Apple Joins Fight Against Flashback Trojan

Apple has finally woken up and smelled the coffee about the Flashback Trojan epidemic.

“Apple is developing software that will detect and remove the Flashback malware,” the company said in a brief security bulletin posted on the Apple support website yesterday (April 10).

The Mac Flashback Trojan, first detected last September, recently evolved to exploit a vulnerability in Oracle’s Java software that Apple had left unpatched for three months.

Until April 3, any Mac that visited a website unwittingly hosting the Flashback Trojan or the Blackhole exploit kit, which also exploits the Java flaw, could have been silently infected.

[FAQ: The New Mac Virus and Apple Anti-Virus Options]

Late last week, two Russian security firms estimated that 600,000 Macs worldwide had become part of the Flashback botnet — a “zombie army” of machines that could be secretly controlled by remote “bot herders” using command-and-control servers.

One of those firms, Kaspersky Lab, told UBM TechWeb’s Dark Reading blog that the botnet numbers had been cut in half over the weekend, most likely due to efforts by Internet service providers (ISPs) to block communication with the command-and-control servers.

“In addition to the Java vulnerability, the Flashback malware relies on computer servers hosted by the malware authors to perform many of its critical functions,” Apple’s security bulletin read. “Apple is working with ISPs worldwide to disable this command-and-control network.”

In a blog posting, Mikko Hypponen of Finnish security firm F-Secure pointed out that Apple still hadn’t added Flashback detection to Xprotect, the anti-virus software built into Mac OS X 10.6 Snow Leopard and 10.7 Lion.

Hypponen also pointed out that about 20 percent of Mac users still use older versions of Mac OS X that no longer receive security updates from Apple.

Macs using the PowerPC chip architecture cannot upgrade to Snow Leopard or Lion, and will have to disable Java for Web browsers using the built-in Java Preferences utility.

In a Twitter posting today (April 11), Kaspersky Lab’s Roel Schouwenberg noted that Mac OS X 10.5 Leopard, one of the orphaned older versions, was released by Apple less than five years ago.

“Can you even imagine if MS [Microsoft] had cut XP support after 4-5 years?” Schouwenberg asked.

Microsoft plans to issue security updates for Windows XP, released in October 2001, until April 2014.

For those Mac users unwilling to wait for Apple, there are several free Flashback detection and removal tools available online. Here are some links:

F-Secure: http://www.f-secure.com/weblog/archives/00002346.html

Kaspersky detection: http://flashbackcheck.com/

Kaspersky removal tool: http://support.kaspersky.com/downloads/utils/flashfake_removal_tool.zip (UPDATE: Kaspersky has found bugs in the tool and has temporarily halted its distribution.)

Mashable, detection only: http://c-mac.me/Fc21

Mashable detection tool instructions: http://mashable.com/2012/04/05/mac-flashback-trojan-check/

In addition, all Mac users should install anti-virus software, paid or free, if they haven’t already.

Article provided by SecurityNewsDaily, a sister site to Laptopmag.com.

LEAVE A REPLY
Name*
Email* (will not be published)
Website
*Indicates required field
Comments*
Submit Comments

FIND A REVIEW
Laptops
All Product Types Accessories Cars Digital Camcorders Digital Cameras eReaders GPS Laptops MP3 & Video Players Projectors Smartphones Software Storage Tablets / MIDs VoIP Wi-Fi
All Subcategories
All Subcategories All-Purpose Budget Business Desktop Replacement Gaming Multimedia Netbook Nettop Rugged Student Tablet PCs Ultraportable
Brand
Acer Alienware Apple Archos ASUS Averatec BenQ CTL Corp. Dell Digital Storm eMachines Emtec Everex Fujitsu GammaTech Gateway General Dynamics Getac Gigabyte Hercules HP HTC iBuyPower Intel Lenovo MSI Nokia Nvidia OCZ OLPC OQO Origin Panasonic Sager Samsung Sony Sylvania Systemax TabletKiosk Toshiba Verizon Viewsonic Viliv VooDoo Workhorse PC ZT Systems
Minimum Rating
Any Rating Editor's Choice 4.5 Stars 4.0 Stars 3.5 Stars 3.0 Stars
Screen Size
10 11 12 13 14 15 16 17 18 20 4 5 6 7 8 9
Resolution
1024x576 1024x600 1024x768 1200X800 1280 x 720 1280x1024 1280x768 1280x800 1366x678 1366x768 1440x1050 1440x900 1600x768 1600x900 1680x1050 1680x945 1920x1080 1920x1200 800x400 800x480
Weight Range
10.1 - 12.0 pounds 12.1 - 14.0 pounds 14.1 - 16.0 pounds 2 lbs 2 pounds and under 2+ lbs 2.1 - 4.0 pounds 4.1 - 6.0 pounds 6.1 - 8.0 pounds 8.1 - 10.0 pounds Over 16 pounds Under 2 pounds
more options
SUBSCRIBE