Free Republic
Browse · Search
News/Activism
Topics · Post Article

Skip to comments.

Russian Security Firm Says Flashback Botnet Is Not Shrinking
CRN (Computer Reseller News) ^ | 4/23/2012 | Kevin McLaughlin

Posted on 04/25/2012 6:50:42 AM PDT by johncatl

Contrary to recent reports, the worldwide botnet of Macs infected with the Flashback malware has remained relatively steady in size, the Russian security vendor Dr. Web said over the weekend.

Dr. Web discovered the botnet -- which it calls BackDoor.Flashback.39 -- on April 4. It claims that more than 817,000 bots have connected to the botnet thus far, and that an average of 550,000 infected machines are interacting with a command-and-control server each day.

(Excerpt) Read more at crn.com ...


TOPICS: Miscellaneous; News/Current Events
KEYWORDS: flashbackbotnet; mac; security
Navigation: use the links below to view more comments.
first 1-2021-26 next last

1 posted on 04/25/2012 6:50:47 AM PDT by johncatl
[ Post Reply | Private Reply | View Replies]

To: johncatl

Impossible. OSX can’t get malware. At least that’s what they tell us.

But seriously. It was just a matter of time before OSX had a big enough footprint to start being targeted. And they are ripe for the picking. Many of their users are people who never used AV on Windows and thought going to Mac would protect them. So now the Mac user base is growing with some of the dumbest of the dumb users—you know people who say there’s no need for 3rd party AV solutions on Macs.

Yep those are the idiots that will be getting malware as Mac sales increase.


2 posted on 04/25/2012 7:03:46 AM PDT by for-q-clinton (If at first you don't succeed keep on sucking until you do succeed)
[ Post Reply | Private Reply | To 1 | View Replies]

To: johncatl

I’m sure the usual suspects will be in here to dismiss this as FUD and when that fails they will blame Microsoft somehow. Or attack Windows XP (a decade old OS) as being less secure than OSX’s most current version.


3 posted on 04/25/2012 7:05:07 AM PDT by for-q-clinton (If at first you don't succeed keep on sucking until you do succeed)
[ Post Reply | Private Reply | To 1 | View Replies]

To: for-q-clinton

Anyone who uses a Mac is a Communist.

Anyone who shoots a 1911A frame, over a Glock, is a Communist.

Anyone who sides with the Union in the Civil War is a Communist.

Anyone who sides with the Confederacy in the Civil War is a Communist.


4 posted on 04/25/2012 7:07:08 AM PDT by Lazamataz (Admin Moderator refuses to let me hit it. -- http://www.freerepublic.com/focus/chat/2875871/posts)
[ Post Reply | Private Reply | To 2 | View Replies]

To: for-q-clinton

So what is the best 3rd party AV/anti-Malware for Macs?


5 posted on 04/25/2012 7:09:03 AM PDT by donozark (The key to winning the Vietnam War was not Vietnam, but Laos...)
[ Post Reply | Private Reply | To 2 | View Replies]

To: donozark

Glock.


6 posted on 04/25/2012 7:09:43 AM PDT by Lazamataz (Admin Moderator refuses to let me hit it. -- http://www.freerepublic.com/focus/chat/2875871/posts)
[ Post Reply | Private Reply | To 5 | View Replies]

To: Lazamataz

Why do you say that? No one is saying they are communist. Just that they need good AV software on their machines as Apple clearly doesn’t really understand what they are up against. http://www.crn.com/news/security/232900172/apple-building-malware-removal-tool.htm


7 posted on 04/25/2012 7:10:11 AM PDT by for-q-clinton (If at first you don't succeed keep on sucking until you do succeed)
[ Post Reply | Private Reply | To 4 | View Replies]

To: Lazamataz

But on a more serious note...true statistic. OSX is the preferred OS for homosexuals and pedophiles. That doesn’t mean all users are homosexual or pedophiles—it’s just a statistic.


8 posted on 04/25/2012 7:11:45 AM PDT by for-q-clinton (If at first you don't succeed keep on sucking until you do succeed)
[ Post Reply | Private Reply | To 4 | View Replies]

To: johncatl

Get a Mac. Resistance is futile.
9 posted on 04/25/2012 7:11:50 AM PDT by iowamark
[ Post Reply | Private Reply | To 1 | View Replies]

To: for-q-clinton
Why do you say that? No one is saying they are communist. Just that they need good AV software on their machines as Apple clearly doesn’t really understand what they are up against.

Look, if you use a Mac, you are a Communist. Period.

If you KNOW someone who uses a Mac, you are a Socialist.

10 posted on 04/25/2012 7:12:46 AM PDT by Lazamataz (Admin Moderator refuses to let me hit it. -- http://www.freerepublic.com/focus/chat/2875871/posts)
[ Post Reply | Private Reply | To 7 | View Replies]

To: for-q-clinton
No, you were right the first time. Anyone who uses a Mac is a homosexual pedophile Communist.


11 posted on 04/25/2012 7:15:43 AM PDT by Lazamataz (Admin Moderator refuses to let me hit it. -- http://www.freerepublic.com/focus/chat/2875871/posts)
[ Post Reply | Private Reply | To 8 | View Replies]

To: johncatl

How do they know how many hits a day are contacting the control server?


12 posted on 04/25/2012 7:19:58 AM PDT by FreeAtlanta (Liberty and Justice for ALL)
[ Post Reply | Private Reply | To 1 | View Replies]

To: iowamark

Communist.


13 posted on 04/25/2012 7:26:45 AM PDT by Lazamataz (Admin Moderator refuses to let me hit it. -- http://www.freerepublic.com/focus/chat/2875871/posts)
[ Post Reply | Private Reply | To 9 | View Replies]

To: FreeAtlanta

Intersting question. Assuming they know the server address, then it must be in some unknown location so no one can do anything about it. The server is either owned by the botnet providers or is controlled by the bot.


14 posted on 04/25/2012 8:40:49 AM PDT by veracious
[ Post Reply | Private Reply | To 12 | View Replies]

To: Lazamataz

Everyone is a Communist except me and thee, and I’m not too sure about thee.


15 posted on 04/25/2012 9:46:30 AM PDT by TexasRepublic (Socialism is the gospel of envy and the religion of thieves)
[ Post Reply | Private Reply | To 13 | View Replies]

To: johncatl

F U D !!


16 posted on 04/25/2012 11:05:30 AM PDT by Waywardson (Carry on! Nothing equals the splendor!)
[ Post Reply | Private Reply | To 1 | View Replies]

To: johncatl; ~Kim4VRWC's~; 1234; Abundy; Action-America; acoulterfan; AFreeBird; Airwinger; Aliska; ...
More evidence that Doctor Web is perpetrating a fraud... Doctor Web claims that the Mac Flashback botnet is NOT getting any smaller after Apple has pushed out the fix to ALL Macs to remove the so called FlashBack trojan, and after other AV companies did NOT find 600,000 infected Macs, reporting far fewer (One, analyzing data provided by Doctor Web from their sinkhole, claimed the evidence only supported 217,434 infected Macs, another, using the same data concluded it represented fewer than 180,000... but note it is ALL from a single source, Doctor Web's sinkhole!), and many users connecting to Doctor Web's automated "check your Mac for the infection by UUID" website found Macs KNOWN to be uninfected were reported as members of the botnet, and the complete lack of self-reporting infected Mac users on the forums! Instead you find users who use the provided tools only reporting "No infection here!"

This claim that the botnet has not shrunk defies logic when Apple and others have provided the removal tools for a Trojan that is NOT being reported by users as existing on their computers. . . unless my original conclusion that all they have is a list of UUIDs that have been spoofed is true. There is evidence that is the case when users with BRAND NEW OSX LION MACS, just out of the box, that DO NOT HAVE JAVA even installed or included, have their UUIDs submitted to Doctor Web's test and are reported to be already members of the botnet! This HAS happened. That indicates what they have is a list of UUIDs that have been assigned to Apple computers, either generated by themselves, or they are receiving them from an outside source, and they do NOT represent actual infected computers.

WHERE ARE THE INFECTED MACS??? They simply are not being reported. Only one Freeper contacted me to say that he thought the "Apple tool had removed a Flash trojan on his Mac, on the third try"... but he was running OSX Lion... which cannot BE infected by this trojan! Ergo, that was a false positive.

Please!
No Flame Wars!
Discuss technical issues, software, and hardware.
Don't attack people!

Don't respond to the Anti-Apple Thread Trolls!
PLEASE IGNORE THEM!!!


Apple Security Ping!

If you want on or off the Mac Ping List, Freepmail me.

17 posted on 04/25/2012 1:18:00 PM PDT by Swordmaker (This tag line is a Microsoft insult free zone... but if the insults to Mac users continue...)
[ Post Reply | Private Reply | To 1 | View Replies]

To: for-q-clinton
But on a more serious note...true statistic. OSX is the preferred OS for homosexuals and pedophiles. That doesn’t mean all users are homosexual or pedophiles—it’s just a statistic.

I am going to DEMAND that you prove your assertion. PROVE IT.

18 posted on 04/25/2012 1:21:11 PM PDT by Swordmaker (This tag line is a Microsoft insult free zone... but if the insults to Mac users continue...)
[ Post Reply | Private Reply | To 8 | View Replies]

To: Swordmaker

I just did.


19 posted on 04/25/2012 1:40:03 PM PDT by for-q-clinton (If at first you don't succeed keep on sucking until you do succeed)
[ Post Reply | Private Reply | To 18 | View Replies]

To: FreeAtlanta
How do they know how many hits a day are contacting the control server?

They own the control server. They're Russians, after all.

20 posted on 04/25/2012 1:49:29 PM PDT by Fresh Wind ('People have got to know whether or not their president is a crook.' Richard M. Nixon)
[ Post Reply | Private Reply | To 12 | View Replies]


Navigation: use the links below to view more comments.
first 1-2021-26 next last

Disclaimer: Opinions posted on Free Republic are those of the individual posters and do not necessarily represent the opinion of Free Republic or its management. All materials posted herein are protected by copyright law and the exemption for fair use of copyrighted works.

Free Republic
Browse · Search
News/Activism
Topics · Post Article

FreeRepublic, LLC, PO BOX 9771, FRESNO, CA 93794
FreeRepublic.com is powered by software copyright 2000-2008 John Robinson