WARNING: New Trojan Effects Macintosh Users: OS X
Archived
EFFECTS:
Mac OS X 10.6, 10.7 with Java installed.
ACTIONS:
1. Confirm all Apple software updates are done.
Select Apple Menu ->Software Updates.
Install any outstanding updates.
2. If you are prompted with any "Self signed Certificates" please DO NOT accept and call ITSupport at 613 533-6666 and ask if it's ok.
3. Install Symantec End Point (SEP) V11.0.7075 (or Later) for Mac OS X.
Download from:
http://www.queensu.ca/its/software/mac.html
NOTE: Simular virus effect Windows OS running Java.
To check if Java is updated on Windows goto http://java.com and select "Do I have Java?" and follow instructions.
DETAILS:
This new variant of the Flashback Trojan horse uses three methods to infect Macs.
The malware first tries to install itself using one of two Java vulnerabilities. If this is successful, users will be infected with no intervention.
The third method of installation, trying to fool users through a social engineering trick ( http://en.wikipedia.org/wiki/Social_engineering_(security) ). The applet displays a self-signed certificate, claiming to be issued by Apple. When prompted for Certificates please check that issue is valid, Apple does not USE self signed certificates. If you are prompted with any "Self signed Certificates" please DO NOT accept and call ITSupport at 613 533-6666 and ask if it's ok.
For more details about this virus see: http://www.queensu.ca/its/software/issues.html#flashback_trojan
Mac OS X 10.6, 10.7 with Java installed.
ACTIONS:
1. Confirm all Apple software updates are done.
Select Apple Menu ->Software Updates.
Install any outstanding updates.
2. If you are prompted with any "Self signed Certificates" please DO NOT accept and call ITSupport at 613 533-6666 and ask if it's ok.
3. Install Symantec End Point (SEP) V11.0.7075 (or Later) for Mac OS X.
Download from:
http://www.queensu.ca/its/software/mac.html
NOTE: Simular virus effect Windows OS running Java.
To check if Java is updated on Windows goto http://java.com and select "Do I have Java?" and follow instructions.
DETAILS:
This new variant of the Flashback Trojan horse uses three methods to infect Macs.
The malware first tries to install itself using one of two Java vulnerabilities. If this is successful, users will be infected with no intervention.
The third method of installation, trying to fool users through a social engineering trick ( http://en.wikipedia.org/wiki/Social_engineering_(security) ). The applet displays a self-signed certificate, claiming to be issued by Apple. When prompted for Certificates please check that issue is valid, Apple does not USE self signed certificates. If you are prompted with any "Self signed Certificates" please DO NOT accept and call ITSupport at 613 533-6666 and ask if it's ok.
For more details about this virus see: http://www.queensu.ca/its/software/issues.html#flashback_trojan
- Publish Date: February 28, 2012 16:16
- Channels:
-
IT Support Centre
- On Campus: ext. 36666
- Off Campus: 613.533.6666
- Online Help Form