hollimanp
Level 1 (0 points)

Q: What is the solution for the Trojan virus attacking MAC

I heard on the news today that there is a Trojan virus which attacks MAC users and targets passwords and other personal information.  Could someone shed light on this report and how wides spread is the attack?

iMac

Posted on Apr 6, 2012 7:15 AM

Close
hollimanp

Q: What is the solution for the Trojan virus attacking MAC

  • All replies
  • Helpful answers

  • by Dan Caliendo,Helpful

    Dan Caliendo Dan Caliendo Apr 6, 2012 9:18 AM in response to hollimanp
    Level 1 (5 points)
    Apr 6, 2012 9:18 AM in response to hollimanp

    Can't believe Apple hasn't given us some guidance! I've gotten two emails offering "expert advice" from sites I never heard of (e.g. techlicious). I'm afraid to visit them for fear they are the source!

    Dan

  • by Klaus1,

    Klaus1 Klaus1 Apr 6, 2012 9:40 AM in response to hollimanp
    Level 8 (48,888 points)
    Apr 6, 2012 9:40 AM in response to hollimanp

    Adobe is aware of malware posing as its Flash Player and warns users to ignore any updates that didn't originate on its own servers. "Do not download Flash Player from a site other than adobe.com," said David Lenoe, Adobe's product security program manager, in an entry on Adobe Product Security Incident Response Team's PSIRT blog. "This goes for any piece of software (Reader, Windows Media Player, QuickTime, etc). If you get a notice to update, it's not a bad idea to go directly to the site of the software vendor and download the update directly from the source. If the download is from an unfamiliar URL or an IP address, you should be suspicious."

     

    The ‘Flashback Trojan’:

    A version of an existing Trojan Horse posing as a legitimate Flash Player installer (named “Flashback.A” by a security firm) is designed to disable updates to the default Mac OS X anti-malware protection system, potentially leaving the system open to the manual installation of other malware without any system warnings. The latest Macs do not have Plash Player included. In order to prevent a potential infection with “Flashback” Trojans, Mac users should always obtain their copy of Adobe Flash Player directly from Adobe’s official website and to disable the "Open 'safe' files after downloading" option in Apple's Safari browser to avoid automatically running files downloaded from the Internet. Also, do not turn on Java in Safari Preferences/Security. Few websites use Java. Javascript is something entirely different and should be left active.

     

    http://www.appleinsider.com/articles/11/10/19/fake_adobe_flash_malware_seeks_to_ disable_mac_os_x_anti_malware_protection.html

     

    Flashback Trojan - Detection, and how to remove (with caution):

     

    http://www.f-secure.com/v-descs/trojan-downloader_osx_flashback_i.shtml

  • by jkirschner,

    jkirschner jkirschner Apr 6, 2012 9:27 PM in response to Dan Caliendo
    Level 1 (0 points)
    Apr 6, 2012 9:27 PM in response to Dan Caliendo

    Hi Dan,

     

    You wouldn't receive an email from us (Techlicious) unless you signed up for our newsletter (we never spam). And no, we are not the source of the trojan! We are a  technology advice site for mainstream consumers (ie., non-techies). My cofounder is Suzanne Kantra, former Senior Tech Editor for Popular Science, and we have writers with backgrounds from Gizmodo, Engadget, The New York Times, etc. So I like to think we provide "expert advice", even if you never heard of us.

     

    Best,

    Josh Kirschner

    Founder, Techlicious