Pages: [1]   Go Down

Author Topic: Computer virus targets Macs  (Read 3238 times)

Slobodan Blagojevic

  • Sr. Member
  • ****
  • Offline Offline
  • Posts: 18090
  • When everyone thinks the same, nobody thinks
    • My website
Re: Computer virus targets Macs
« Reply #1 on: April 05, 2012, 10:31:01 am »

I would take anything coming from a Russian source with a huge grain of salt ;)

Justan

  • Sr. Member
  • ****
  • Offline Offline
  • Posts: 1928
    • Justan-Elk.com
Re: Computer virus targets Macs
« Reply #2 on: April 05, 2012, 11:08:12 am »

^ It's good to interpret most notifications of virus threats with suspicion, yet, if the manufacturer (Apple) releases a patch, expressly to address the particular vulnerability, that suggests there is a basis for concern.

Or perhaps you are implying that PC World, who published the article, Computer World (cited in a link in the article) and Apple, who released the patch are not credible?



BJL

  • Sr. Member
  • ****
  • Offline Offline
  • Posts: 6600
Computer trojan targets Macs: avoiding Java applets (and Flash Player?)
« Reply #3 on: April 05, 2012, 02:13:33 pm »

The number of infections might be hyped, but the wise course of action for most users (Windows, Mac or GUU/Linux) is the same regardless, and it is mostly about avoiding the outdated approach of having powerful software run-time systems used in web-browsers; mainly running Java Applets or Adobe Flash content.

1. Disable Java Applets in web browsers. (In Safari, go to Preferences > Security). On Mac OS versions 10.6 and above 10.7 and future versions, simply do not install Java in the first place.

2. For good measure, try to do the same with Flash Player, but that is more widely needed than Java Applets, for now. (This attack uses a Java weakness, but Flash Player weaknesses keep happening too: having a web browser or email system set up to automatically download and run software when all you do is visit a website or open an email message is a bit crazy: even if Java and Flash Player try to be safe, holes keep being found.)

3. If, like me, you occasionally need to use Java Applets, handle with care: enable the browser's ability to run Java Applets as needed; disable when done. Ditto for Flash Player?

4. Since (3) is annoying, discourage the use of any run-times in browsers, like Java Applets or Flash Player: these are out-dated insecure approaches. Fortunately, both Microsoft and Apple are pushing in this direction with IE 10 and Safari. (And of course, the iPad and all iOS devices are safe from this sort of attack, due to the notorious total prohibition of run-time systems like Flash Player.)


One thing I am not clear on: it seems that this trojan is dependent on the browser running Java Applets, rather than more general enabling of running Java programs, but is this true, or does it work simplify having Java operative on the computer? I often use locally installed Java software, but very rarely use Java Applets via a browser.
« Last Edit: April 05, 2012, 04:13:22 pm by BJL »
Logged

John.Murray

  • Sr. Member
  • ****
  • Offline Offline
  • Posts: 886
    • Images by Murray
Re: Computer virus targets Macs
« Reply #4 on: April 05, 2012, 07:16:51 pm »

This is exactly where the "tech" press falls short; the item in question is a fake Adobe Flash installer thats been around since last fall.  You'll find it on unpatched Wordpress sites - the installer itself need cooperation from the eyes and finger of the person viewing it.

The installer itself is just a delivery device - the payload can be anything, taking advantages of vulnerablities on any platform.....

The latest version of flash finally has the option of automatically installing updates (i believe 6-8 so far tbhis year?) good news for all of us......

« Last Edit: April 05, 2012, 07:27:27 pm by John.Murray »
Logged

K.C.

  • Sr. Member
  • ****
  • Offline Offline
  • Posts: 671
Re: Computer virus targets Macs
« Reply #5 on: April 06, 2012, 12:09:45 am »

There's a patch. Problem solved.

Note to self: Go back to taking pictures and enjoy life. Leave the endless debate for those who enjoy that sort of thing.
Logged

Ellis Vener

  • Sr. Member
  • ****
  • Offline Offline
  • Posts: 2151
    • http://www.ellisvener.com
Re: Computer virus targets Macs
« Reply #6 on: April 06, 2012, 12:25:38 pm »

There's a patch. Problem solved.

Note to self: Go back to taking pictures and enjoy life. Leave the endless debate for those who enjoy that sort of thing.

Agree 100%.
Logged

Kirk Gittings

  • Sr. Member
  • ****
  • Offline Offline
  • Posts: 1561
    • http://www.KirkGittings.com
Re: Computer virus targets Macs
« Reply #7 on: April 06, 2012, 12:54:43 pm »

But the patch doesn't help if you already have the malware. No?
Logged
Thanks,
Kirk Gittings

Jeremy Roussak

  • Administrator
  • Sr. Member
  • *****
  • Offline Offline
  • Posts: 8961
    • site
Re: Computer virus targets Macs
« Reply #8 on: April 06, 2012, 01:27:56 pm »

But the patch doesn't help if you already have the malware. No?
There are instructions here on how to check whether or not you have the infection and how to remove it if you have.

Bear in mind that the makers of malware protection software have a vested interest in sowing as much FUD1 as they can. The fact that Apple have released a patch demonstrates only that the vulnerability exists.

Jeremy

1Fear, Uncertainty and Doubt
Logged

BJL

  • Sr. Member
  • ****
  • Offline Offline
  • Posts: 6600
Computer trojan targets Macs
« Reply #9 on: April 09, 2012, 10:48:01 am »

Some good sources on this are
http://arstechnica.com/apple/news/2012/04/how-to-check-forand-get-rid-ofa-mac-flashback-infection.ars
http://www.macworld.com/article/1166254/what_you_need_to_know_about_the_flashback_trojan.html
http://tidbits.com/article/12918 (with some specific Firefox and Chrome info)
and far hardcore technical details
http://www.f-secure.com/v-descs/trojan-downloader_osx_flashback_i.shtml

One tip I like for the future, both both Windows and Mac users, is not only disabling Java Applets but also uninstalling Flash Player and instead running Flash content only in Chrome, which now has a sand-boxed built-in Flash Player, safer than the browser plug-ins.


P. S. It is a trojan horse, not a virus: there is a significant difference, in that you still have to something slightly unwise to ever get affected by a trojan. However, maybe the real trojan horses these days are browser plug-ins with their own run-times, like the Java Applet player and Flash Player plug-ins!
« Last Edit: April 09, 2012, 09:47:52 pm by BJL »
Logged
Pages: [1]   Go Up