Flashback Trojan horse a threat to unpatched Macs

Trojan Horse with people insideWhile there have been no sightings at Brown yet, Mac users should be alert to the Flashback Trojan variant, which could cause some damage to unsuspecting Mac users.

The security firm Intego, who first reported the Flashback Trojan horse this fall, has spotted a new variant that uses a three-prong attack strategy to infect Macs. According to Indego:

“The malware first tries to install itself using one of two Java vulnerabilities. If this is successful, users will be infected with no intervention. If these vulnerabilities are not available – if the Macs have Java up to date – then it attempts a third method of installation, trying to fool users through a social engineering trick. The applet displays a self-signed certificate, claiming to be issued by Apple. Most users won’t understand what this means, and click on Continue to allow the installation to continue.”

More details in ZDNet’s article and Intego’s report.

Posted in Outages & Alerts, Phishing & Malware Alerts, Safe Computing | Comments Off on Flashback Trojan horse a threat to unpatched Macs