A Daily news digest by Jasper van Santen

Apple under fire over response to Flashback virus – Telegraph

In News on April 11, 2012 at 10:14

Apple under fire over response to Flashback virus .

Apple Fan that I am, the response time for this has been inexcusable.

 

The Trojan virus exploits vulnerability in Java, a programming language widely used by interactive websites, to steal personal information. Third party security firms have detected infections on more than 600,000 Macs, which have been co-opted into a remotely-controlled “botnet”,

As well as creating a tool to remove Flashback, Apple said it was working with internet service providers in an effort to disrupt the “command and control” network used by the criminals behind it.

“In addition to the Java vulnerability, the Flashback malware relies on computer servers hosted by the malware authors to perform many of its critical function,” Apple said on its technical support website.

“Apple is working with ISPs worldwide to disable this command and control network.”

Apple released a patch for the Java vulnerability exploited by Flashback last week, but according to security firms, it had already tricked hundreds of thousands into handing over control of their Mac.

RELATED ARTICLES

Trojan virus tricks Apple Mac users to steal passwords 26 Feb 2012

iTunes flaw ‘let governments spy for 3 years’ 24 Nov 2011

BlackBerry or iPhone? 14 Oct 2011

“This once again refutes claims by some experts that there are no cyber-threats to Mac OS X,” said Russian firm Dr Web.

The relative lack of computer viruses targeting OS X has long been touted by fans as a major advantage over Microsoft Windows, and Apple itself boasts that with “virtually no effort on your part, OS X defends against viruses and other malicious applications, or malware”.

Today though, Kaspersky Lab, a major anti-virus firm, sharply criticised the speed of Apple’s response to Flashback, which was discovered months ago.

“The three month delay in sending a security update was a bad decision on Apple’s part,” said Alexander Gostev, its chief security expert.

Java is developed by the corporate software giant Oracle, which was able to issue a patch for Windows machines itself. Apple controls the distribution of software updates for OS X, however, and did not act until last week.

 

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s