Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

Java based Malware Attack Hits MAC and PC

Sophos : 30 April, 2012  (Technical Article)
A security vulnerability in Java is providing the gateway for new malicious code that is attacking both Mac and Windows PC equipment
Java based Malware Attack Hits MAC and PC
IT security and data protection firm Sophos has identified a new malware attack that is targeting both Mac and Windows computers.  This attack is exploiting the infamous Java security vulnerability that allowed the ‘Flashback’ botnet to commandeer 600,000 Macs in April this year.

Internet users who visit compromised web pages may find themselves at risk of infection via a Java exploit that downloads malicious software onto their computer.  Patches for the Java vulnerability have been available since February 14th for Windows, Linux and Unix computers, and since early April for Macs.  However, if users have not yet patched their computer, they are still at risk of attack.

This malware attack exploits the Java vulnerability to download further malicious code on to the computer.  These downloaded programmes will then install further malicious code, decrypting either a Python script that acts as a Mac OS X backdoor, or downloading a backdoor Trojan for Windows.  This attack will allow remote hackers to take control of the Mac or PC by secretly sending and running commands, uploading code and stealing files without the user’s knowledge.

“This attack is quite different from the earlier Flashback attack, and may indicate that other cybercriminal gangs are exploring the possibilities of infecting Macs,” said Graham Cluley, senior technology consultant at Sophos.  “Certainly, whoever wrote the script has left a clue that they may be planning to make developments to their code in the future.  Malware authors have woken up to the fact that Mac owners are in fact soft targets, as many users still believe that their beloved Macs are immune.”

“Although Windows users are generally pretty good at running anti-virus protection, Mac users are only just waking up to the need,” continued Cluley.  “Up-to-date anti-virus and security patches are essential, for both Mac and Windows users, and it’s time that Mac users become responsible members of the internet community, as this is no longer just a problem for Windows.”
Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo