Giveaway: Bracketron Case If outdoor adventures are in your future this summer, enter to win a Bracketron Sport Case with Mount Strap from MacNN and keep that iPhone, iPod or other electronic device safe from the elements.      
toggle

AAPL Stock: 454.74 ( + 1.77 )

http://www.macnn.com/articles/12/04/18/now.under.100000.units.falling.fast/

Flashback.K-infected Macs dropping rapidly, Symantec finds

updated 03:00 am EDT, Wed April 18, 2012

 

Now under 100,000 units, falling fast


The Java-exploiting malware OSX.Flashback.K variant has ceased to be a meaningful threat to Mac owners, and the number of infected Macs has dropped to one-sixth its high point in just over a week, reports utility vendor Symantec. The malware, which was the most successful attack thus far in the Mac world due to a slow updating of Java, was never much of an actual security threat but did manage to reach around one percent of installed base, a record for malware penetration.

A number of factors have played a role in reversing the malware's course, primarily some quick action from Apple once the Trojan's infection rate began to rapidly increase. In part, however, Apple's lethargy in pushing out an update to Java (Oracle had corrected the flaw about six weeks earlier) is at least partially why the malware was so successful in the first place.

Still, the company was finally roused to become aggressive about the problem, and quickly posted three slightly-revised updates to Java as well as its own detection and removal tool, including a version for Lion users who hadn't installed Java. It also went after servers that the malware was attempting to reach, asking authorities for help in shutting down suspect servers.

Symantec says that the number of still-infected Macs is estimated to be under 100,000, which it measures through attempts to contact the disabled command-and-control servers that had hoped to employ exploited Macs in a "botnet" to search for identity information and send it to external sources. The servers were very quickly identified and disabled thanks to early efforts by authorities and anti-virus companies who have experience dealing with previous Flashback variants.

The vulnerabilities that were exploited by Flashback have now also been seen in Microsoft Word documents and a new variation of the Flashback exploit called Sabpab, but these are considered to be extremely minor and diminishing threats. The primary danger is from older Macs still in service that cannot update to the latest versions of Java. Users of those OS X versions are recommended to disable Java entirely.






by MacNN Staff

Post tools:

TAGS :

 security, malware, Apple, Flashback

Related Articles

Recent Articles

toggle

Comments

  1. Blairmc

    Fresh-Faced Recruit

    Joined: Sep 2003

    0
    04/18, 06:38am | report spam | Reply |

    Ammunition

    For the haters

  1. DaJoNel

    Fresh-Faced Recruit

    Joined: Aug 2010

    +7
    04/18, 10:32am | report spam | (1 reply) Reply |

    What haters?

    It is undeniable that OS X is penetrable, however any critics must realize that all security issues rely on 3rd-party, outdated software that is really not under Apple's control. Not only that, but in just a few days, the malware is nearly abolished due to Apple's quick response. OS X still prevails!

  1. testudo

    Forum Regular

    Joined: Aug 2001

    -2
    04/18, 01:02pm | report spam | (2 replies) Reply |

    Re: What haters?

    It is undeniable that OS X is penetrable, however any critics must realize that all security issues rely on 3rd-party, outdated software that is really not under Apple's control.

    Apple releases updates when it feels like it, Java is under their control as they still release it with Snow Leopard (only in Lion did they 'remove' it).

    Not only that, but in just a few days, the malware is nearly abolished due to Apple's quick response. OS X still prevails!

    What 'quick response'? This malware has been out there for WEEKS, not days. Apple only recently released patches for it, and a remover. And only for some variants of their OS.

    And this is the 'K' variant of this malware. Where was apple's quick response to A-J?

    Apple only releases an update to the latest version of their OS and one generation back. And then, they only release patches that will work off the latest released update to that. So, if you're running 10.6.7 because 10.6.8 broke something, or 10.7.1 because of the same reason, you don't get the fix.

Login Here

Not a member of the MacNN forums? Register now for free.

 
close
Photo
toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

HTC One

It is hard to understate just how critically important the HTC One is to the Taiwanese company’s fortunes. Despite its alarming declin ...

Samsung Galaxy S 4

Samsung's new flagship Android smartphone, the Galaxy S 4, faces even stiffer competition than its popular predecessor. With a five-in ...

HighPoint RocketU 1144CM USB 3.0 PCI-E card

Apple was one of the first -- if not the first -- major computer manufacturers to provide then-fledgling USB support at the expense of ...

toggle

Most Commented

 

Popular News