New Java trojan attacks Mac OS X and Windows

I just not think to use social networking sites.....I guess never....do I? I don't know till now I don't like it coz I don't have time to timepass.....hahaha......few days ago I just said one IT professional(who have mac book) apple have virus....he said just one virus....then I said this is the beginning.....now see we have cross platform trojan....in few weeks all windows virus (0ld or new) are gonna cross platform then what? apple said we already AV?
 
It is quite nice to see that Hackers haven't forgotten Mac OSX. I thought that Steve Jobs would be jealous with microsoft because so many hackers are so attracted to windows and not many will keep MAC OSX on par. Not to worry Jobs, Hackers have seen your misery and felt bad for ignoring you for so long. They will come to the rescue and bring apple's name to a comparable status as windows :) ;)
 
On a serious note, I knew it won't be long before this happens. Apple is becoming very popular and hackers have noted this. Since Apple wasn't a major victim for viruses, it's security hasn't been improved to the extent of windows. They did not know the vulnerabilities in MAC until they got infected. The fact that MAC doesn't have much viruses used to be an advantage but now it has turned around to become a disadvantage, because no one knows what sort of security holes are ther ein MAC. I hope this sort of thing gets resolved on both platforms. I don't want to see Apples name go down the drain, even if their products are highly overrated and very expensive.
 
I hate saying this, but I am happy hackers are targeting OS X. I swear some people out there think Mac OS X has some legendary anti-virus code and these people need a rude awakening.
 
Hold on a second, disabling java on browser makes the world safer? Yeah shuting down the computer makes it even safer.
Java is secure, if you don't know where tha java notification came from then don't click on the run button. Its not that hard and its all you need.
 
Lot of sites specially bank site require java to be enabled .. So can't disable this .. But i hope Anti-virus should e able to handle..
 
Few months back i read some where in article that in one hacker competition MAC OS was the first one to hack and it took two days for hacker to hack in Windows vista even after giving some room. and as we can expect Ubuntu (linux) was not hacked in this 3 days hacking competition.
 
Understandably there are a lot of (well all of these posts) posts with a 'ha ha' attitude towards Macs and their users. Maybe that is deserved, maybe it isn't. I know a few Mac users that aren't computer savvy, but I can say the same thing about Windows users. I don't know any Mac users that think they are invincible to attacks, but apparently I'm in a big minority, or everyone just stereotypes.

But, from everything I gather, to get infected by this in OS X you STILL have to give it permission. It seems you have to accept an unsigned certificate with root privileges, then on top of that you have to give it your password for it to gain the root access it needs to do its thing.

So you have to click allow to an unsigned, and then also give it your password. Sure it can happen, but this isn't the fault of OS X, it is the user's fault. This same thing occurs on Windows, except perhaps without the need for a root password (XP?).
 
I think the day is soon approaching where worms and Botnet's to the likes of Conficker will be infecting Apples. It will be interesting to see how Apple handles them.
 
what would a virus on a mac even do??? pop ups all over? spam to buy an antivirus? its inconcievable to me
 
Understandably there are a lot of (well all of these posts) posts with a 'ha ha' attitude towards Macs and their users. Maybe that is deserved, maybe it isn't. I know a few Mac users that aren't computer savvy, but I can say the same thing about Windows users. I don't know any Mac users that think they are invincible to attacks, but apparently I'm in a big minority, or everyone just stereotypes.

But, from everything I gather, to get infected by this in OS X you STILL have to give it permission. It seems you have to accept an unsigned certificate with root privileges, then on top of that you have to give it your password for it to gain the root access it needs to do its thing.

So you have to click allow to an unsigned, and then also give it your password. Sure it can happen, but this isn't the fault of OS X, it is the user's fault. This same thing occurs on Windows, except perhaps without the need for a root password (XP?).

I agree, and the same would be true for any other Os that is Unix or Linux based, including OS X.

You really can't blame your OS when you your silly enough to click a link asking if its you, stupid enough to not consider why your being asked for root permissions for a video (or any java app/instance), and then blindly give it your password because you want the box to disappear.

The problem is squarely on the user, which ironically is exactly what the trojan's producer is hoping for a user to do.

Bottom line is simple - Excercise some common sense and it won't happen to you, regardless of your OS.
 
Sadly, it's not just mac users that don't bother to educate themselves about how to be safe. There are more than a fair share of windows users that don't know/care enough to learn about this either.
 
Sadly, it's not just mac users that don't bother to educate themselves about how to be safe. There are more than a fair share of windows users that don't know/care enough to learn about this either.

The same is true of any user really - Unfortunately most casual users don't take a proactive approach to security, they deal with it once its happened and they've lost all there data, which coincidently they never back up either. lol.

I'm forever having to save my two brothers and sister from the same fate because of there ignorance - It just goes in one ear and out the other though unfortunately.
 
I would like to know the same about Linux...
twiztidsef
on October 27, 2010
4:52 PM Never thought about a cross platform program(java) having the ability to infect multiple operating systems. It makes sense to target java. This also shows hackers are going after consumers and not operating systems.

Would this also infect Linux? I guess it would depend on how the virus was programed.
 
Macs don't usually get viruses. I'm on Mac, and I've never dealed with such problems (considering the fact the only "anti-virus software" I use is protemac. com ProteMac Netmine.)
 
Would this also infect Linux? I guess it would depend on how the virus was programed.

Yes, its possible it could take advantage of Java vulnerabilities.

Its unlikely in my experience though, as long as the install is correctly configured and protected.

The reason Mac/Linux/BSD etc etc aren't so vulnerable is due to user permissions, and the inability to run scripts without "elevated" permissions of root. These can be bypassed, but the control has to be given by the user to achieve this.
 
Back