Half a million Mac computers 'infected with malware'

BBC ^ | April 2012 Last updated at 08:54 ET

[null and void]

An investigation by Dr Web suggests that about 600,000 Macs have the malware - potentially allowing them to be hijacked and used as a "botnet".

It says that more than half that number are in the US.

Flashback was first detected last September when anti-virus researchers flagged software masquerading itself as a Flash Player update. Once downloaded it deactivated some of the computer's security software.

Remote control

"By introducing the code criminals are potentially able to control the machine," the firm's chief executive Boris Sharov told the BBC.

"We stress the word potential as we have never seen any malicious activity since we hijacked the botnet to take it out of criminals' hands. However, we know people create viruses to get money.

"The largest amounts of bots - based on the IP addresses we identified - are in the US, Canada, UK and Australia, so it appears to have targeted English-speaking people."

Dr Web also notes that 274 of the infected computers it detected appeared to be located in Cupertino, California - home to Apple's headquarters.

Update wait

Apple released its own "security update" on Wednesday - more than eight weeks later. It can be triggered by clicking on the software update icon in the computer's system preferences panel.

The security firm F-Secure has also posted detailed instructions about how to confirm if a machine is infected and how to remove the Trojan.

Although Apple's system software limits the actions its computers can take without requesting their users' permission, some security analysts suggest this latest incident highlights the fact that the machines are not invulnerable.

"People used to say that Apple computers, unlike Windows PCs, can't ever be infected - but it's a myth," said Timur Tsoriev, an analyst at Kaspersky Lab.

Apple could not provide a statement at this time.

[moehoward]

"From the article:“Java’s developer, Oracle,......"

From a better article....

"OS X does not come with Java installed by default, and the latest versions of Java should be patched properly so anyone with new or properly updated systems should be safe from these threats........."

To summarize, the malware has overall adopted two modes of infection. The first is where it requires administrative privileges......The second .... is done to the user's account... does not require admin privileges to complete;however, it does ultimately result in a more obvious infection that will destabilize the system and lead to crashes."

Bottom line.....

....again.

[Publius6961]

Half a million Mac computers 'infected with malware'

Don't be silly.

That's a PC plebeian problem!

*huff*

[SamAdams76]

This should really be a non-issue. Apple makes it so easy and painless to keep your system updated. I have my Macbook set to check for updates daily (it defaults to weekly in system preferences). You can even have the updates install automatically if you so desire.

So there is no excuse for any responsible Apple user to have this "virus" still on their system.

[for-q-clinton]

Why is people want to keep comparing Apples latest and greatest to products Microsoft made 15 years ago? I guess it’s the only way they can compete.

[null and void]

The update came out yesterday, I installed it this morning...

[for-q-clinton]

I think you missed the part of the article that said Apple took over 8 weeks to release the patch to fix this issue. Where as Oracle had it out in February...apple not until April.

I don’t care what kind of auto-updates you have set...if the patch isn’t available it can’t be fixed.

[for-q-clinton]

Evidently for a Mac to be secure you need to run windows 7 on it and use that to browse the Internet.

Clearly OSX can’t handle it—they took 8 weeks to release an update for a known exploit that was already fixed by Oracle.

[BikerTrash]

bfl

[PA Engineer]

Thanks. Clean.

[Para-Ord.45]

Admin. Use Safari and Opera

[Para-Ord.45]

PS:

Use ClamXav antivir.

No detections

[Keith in Iowa]

>>>I suspect my own iMac was infected.

Clean as a whistle. Updated the Mac Java... and use Sophos for Mac. No issues here.

[Keith in Iowa]

>>>Not Possible! Swordmaker and the macbots have told me that only windows gets stuff like this.

Not exactly Troll...

It has been always said here, by Swordmaer, and plenty of other Mac users that people need to be responsible, and make sure they are keeping their OS updated with the latest updates from Apple, and making sure they only supply admin passwords when prompted from TRUSTED sources, and use one of any number of protective countermeasure applications.

Mac is no different from Windows. A machine operated by an idiot who is completely lax or ignorant to protecting the machine is going to get infected by something detrimental to it sooner or later.

Now 4Q, quit being such a troll, and help people to learn, and understand that no matter what OS they use, they need to protect their systems from external threats rather than be the ass that you regularly are on these types of threads.

[dayglored]

> I wonder who was right?

Where have you been? Under a rock? This is old news.

As usual, you're behind the times. There have been a handful of malwares for OS-X for quite a while now. Mostly Trojans that the user has to approve installing, but a few nastier ones that install themselves. Only the silliest of people are surprised at this.

You're also, alas, being a bore -- calling people "macbots" is not helpful.

If you wish to feel superior, count how many successful malwares have been released for Windows vs. OS-X. Thousands of times as many!

Isn't that a wonderful advantage? Oh, wait.... :)

[for-q-clinton]

My point all along was that once Macs got enough users they would be attacked. Looks like I was right and this is my why of pointing out to others don’t fall for the lies of zealots. Btw...look at drudge this made the lead story.

[dayglored]

> Now 4Q, quit being such a troll, and help people to learn, and understand that no matter what OS they use, they need to protect their systems from external threats rather than be the ass that you regularly are on these types of threads.

Alas, poor 4Q, he can't help it. It's a disorder, rather like Tourette's:

Tourette's was once considered a rare and bizarre syndrome, most often associated with the exclamation of obscene words or socially inappropriate and derogatory remarks (coprolalia)... (Wikipedia)

Trolls like 4Q have no interest in helping anyone. They would be thrilled if suddenly all of Apple's customers developed leprosy. They're like the jerk who, seeing someone who has lost their balance, walks over to them and trips them so that they fall over completely.

Other than that, 4Q's just a boring ol' troll, and his attempts to bait reasonable people can be ignored. But he's occasionally fun to bait back. :)

[for-q-clinton]

This is my way of helping. For years people have listened to the lies of macbots and being over the top helps drive home the point to everyone that isn’t a zealot. Many have been brainwashed and lied to so it’s not going to be easy reprogramming them. I’m doing my part though. Also this is now the lead drudge story...that will help too. If we all do our part we can break through the fud apple has spread for years about other products.

[for-q-clinton]

If you can’t win the argument...attack the person. A play out of the Clinton playbook.

Sorry you’re so hurt over this...something all real IT pros knew has happened and would continue to happen as Macs market share increased.

[SamAdams76]

Well I still think it's sensationalism. I've been using Apple products for a while now and I have never had any kind of issue whatsoever - except for the time when I dropped one of my iPods into a puddle in the street. Even then, it worked just fine after I let it dry out for a day or two.

The MacBook Pro is probably the most perfect laptop computer ever manufactured. Absolute perfection in every way with a stunning display screen. If I ever had a virus, I never knew about it.

Now I still use the Microsoft Windows on other computers but I do have some issues with those - even though in general, they tend to get the job done. Computers work a lot better these days.

[SamAdams76]

Well I still think it's sensationalism. I've been using Apple products for a while now and I have never had any kind of issue whatsoever - except for the time when I dropped one of my iPods into a puddle in the street. Even then, it worked just fine after I let it dry out for a day or two.

The MacBook Pro is probably the most perfect laptop computer ever manufactured. Absolute perfection in every way with a stunning display screen. If I ever had a virus, I never knew about it.

Now I still use the Microsoft Windows on other computers but I do have some issues with those - even though in general, they tend to get the job done. Computers work a lot better these days.