Flu season may be just about over for this year but a new Mac Trojan Horse has apparently been discovered to be making the rounds. The discovery was made by Intego who say that a new Trojan called Flashback, and more specifically the strain Flashback.G., has infected a relatively large number of Mac users (via MacWorld). While the original strain was discovered back in September 2011, this new variant is apparently causing some trouble.
The malware apparently infects host Macs by one of three ways. The first two methods involve exploiting one of two Java vulnerabilities which enable the Trojan to infect a host device without any user intervention. If this is unsuccessful then the third method will be an attempt to trick the user to allowing an installation by replicating a security certificate signed by ‘Apple Inc’ requesting content be allowed access to a computer. Users then have to click on continue to allow the Trojan access to their OS.
Infection can be prevented by installation of an updated security program and by making sure that you have the most up to date version of Java installed. In addition, don’t click on any signed security certificates unless you are absolutely sure they are safe. The company notes that many of the Macs that have been infected are running Snow Leopard with older versions of Java installed (Lion requires a new Java installation so most users are already immune from the Java exploit method).
Take a look at Intego’s briefing page on the new strain to get the latest info.