Fresh off the news that more than 650,000 Mac computers have been infected with a nasty Trojan horse virus called “Flashback,” another Apple threat is on the prowl.
According to anti-virus software provider Kaspersky Lab, a Trojan called SabPub — or more formally, Backdoor.OSX.SabPub.a — has recently been spreading via Java and could be infecting computers when people open email messages with suspicious links that direct users to malware.
“The Flashback and the SabPub Trojans are totally different,” Alex Gostev, chief security expert of Kaspersky Lab, told Mashable. “SabPub is classic backdoor Trojan, so it opens full access to a victim’s system for attackers. Flashback and its known variants is downloader and clickjacking bot, which means it conducts click fraud scam by hijacking people’s search engine results inside their web browsers.”
A new version of the Mac OS X Sabpab Trojan horse has come to light, and rather than relying upon a Java vulnerability - it appears to be exploiting malformed Word documents instead.
If you open the boobytrapped Word document on a vulnerable Mac, a version of the OSX/Sabpab Trojan horse gets installed on your computer opening a backdoor for remote hackers to steal information or install further code.
As a decoy, a Word document is dumped onto your drive and displayed - effectively acting as a camouflage for the Trojan's true intentio
Summary
This Java security update removes the most common variants of the Flashback malware.
Products Affected
Java, Product Security, OS X Lion, Mac OS X v10.6
This Java security update removes the most common variants of the Flashback malware.
This update also configures the Java web plug-in to disable the automatic execution of Java applets. Users may re-enable automatic execution of Java applets using the Java Preferences application. If the Java web plug-in detects that no applets have been run for an extended period of time it will again disable Java applets.
Java for OS X Lion 2012-003 delivers Java SE 6 version 1.6.0_31 and supersedes all previous versions of Java for OS X Lion.
This update is recommended for all Mac users with Java installed.
The End of Days approaches…. Diablo III will be unleashed from the Burning Hells on May 15, 2012, and you can be ready to play the minute the servers go live by pre-purchasing the game digitally on Battle.net today.
Beginning May 15, players around the world will be able to return to Tristram to discover the dark secrets of a fallen star and begin their quest to save Sanctuary from the impending demonic invasion. To secure your place as a barbarian, monk, demon hunter, witch doctor, or wizard right now, simply log in to your Battle.net account, and then purchase and download* Diablo III, and you’ll be ready to play when the game launches.