Follow Us

We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message

Sabpab Mac OS X Trojan discovered

New Trojan exploits same Java vulnerability as Flashback

Article comments

A new Trojan targeting Mac OS X by exploiting a Java vulnerability has been spotted in the wild.

Discoverd on Friday 13 April, the new Sabpab Trojan uses the same vulnerability in the OS X's Java plug-in to infect Macs, warns security firm Sophos.

It also doesn't require any user interaction to infect a system either - just like Flashback - all that needs to happen is for you to visit an infected webpage.

"The newly discovered Sabpab malware is in many ways a basic backdoor Trojan horse. It connects to a control server using HTTP, receiving commands from remote hackers as to what it should do. The criminals behind the attack can grab screenshots from infected Macs, upload and download files, and execute commands remotely," said Graham Cluley, senior technology consultant at Sophos.

If you have updated Java on your Mac then you will be protected from the new threat, and most Mac anti-virus software will protect against Sabpab as well. Sales of security software for Mac apparently jumped after the discovery of the Flashback Trojan earlier this month.

Flashback was estimated to have infected more than half a million Macs worldwide and even managed to infect some systems in Cupertino, according to some reports, though this was never officially admitted by Apple.

However, Apple did come under fire for 'dragging its feet' as the vulnerability in Java that it exploits had been known of for more than six weeks before Flashback was discovered.

Apple has released a Flashback removal tool, though it will only work on the most common variants of the Trojan. Several security firms have also issued a tool to remove Flashback from Macs, though Kaspersky Lab was forced to withdraw its tool after it was found to be erasing user settings.



Share:

More from Techworld

More relevant IT news

Comments



Send to a friend

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

Techworld White Papers

Choose – and Choose Wisely – the Right MSP for Your SMB

End users need a technology partner that provides transparency, enables productivity, delivers...

Download Whitepaper

10 Effective Habits of Indispensable IT Departments

It’s no secret that responsibilities are growing while budgets continue to shrink. Download this...

Download Whitepaper

Gartner Magic Quadrant for Enterprise Information Archiving

Enterprise information archiving is contributing to organisational needs for e-discovery and...

Download Whitepaper

Advancing the state of virtualised backups

Dell Software’s vRanger is a veteran of the virtualisation specific backup market. It was the...

Download Whitepaper

Techworld UK - Technology - Business

Innovation, productivity, agility and profit

Watch this on demand webinar which explores IT innovation, managed print services and business agility.

Techworld Mobile Site

Access Techworld's content on the move

Get the latest news, product reviews and downloads on your mobile device with Techworld's mobile site.

Find out more...

From Wow to How : Making mobile and cloud work for you

On demand Biztech Briefing - Learn how to effectively deliver mobile work styles and cloud services together.

Watch now...

Site Map

* *