flashback | DataProtectionCenter.com

Mac Trojan Disables XProtect Updates

19

Oct

2011

There’s something new brewing in Mac malware development (again). Recent analysis has revealed to us that Trojan-Downloader:OSX/Flashback.C disables the automatic updater component of XProtect, Apple’s built-in OS X anti-malware application. First, Flashback.C decrypts the paths of XProtectUpdater files that are hardcoded in its body: Flashback.C decrypts the path of the plist file of XProtectUpdater Flashback.C […]

Category General Written by F-Secure Antivirus Research Weblog 0 Comments

Mac Trojan Flashback.B Checks for VM

12

Oct

2011

One of our analysts has discovered something interesting while debugging the latest version of Flashback, a Mac trojan that attempts to trick people into believing it’s an Adobe Flash Player update. While comparing the differences between Flashback.A and Flashback.B, he saw this routine: Flashback.B performs a “vmcheck”. If virtualization is detected, the trojan aborts itself. […]

Category General Written by F-Secure Antivirus Research Weblog 0 Comments

New Apple OS X Malware: Fake Adobe Flash Installer

28

Sep

2011

A new attack against Apple Mac OS X Lion (10.7) has been detected by Intego. The threat is a trojan, dubbed Flashback, installed via a fake Adobe Flash installer downloaded from a third party site. As with the MacDefender and Revir malware the Flashback attack uses social engineering to entice the user to download then install […]

Category General Written by ESET ThreatBlog 0 Comments

The Latest in IT Security

Posts Tagged ‘flashback’

Mac Trojan Disables XProtect Updates

Mac Trojan Flashback.B Checks for VM

Categories

Featured

Archives

Latest Comments

About Us

Contact Us