Skip navigation

HT5254: About the security content of Flashback malware removal tool

Learn about About the security content of Flashback malware removal tool

HT5254 What is flashback? What's it do? Gimme some answers, Apple.

1936 Views 4 Replies Latest reply: Apr 17, 2012 9:01 PM by pedalmonkey RSS
pedalmonkey Calculating status...
Currently Being Moderated
Apr 17, 2012 5:43 PM

OK, so we've trusted Apple's vaunted security protocols and installed their update. No tell us what the **** malware does. Please. Has my financial info been compromised? Passwords? Keychain? What????

MacBook Pro (15-inch Mid 2009), Mac OS X (10.7.3), Flashback? What's it do?
  • macjack Level 9 Level 9 (50,445 points)

    It is a trojan that effeted a small % of Macs. If you have reason to think yours was effected the download Apple's Flashback removal tool and install the latest updates from Software Update.

  • thomas_r. Level 7 Level 7 (26,945 points)

    See About the Flashback malware.  (Note that my pages contain links to other pages that promote my services, and this should not be taken as an endorsement of my services by Apple.)

     

    As to what it does, there's no real documentation on that.  There are a few scattered reports here and there, like that it will redirect search results in your browser to malicious sites, but it was basically capable of anything.  It injected code into your web browser at a minimum, and could have snooped on anything that you did with your browser.  So you'd be wise to keep an eye on your finances, change any financial site passwords, cancel any credit cards the instant any suspicious charges appear, etc.  You may want to pay for something like LifeLock to keep an eye on your credit rating and help you fix any problems that appear.  That could be overkill, or it could save you from long-lasting financial consequences.

  • MadMacs0 Level 4 Level 4 (3,320 points)

    > Gimme some answers, Apple.

     

    You do realize that Apple doesn't live here, right? They might drop by unofficially to browse in their spare time, but rarely comment and never openly or officially.

     

    Safarii crashes and occassionally redirects to ad sites are about the only thing users are reporting today and some noticed nothing at all. There were many crashes in the early days, but it would seem they've worked out most of the bugs.

     

    Intego wrote the only analytic report I have found that alleges capture and reporting of username/password pairs. They even figured out that reporting goes out over Twitter. But so far there has only been one report, that I've heard about, of fraudulent credit card activity around the time of infection. Maybe they just haven't gotten ariund to the exploitation phase yet.

     

    As was mentioned, this malware has a backdoor, so could be configured to do most anything.

Actions

More Like This

  • Retrieving data ...

Bookmarked By (0)

Legend

  • This solved my question - 10 points
  • This helped me - 5 points
This site contains user submitted content, comments and opinions and is for informational purposes only. Apple disclaims any and all liability for the acts, omissions and conduct of any third parties in connection with or related to your use of the site. All postings and use of the content on this site are subject to the Apple Support Communities Terms of Use.