Daca problema troianului Flashback pare sa fi fost rezolvata de catre Apple, ei bine iata ca acum apare una noua care are in prim-plan un nou atac de tip malware care infecteaza Mac-uri folosind Java. Exploit-ul folosit acum este o variatie a altuia utilizat intr-un troian numit generic Backdoor.OSX.SabPub.a, si desi foloseste tot Java, de aceasta data ofera hackerilor acces total la Mac-ul infectat. Flashback doar redirectiona traficul din Mac catre diverse site-uri web insa acest nou troian deschide larg “portile” de intrare in Mac-ul vostru si cei de la Kaspersky spun ca troianul ar putea fi mult mai periculos decat Flashback.
The Flashback and the SabPub Trojans are totally different. SabPub is classic backdoor Trojan, so it opens full access to a victim’s system for attackers. Flashback and its known variants is downloader and clickjacking bot, which means it conducts click fraud scam by hijacking people’s search engine results inside their web browsers. The latest version of the SabPub Trojan can infect more people than previous versions of this malware, which appeared earlier this year. In February, SabPub was exploiting a Microsoft Word vulnerability, which was fixed long time ago. The latest version of SabPub uses the Java exploit to spread infection in a more effective way because the Java exploit is delivered via a drive by download, which occurs when people click on URLs with malware via email.
Practic acest nou troian va poate infecta Mac-ul daca dati click pe link-uri primite in email-uri si sunteti redirectionati catre website-uri facute de hackeri. Din pacate virusul pare a exploata Java fara ca voi sa stiti deci sistemul vostru poate fi aparent accesat de hackeri fara ca OS X-ul sa afiseze vreun avertisment. Deocamdata nu a fost publicata o metoda de a devirusa Mac-urile infectate si Apple nu a comentat absolut nimic in legatura cu aceasta problemea insa probabil in zilele urmatoare vom vedea un nou update pentru Java.
