Exclusive Deal While supplies last, save 40% off over 40 iPhone 5 and iPhone 4/4S cases and chargers as well as Samsung S III cases at Kensington.com. Use coupon code 'SAVE40%' at checkout to receive this exclusive discount.      
toggle

AAPL Stock: 442.14 ( 0 )

http://www.macnn.com/articles/12/04/18/now.under.100000.units.falling.fast/

Flashback.K-infected Macs dropping rapidly, Symantec finds

updated 03:00 am EDT, Wed April 18, 2012

 

Now under 100,000 units, falling fast


The Java-exploiting malware OSX.Flashback.K variant has ceased to be a meaningful threat to Mac owners, and the number of infected Macs has dropped to one-sixth its high point in just over a week, reports utility vendor Symantec. The malware, which was the most successful attack thus far in the Mac world due to a slow updating of Java, was never much of an actual security threat but did manage to reach around one percent of installed base, a record for malware penetration.

A number of factors have played a role in reversing the malware's course, primarily some quick action from Apple once the Trojan's infection rate began to rapidly increase. In part, however, Apple's lethargy in pushing out an update to Java (Oracle had corrected the flaw about six weeks earlier) is at least partially why the malware was so successful in the first place.

Still, the company was finally roused to become aggressive about the problem, and quickly posted three slightly-revised updates to Java as well as its own detection and removal tool, including a version for Lion users who hadn't installed Java. It also went after servers that the malware was attempting to reach, asking authorities for help in shutting down suspect servers.

Symantec says that the number of still-infected Macs is estimated to be under 100,000, which it measures through attempts to contact the disabled command-and-control servers that had hoped to employ exploited Macs in a "botnet" to search for identity information and send it to external sources. The servers were very quickly identified and disabled thanks to early efforts by authorities and anti-virus companies who have experience dealing with previous Flashback variants.

The vulnerabilities that were exploited by Flashback have now also been seen in Microsoft Word documents and a new variation of the Flashback exploit called Sabpab, but these are considered to be extremely minor and diminishing threats. The primary danger is from older Macs still in service that cannot update to the latest versions of Java. Users of those OS X versions are recommended to disable Java entirely.






by MacNN Staff

Post tools:

TAGS :

 security, malware, Apple, Flashback

Related Articles

Recent Articles

toggle

Comments

  1. Blairmc

    Fresh-Faced Recruit

    Joined: Sep 2003

    0
    04/18, 06:38am | report spam | Reply |

    Ammunition

    For the haters

  1. DaJoNel

    Fresh-Faced Recruit

    Joined: Aug 2010

    +7
    04/18, 10:32am | report spam | (1 reply) Reply |

    What haters?

    It is undeniable that OS X is penetrable, however any critics must realize that all security issues rely on 3rd-party, outdated software that is really not under Apple's control. Not only that, but in just a few days, the malware is nearly abolished due to Apple's quick response. OS X still prevails!

  1. testudo

    Forum Regular

    Joined: Aug 2001

    -2
    04/18, 01:02pm | report spam | (2 replies) Reply |

    Re: What haters?

    It is undeniable that OS X is penetrable, however any critics must realize that all security issues rely on 3rd-party, outdated software that is really not under Apple's control.

    Apple releases updates when it feels like it, Java is under their control as they still release it with Snow Leopard (only in Lion did they 'remove' it).

    Not only that, but in just a few days, the malware is nearly abolished due to Apple's quick response. OS X still prevails!

    What 'quick response'? This malware has been out there for WEEKS, not days. Apple only recently released patches for it, and a remover. And only for some variants of their OS.

    And this is the 'K' variant of this malware. Where was apple's quick response to A-J?

    Apple only releases an update to the latest version of their OS and one generation back. And then, they only release patches that will work off the latest released update to that. So, if you're running 10.6.7 because 10.6.8 broke something, or 10.7.1 because of the same reason, you don't get the fix.

Login Here

Not a member of the MacNN forums? Register now for free.

 
close
Photo
toggle

Network Headlines

toggle

Most Popular

MacNN Sponsor

Recent Reviews

MaxUpgrades MaxConnect for 2006-2008 Mac Pro

Nobody outside of Cupertino's privileged bunch knows the future of the Mac Pro line for sure. Despite Apple's reluctance to tell us wh ...

Brother HL-3170CDW LED Printer

We've mentioned before that we are far from a paperless society. For now, at least, there are tasks that require a piece of paper for ...

HTC One

It is hard to overstate just how critically important the HTC One is to the Taiwanese company’s fortunes. Despite its alarming decline ...

toggle

Most Commented

 

Popular News