know...
Click to expand...

See:

The security firm on their official blog stated, "Most users won't understand what this means, and click on 'Continue' to allow the installation to continue."

Those Mac systems which are powered by earlier OS X versions, for example Snow Leopard, are mostly in danger of this attack as Java comes in the installation package itself. Intego has suggested that Macs running on OS X 10.6 must update their Java immediately.

However, at the same time the firm also mentioned, "Nevertheless, many Macs are getting infected by the social engineering trick of the bogus certificate purporting to be signed by Apple."
Click to expand...
Source
 
Status
Not open for further replies.

You may also like...