 Your new post is loading...
Your new post is loading...
A new Trojan dubbed 'OSX/Crisis' has been discovered which takes sneaky to a whole new level for infecting Mac OS X systems. Andrew, director of security operations for nCircle, declared, “Mac malware is no joke. Despite Apple’s marketing hype about security, it should be obvious to everyone that their devices are susceptible to malware. Earlier this year the Flashback Trojan infected hundreds of thousands of Macs. The new OSX/Crisis malware is another Apple wake up call.” For many Mac users, though, there is still a disconnect between realizing that the threat landscape has shifted, and actually doing something about it. ===> Mac users need to embrace the mindset that has been conditioned into Windows users over time, and install antimalware and other security tools to proactively protect against new attacks. <=== ===> “Mac users are going to have to learn to be more security minded and Apple needs to step up and offer users practical, effective security support.” <=== Read more, a MUST: http://www.pcworld.com/businesscenter/article/259963/mac_os_x_targeted_by_clever_new_trojan.html#tk.rss_main
Depuis les aventures du malware Flashback sur Mac OS X, la sécurité des Mac est redevenue un sujet à sensations. Les éditeurs de solutions de sécurité s’en sont donnés à cœur joie, l’occasion leur étant fournie de mettre en pratique des ... Lire plus...
Selon Symantec, les auteurs du malware Flashback ont pu gagner jusqu'à 10 000 $ par jour au plus fort de l'infection, qui a touché environ 1 % des Mac en circulation. ===> Un business lucratif qui explique pourquoi, sa popularité aidant, le Mac est lui aussi devenu une proie pour les hackers. <===
With the recent glut of high profile Mac-based malware like MacDefender and Flashback, it’s easy to forget that Macintosh computers (and Mac malware) have been kicking around for more than thirty years – longer, even, than Windows malware. In fact, the first documented Mac virus actually predated some of the first PC viruses by a good four years. While conventional wisdom has always assumed that Macs are inherently safer than PCs, wider adoption of Macs in recent years has given rise to new and more sophisticated threats, with many suggesting that Apple’s honeymoon with malware authors may be over. As this slideshow of Mac Malware through the years shows, however, Apple machines are no strangers to malicious software. Read more and don't forget "Nobody is perfect ;)"...
New details about the extent of the Mac-specific Flashback malware epidemic emerged today.
Mac computers are not immune to viruses... SECURITY VENDOR Sophos' senior technology consultant Graham Cluley warns that it's time for Apple users to take notice of the threats facing Mac OS X operating systems by securing their computers with antivirus software.
Source: The Inquirer (http://s.tt/1abnN)
Read more and watch the video...
Malware like Flashback, which has infected hundreds of thousands of Macs, could become commonplace as cyber attackers target Apple...
One in five Mac computers is likely to carry Windows malware, but only one in 36 is likely to be infected with malware specifically designed for the Mac OS X, according to study performed by antivirus firm Sophos.
At least two security firms that estimated a significant drop in Mac systems infected with the datastealing Flashback trojan admit they made erroneous calls. The company said its ===> count may have been distorted because a third-party sinkhole that used a “tarpitting” technique to prevent the malware from attempting to connect to subsequent domains, such as the one set up by Symantec to tally the number of infected Macs, Liam O Murchu, director of operations at the company's Security Response Center, said in an email Monday to SCMagazine.com. <=== Read more...
A new Flashback Trojan has been discovered that infects Macs without prompting the user for a password.
Trotz gegenteiliger Meldung: Noch 550.000 Macs mit Flashback verseucht
Obwohl Zahlen von Kaspersky erst etwas anderes sagten, warnt Dr. Web davor, den Apple-Ausnahmezustand vorzeitig zu beenden. Laut seiner aktuellen Statistik seien noch immer 556.000 Macintoshs infiziert. Dieser Ansicht schließt sich auch Symantec an. Sollten die Zahlen von Dr. Web korrekt sein, steht Apple noch viel Arbeit bevor. Bislang hat das Unternehmen drei Java-Updates veröffentlicht. Das jüngste soll Flashback von Macs mit OS X Lion und OS X Snow Leopard entfernen. Diese Updates sind aber nur effektiv, wenn sie auch installiert werden, was nach Untersuchungen von Sicherheitsforschern nicht alle Nutzer machen. Zudem verwenden rund 17 Prozent der Mac-Anwender eine ältere Version von Mac OS X, für die es keine Sicherheitsupdates gibt. Das entspricht rund 10 Millionen Apple-Computern. Unabhängigen Sicherheitsexperten zufolge handelte es sich bei Flashback um die bislang größte Infektion von Apples Mac-Plattform. ===> Die Zeiten, in denen Mac OS als immun gegen Schaftsoftware aller Art galt, seien endgültig vorbei. <===
Die Sicherheitsexperten von Kaspersky melden, dass nur noch 30.000 Rechner mit dem Mac-Trojaner Flashback infiziert wären. Dr.Web geht hingegen von 566.000 Betroffenen aus. ===> Für Systeme mit einer älteren Version als Mac OS X 10.6 gibt es derzeit jedoch kein offizielles Java-Sicherheitsupdate!!! <===
|
After further analysis, more information has emerged about the Morcut Mac OS X malware which was discovered this week. Clearly OSX/Morcut-A was created with spying in mind, as its code includes hooks to control/monitor the following operations: mouse coordinates
instant messengers (for instance, Skype [including call data], Adium and MSN Messenger)
location
internal webcam
clipboard contents
key presses
running applications
web URLs
screenshots
internal microphone
calendar data & alerts
device information
address book contents
===> In short, if this malware managed to infect your Mac computer it could learn an awful lot about you, and potentially steal information which could read your private messages and conversations, and open your email and other online accounts. <===
Read more: http://nakedsecurity.sophos.com/2012/07/26/mac-malware-spies-morcut-crisis/?utm_source=feedburner&amp;utm_medium=feed&amp;utm_campaign=Feed%3A+nakedsecurity+%28Naked+Security+-+Sophos%29
A new Mac Trojan - dubbed Crisis or Morcut - has been spotted but, luckily, not in the wild. Security firms Intego and Sophos have picked up samples from Virus Total, which shares the samples submitted to it with AV developers, and the fact that it could be found only there shows that the threat is extremely low risk. Nevertheless, the malware itself is far from harmless. It can compromise the last two version of Apple's OS X (10.6 and 10.7) and it doesn't require a password to be entered to do it. Read more: http://www.net-security.org/malware_news.php?id=2197&amp;utm_source=dlvr.it&amp;utm_medium=twitter
Oxford Muses on Mac Flashback: Worst Outbreak Since Blaster So how bad was last month's Mac Flashback outbreak and who suffered the most? Our guess: it was bad, and university IT help desks. And it looks like our guess might not be far off the mark. ===> Oxford University Computing Services' network security team (aka OxCERT) has written that they dealt "with what is probably the biggest outbreak since Blaster struck the Windows world all the way back in the summer of 2003." <=== OxCERT dealt with around 1000 incidents for Blaster. They've seen several hundred Flashback incidents… "and they keep on coming." Read more...
Microsoft has detected a new piece of malware targeting Apple OS X computers that exploits a vulnerability in the Office productivity suite patched nearly three years ago. Microsoft advised those who use Microsoft Office 2004 or 2008 for Mac or the Open XML File Format Converter for Mac to ensure those products have applied the patch. ===> "In conclusion, we can see that Mac OS X is not safe from malware," Oh wrote. "Statistically speaking, as this operating system gains in consumer usage, attacks on the platform will increase." <=== Read more...
A pair of high-profile malware attacks have given Apple a crash course in security response. ===> A MUST READ for Apple users!!! <===
Cyber criminals using same exploit to infect Windows and Mac OS machines with new malware...
Apple is a decade behind Microsoft in terms of Mac malware security, research firm Kaspersky has contentiously suggested, something it predicts the Cupertino firm will quickly realize in a fast-approaching storm of rogue software. “I think they are ten years behind Microsoft in terms of security” company CEO Eugene Kaspersky told Computer Business Review at a security event this week, predicting a torrent of malware is incoming for OS X and that Apple will have to pull its boots up in order to handle it. Read more...
A new, sneakier variant of the Flashback malware was uncovered yesterday by the French security firm Intego. Read more...
Fresher students at University of Iowa lately were unable to access the other UI computers when the Flashback virus reportedly infected the campus network.
|
Scooped by
Gust MEES
|
WordPress installations received a security upgrade on Friday to patch a number of vulnerabilities. The update to version 3.3.2, as well as 3.4 Beta 3, fixes issues in file uploaders Plupload and SWFUpload, and Adobe Flash embedding tool SWFObject. The new version also comes with fixes for several privilege escalation and cross-site scripting bugs. Cyber criminals heavily use vulnerable WordPress sites to spread malware, and they may have been utilized in the recent Flashback trojan attacks on Mac OS X systems.
According to fresh warnings by security vendor Intego, another Java vulnerability is attacking Macs that haven’t been patched with Apple’s Java for OS X Lion 2012-002 and Java for Mac OS X 10.6 Update 7, released earlier this month. Meanwhile, the security analysts warned that many copies of older versions of MS Word haven’t been patched and are being infected. The Word vulnerability was patched by Microsoft several years ago, however, many Mac users haven’t bothered to install the patches or have turned off the automated Microsoft updates installer. According to Integro, MS Word 2004 and 2008 are vulnerable, but Word 2011 is not. In addition, the older .DOC format is vulnerable, not the .DOCX format. Read more...
The massive Flashback botnet of Mac machines relied on hacked and malware-rigged WordPress blog sites to spread and infect users, according to Kaspersky Lab researchers. Flashback Slashed
We now know where the infection originated, and we have a number of removal tools available to get rid of the infection. But there is some disagreement on exactly how many Macs are still infected with Flashback, nearly two weeks later. Kaspersky researchers said a little over 30,000 Macs are still infected, as of Apr. 19. The biggest drop in the infections came after Apple released its final Java update to patch the flaw and remove the malware, according to Kaspersky Lab. On the other hand, Symantec researchers claimed there were still 140,000 infected machines. "The statistics from our sinkhole are showing declining numbers on a daily basis. However, we had originally believed that we would have seen a greater decline in infections at this point in time, but this has proven not to be the case," Symantec said. Read more...
|
