| |
[Security] Mac Flashback Exploiting Unpatched Java Vulnerabilityquote:
Mac Flashback Exploiting Unpatched Java Vulnerability - F-Secure Weblog - News from the Lab
A new Flashback variant (Mac malware) has been spotted exploiting CVE-2012-0507 (a Java vulnerability). We've been anticipating something like this for a while now.
Oracle released an update that patched this vulnerability back in February… for Windows.
But — Apple hasn't released the update for OS X (yet)...
» www.f-secure.com/weblog/ ··· 341.html |
|
| |
mozilla user
Anon
2012-Apr-3 6:11 pm
Re: [Security] Mac Flashback Exploiting Unpatched Java VulnerabiWho uses Java ? It's not even installed if your running Lion. |
|
 HiVolt
Premium Member
join:2000-12-28
Toronto, ON |
HiVolt
Premium Member
2012-Apr-3 8:50 pm
said by mozilla user :Who uses Java ? It's not even installed if your running Lion.
Look, just because Apple shuns Java & Flash, doesn't mean people don't use it. It's needed for a crapload of sites. If you avoid certain sites because of technologies used don't jive with Apple's views, thats's pretty sad. |
|
 J E F F4Whatta Ya Think About Dat?
Premium Member
join:2004-04-01
Kitchener, ON |
to haroldo
Hmmm, I just got a notice today of an update for Java..(and iPhoto)... |
|
| |
mozilla user to HiVolt
Anon
2012-Apr-4 7:01 am
to HiVolt
It's needed for a crapload of sites
Maybe here to do some tests, other than maybe Yahoo game sites. I haven't noticed it missing for years. Nothing to do with with Apple, I have it disabled on my Windows machines. |
|
| |
quote:
A recent version of malicious software called Flashback exploits a security flaw in Java in order to install itself on Macs.
Apple released a Java update on April 3, 2012 that fixes the Java security flaw for systems running OS X v10.7 and Mac OS X v10.6. By default, your Mac automatically checks for software updates every week, but you can change that setting in Software Update preferences. You can also run Software Update at any time to manually check for the latest updates.
Apple is developing software that will detect and remove the Flashback malware.
In addition to the Java vulnerability, the Flashback malware relies on computer servers hosted by the malware authors to perform many of its critical functions. Apple is working with ISPs worldwide to disable this command and control network.
» support.apple.com/kb/HT5 ··· le=en_US |
|
J E F F4Whatta Ya Think About Dat?
Premium Member
join:2004-04-01
Kitchener, ON |
J E F F4
Premium Member
2012-Apr-11 10:55 am
Yeah, so it would appear that these website themselves have been hacked. I downloaded a scanner from the App Store just to be safe. Came up golden.
As much as Apple hates Java and Adobe, they need to work with there guys as they aren't going anywhere anytime soon. |
|
 lordpufferLegalize It Joe!
Premium Member
join:2004-09-19
Old Town, ME |
Jeff....Which scanner did you download from the App store? Is it a scanner for malware? |
|
 mozerdLight Will Pierce The Darkness
MVM
join:2004-04-23
Nepean, ON |
mozerd
MVM
2012-Apr-11 11:21 am
said by lordpuffer:Jeff....Which scanner did you download from the App store? Is it a scanner for malware?
Avery good anti malware product for the Mac is made by ESET |
|
J E F F4Whatta Ya Think About Dat?
Premium Member
join:2004-04-01
Kitchener, ON |
to lordpuffer
said by lordpuffer:Jeff....Which scanner did you download from the App store? Is it a scanner for malware?
Dr. Web Light. It's #2 under free apps at the App Store (since I wasn't going to download it from anywhere else). It was the App recommended by the company that first found the malware. |
|
lordpufferLegalize It Joe!
Premium Member
join:2004-09-19
Old Town, ME |
Thank you both.  |
|
