1 2 Previous Next 23 Replies Latest reply: Apr 13, 2012 10:04 AM by Gerard James Go to original post
  • 15. Re: Java Trojan on OSX
    MadMacs0 Level 4 Level 4 (3,725 points)

    HACKINT0SH wrote:

     

    Anyway, I know we are not going to agree here, so let's just agree to disagree.

    OK, I'll take the bait. Do you disagree with Thomas (I know you often do) or with me? All I said was that all known viruses have been patched on an up-to-date OS X 10.6.8 and above. I know there have been disagreements among experts as to whether or not certain of these malware qualified as a virus or not, but that seems futile to debate after all this time, especially since I have no opinion on it.

     

    I do feel that there is sufficient evidence that this current Flashback variant acts in a viral manner toward anybody on an Intel Mac using OS X 10.6.7 or earlier, with Java installed & enabled, who are not using Little Snitch and who visits a poisoned web site. Such users will be infected with no action on their part beyond cancelling a dialog box.

     

    All recommendations are that such users update to 10.6.8 if at all possible or to disable Java, at least in their browsers, if they are unable or unwilling. It's also possible to tweek Java Preferences from their default settings to minimize the risk "Java Hardning Tips," but know that new users can quickly get lost in the details of doing so.

  • 16. Re: Java Trojan on OSX
    MadMacs0 Level 4 Level 4 (3,725 points)

    WZZZ wrote:

     

    MadMacs0 knows the difference between a  virus and a trojan. Please stop baiting him.

    Thanks for the vote of confidence. I even know that Flashback is technically a "Backdoor" and not a Trojan, but I don't really want to debate that issue, either.

  • 17. Re: Java Trojan on OSX
    smackntoss Level 1 Level 1 (0 points)

    Apple's statement about Flashback malware:

    http://support.apple.com/kb/HT5244

     

    Link to Java Update 7 for Mac OS X 10.6:

    http://support.apple.com/kb/DL1516

     

    Link to Java Update 2012-002 for OS X 10.7:

    http://support.apple.com/kb/DL1515

     

    Over a half-million Macs have been affected. Note that the above Java updates don't  delete infected files. What you need to know about Flashback is here with links to removal tools and recommended antivirus apps:

    http://www.forbes.com/sites/adriankingsleyhughes/2012/04/07/an-easy-way-to-check -your-mac-for-the-flashback-malware/

     

    How to disable Java in Safari, Chrome and FireFox (highly recommended):

    https://community.rapid7.com/videos/1373

     

    For those who don't understand the difference, Java and JavaScript are two competely different things.

  • 18. Re: Java Trojan on OSX
    smackntoss Level 1 Level 1 (0 points)

    2 new Java security updates issued today:

     

    Java for OS X Lion 2012-003:

    http://support.apple.com/kb/DL1515

     

    Java for Mac OS X 10.6 Update 8:

    http://support.apple.com/kb/DL1516

     

    Apple Summary:

    These updates remove the most common variants of the  Flashback malware

  • 19. Re: Java Trojan on OSX
    Gerard James Level 1 Level 1 (5 points)

    I still see Java for OS X Lion 2012-002 at the above link?

  • 20. Re: Java Trojan on OSX
    MadMacs0 Level 4 Level 4 (3,725 points)

    Gerard James wrote:

     

    I still see Java for OS X Lion 2012-002 at the above link?

    Strange, I see 2012-003. They must still be rolling out updates to various support servers around the world.

  • 21. Re: Java Trojan on OSX
    Gerard James Level 1 Level 1 (5 points)

    MadMacs0 wrote:

     

    Gerard James wrote:

     

    I still see Java for OS X Lion 2012-002 at the above link?

    Strange, I see 2012-003. They must still be rolling out updates to various support servers around the world.

    What I meant is that if you go to these two links:

     

    Java for OS X Lion 2012-003

    http://support.apple.com/kb/DL1515

     

    Java for Mac OS X 10.6 Update 8

    http://support.apple.com/kb/DL1516

     

    Which are both pointed to from the main Apple Support Downloads page at:

     

    http://support.apple.com/downloads/

     

    You'll still see:

     

    Java for OS X Lion 2012-002 and Java for Mac OS X 10.6 Update 7 respectively. Maybe they haven't fully updated their site yet or maybe they're only available through software update. Has anyone tried them yet?

  • 22. Re: Java Trojan on OSX
    MadMacs0 Level 4 Level 4 (3,725 points)

    Gerard James wrote:

    Which are both pointed to from the main Apple Support Downloads page at:

     

    http://support.apple.com/downloads/

     

    You'll still see:

     

    Java for OS X Lion 2012-002 and Java for Mac OS X 10.6 Update 7 respectively. Maybe they haven't fully updated their site yet or maybe they're only available through software update. Has anyone tried them yet?

    But I don't. I've been seeing Java for OS X Lion 2012-003 and Java for Mac OS X 10.6 Update 8 since late afternoon (US/PT), when I returned to my computer.

     

    Several people in the Apple Community Support discussions forum have used both without issue. Those who thought they might be infected were and most who were just testing were not. The update tells you if you were infected but is silent if not.

     

    Why do you not want to use Software Update?

  • 23. Re: Java Trojan on OSX
    Gerard James Level 1 Level 1 (5 points)

    They seem to be pointing to the right place now, they were flipping back and forth between Mac OS X 10.6 Update 7 and Mac OS X 10.6 Update 8 yesterday. I downloaded the security update just now.

     

    Why don't I want to use software update? I never use it. Always manually download combo updates and security updates. Look what happened with the last 10.7.3 delta update and the last security update for 10.6. Too many problems.

1 2 Previous Next