Monday, April 02, 2012

Mac Malware: 2012 is shaping up to be busy

So far this year it is becoming clear that Mac OS X users everywhere are going to need to ensure they are protected from the growing malware threats being developed.

The Flashback family of malware utilize Java vulnerabilities (patched and unpatched zero-day) and were named due to their original attempt to identify themselves as (fake) Flash Player updates.  Most of the older Flashback variants are utilizing patched Java vulnerabilities. Users that have fully patched and updated systems would not be vulnerable to these.

F-Secure has a new article outlining a new variant that attacks the system through a new unpatched vulnerability in Java for Mac OSX.    The only way to mitigate this threat is to disable Java completely as users must wait for Apple to release a patch (Oracle already released an update for this vulnerability across all other OSes earlier this year).

Then there are the new attacks (currently target Tibetan NGOs) that utilize vulnerabilities in MS Office for Mac 2004 and 2008.  While Microsoft has already patched these, users must have all their updates installed in order to not find themselves a target in the future.

 With all of this said, I would highly recommend to any Mac user, business or personal, that they purchase and install reputable security/anti-virus/anti-malware software, such as the offering from F-Secure.

No comments: