Follow Us

We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message

Mac Flashback flaw re-used by new malware campaign

Python bites

Article comments

Malware criminals are on the hunt for Mac victims again, repurposing the Java-based vulnerability used by the Flashback bot to push a new drive-by web attack, security firm Sophos has reported.

It’s a malware tactic that is taken for granted in the Windows world. A vulnerability in a common software interface – in this case Java – is hit multiple times by different malware campaigns, usually in quick succession.

The difference this time is that the attack is cunningly cross-platform, hitting Mac and Windows users.

If encountering an unpatched Windows system, the attack installs a backdoor whereas for Mac computers the attackers download a Python script to perform the same function. Although not as sophisticated, the latter still gives the hackers a lot of file-stealing and remote power over the Mac.

“This attack is quite different from the earlier Flashback attack, and may indicate that other cybercriminal gangs are exploring the possibilities of infecting Mac computers,” commented Graham Cluley of Sophos.

“Although Windows users are generally pretty good at running anti-virus protection, Mac users are only just waking up to the need,” said Cluley.

The good news is that the CVE-2012-0507 vulnerability will have been patched by many users in the aftermath of Flashback’s publicity spike; the bad news is that vulnerability is recent enough that some won’t have patched it at all.

The determination to hit Mac users using cross-platform exploits can probably be traced back to the mostly-ignored ’Boonana’ Trojan from October 2010, the first time malware writers had set out to attack Macs using the same design they’d use to hit Windows.

For Mac users who don’t want to stop using Java (some will find it inconvenient to do so), the price will be more such attacks. Java has been spotted as a Mac weakness, partly because it isn’t currently patched quickly by Apple and partly because its users leave their computers unprotected.

Expect more attacks targeting the current crop of flaws as well as future ones.


More from Techworld

More relevant IT news


jennifer john said: This attack is quite different from the earlier Flashback attack and may indicate that other cybercriminal gangs are exploring the possibilities of infecting Mac computers

Send to a friend

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

Techworld White Papers

Choose – and Choose Wisely – the Right MSP for Your SMB

End users need a technology partner that provides transparency, enables productivity, delivers...

Download Whitepaper

10 Effective Habits of Indispensable IT Departments

It’s no secret that responsibilities are growing while budgets continue to shrink. Download this...

Download Whitepaper

Gartner Magic Quadrant for Enterprise Information Archiving

Enterprise information archiving is contributing to organisational needs for e-discovery and...

Download Whitepaper

Advancing the state of virtualised backups

Dell Software’s vRanger is a veteran of the virtualisation specific backup market. It was the...

Download Whitepaper

Techworld UK - Technology - Business

Innovation, productivity, agility and profit

Watch this on demand webinar which explores IT innovation, managed print services and business agility.

Techworld Mobile Site

Access Techworld's content on the move

Get the latest news, product reviews and downloads on your mobile device with Techworld's mobile site.

Find out more...

From Wow to How : Making mobile and cloud work for you

On demand Biztech Briefing - Learn how to effectively deliver mobile work styles and cloud services together.

Watch now...

Site Map

* *