Apple's OS X hit by drive-by malware
Apple's OS X has proven vulnerable to viruses after all, as researchers discover a 550,000-strong botnet.
According to Russian anti-virus firm Dr.Web, more than 550,000 OS X-based machines - the majority from the US and Canada - formed the heart of a botnet after being infected with the 'Flashback' drive-by Trojan.
Unlike previous attacks on Apple's OS X, the infection required no user interaction beyond visiting an infected website. Using a vulnerability in Java - a vulnerability not exclusive to Apple's operating system, it must be pointed out - the ne'er-do-wells were able to take over the target system automatically.
Dr.Web's analysis of the virus concludes that the network of infected machines numbered at least 550,000, but warns that 'these only comprise a segment of the botnet set up by means of the particular BackDoor.Flashback modification.' Of the infected systems discovered, 56.6 per cent were in the US with Canada sitting in second place with 19.8 per cent. The UK, meanwhile, holds 12.8 per cent of the detected infections - around 69,000 machines.
Chester Wisniewski, of anti-virus firm Sophos, claims that the number of attack reports his company has been receiving from OS X users has increased dramatically in the last few days. 'Here at [Sophos] we received a reasonable amount of criticism, as we do every time we discuss Mac threats, about over-hyping the risk and trying to scare people into installing our free protection,'' Wisniewski reports of an earlier write-up on the problem, before pointing to Dr.Web's analysis of the botnet as evidence that his company is not crying wolf.
For Mac users, it's time to update: a patch released late last night by Apple upgrades the Java version to Java 6 Update 31, patching the hole used by the drive-by download script. It's taken Apple six weeks to resolve the issue, however - and as Dr.Web's figures show, that's plenty of time for the botnet to grow in size.
More critically, it gives lie to the common claim that OS X is somehow invulnerable to attack from viruses and other malware. As Apple itself once recommended: it's time to install virus protection.
Previous Article
21 Comments
Discuss in the forums ReplyAlso now I am a mac owner I can't get herpes, right?
Everything is hackable, and can be infected...
I know Pc techs who think they are safe too "I'm careful and I would know". The days where every infection brought the system to it's knees have long passed.
I laughed =)
As for it being used as protection, it's heyday has been passed and no one thing does everything. You really might want to run a scan with Malware Bytes or Super-Antispyware.
There was a week last year where, Google, Yahoo, Myspace and Facebook were all handing out trojans. Considering how many of ads are handled by Google, how well can you hide.
I LOL'd IRL.
Microsoft Security Essentials. Get it, it's free, you have no excuse.
where did my post go ??? (((ok whats up with the site when i press Post it takes me to the fourms)))
this is the first one that only requires you to see the web site for the botnet install to happen (like when your on windows pc and are using IE8/9 and you get one of them auto loading virus that require no user action to get it on your pc), others malware have been to trick you into clicking the install button and then the OSX keychains password to allow it to be installed (same as windows most of the time)
having an antivirus is no longer enough any more as each malware or virus or what ever, is different file every time so most antivirus are only 10-20% affective now (Use Chrome with Click to Play enabled as that stops all plugins)
No,
Last year Macs were hit by those fake anti-virus programs that have been hitting Windows for years, the first required user action and caused an uproar. They no sooner patched it, and a new version came out requiring nothing. While it didn't get into the system nearly as deep, it did get in. It passed into history quietly.
Come the cries of thousands of Mac fans.
I needed this laugh...
What next? "Oh, I drive a Volkswagen; I never have to worry about it breaking down..."
I know. Plenty of people still believe this, and all Apple's supposed invincibility was just security through malware writers deeming Mac not worth bothering about. I still run into people like that...these are the same people that think simply having a PC connected to an internet connection will result in fifty different viruses embedding themselves on your computer.
:)