Close
  • Latest News
  • Artificial Intelligence
  • Video
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
Read Down
Sign in
Close
Welcome!Log into your account
Forgot your password?
Read Down
Password recovery
Recover your password
Close
Search
Logo
Logo
  • Latest News
  • Artificial Intelligence
  • Video
  • Big Data and Analytics
  • Cloud
  • Networking
  • Cybersecurity
  • Applications
  • IT Management
  • Storage
  • Sponsored
  • Mobile
  • Small Business
  • Development
  • Database
  • Servers
  • Android
  • Apple
  • Innovation
  • Blogs
  • PC Hardware
  • Reviews
  • Search Engines
  • Virtualization
More
    Home Cybersecurity
    • Cybersecurity
    • IT Management
    • PC Hardware
    • Storage

    Mac Flashback Infections Drop to 270,000: Symantec

    Written by

    Jeff Burt
    Published April 12, 2012
    Share
    Facebook
    Twitter
    Linkedin

      eWEEK content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More.

      The number of Apple Macs infected with the Flashback malware seems to be shrinking as Internet security software vendors roll out tools to detect and remove the exploit and run €œsinkhole€ operations to reduce its effectiveness.

      According to security vendor Symantec, the number of infected systems worldwide has shrunk to 270,000, less than half the more than 600,000 discovered by two other security firms earlier this month.

      In an April 11 post on the company€™s official blog, Symantec officials said that a sinkhole operation they€™ve been monitoring had seen the number of infections drop from 380,000 to 270,000 in a 24-hour period. The sinkhole operation not only enables Symantec to monitor the Flashback malware, but also to prevent the exploit from contacting the command-and-control servers for more instructions, rendering the malware benign.

      The bulk of the infected Macs€”about 47.3 percent€”are in the United States, according to Symantec officials. Canada has the second-highest number of infections, at 13 percent.

      Symantec also was able to identify many distinct IP addresses that are being used for the one of the Flashback variants.

      €œThe IP addresses are no longer serving malicious content related to OSX.Flashback.K; however, we are monitoring the situation closely should the Flashback gang decide to redistribute their operations,€ Symantec officials wrote.

      The Flashback malware was first discovered last year, and operated as a classic Trojan, disguising itself as an update to Adobe Flash (thus the Flashback name). New versions were found in late March and earlier this month, with the variants acting more as drive-by malware, which infects the systems when the users go to a compromised or malicious Website.

      A small Russian antivirus company, Dr. Web, announced April 4 that more than 600,000 Macs€”or between 1 and 2 percent of all Macs in use worldwide€”were infected by the Flashback malware, a number that was later confirmed by security software maker Kaspersky Lab. Flashback became the largest malware issue to hit Apple systems€”which had seen several attacks by other malware over the past year€”and has helped blow apart the theory that Macs are invulnerable to malicious software.

      Apple has come under fire for its slow response to the Flashback malware, which takes advantage of flaws in Java. Oracle had fixed the flaws for Windows PCs and other systems weeks ago, but Apple didn€™t offer the patch to Mac users until last week. In addition, Dr. Web CEO Boris Sharov told Forbes.com that he never heard back from Apple after sending it all the information he had on the Flashback malware. In addition, the notoriously tight-lipped Apple at one point asked a Russian registrar to shut down a domain that Dr. Web was using as part of its sinkhole operation. Sharov said he believed it was an honest mistake on Apple€™s part but that it indicates that Apple needs to learn how to work with the security community.

      €œThey told the registrar this [domain] is involved in a malicious scheme. Which would be true if we weren€™t the ones controlling it and not doing any harm to users,€ Sharov told Forbes. €œThis seems to mean that Apple is not considering our work as a help. It€™s just annoying them.€

      At the same time, Apple officials announced in a brief note on their Website April 10 that they were working on a tool that will enable Mac users to detect and remove the malware from their systems. However, they did not give a timetable of when that will be released.

      In the meantime, a number of vendors€”including Kaspersky, F-Secure and Intego€”as well as a

      software developer

      have all released such free tools over the past week, putting Apple far behind the curve in responding to Flashback.

      In an April 11 post on his company€™s blog, Mikko Hypponen, chief research officer for F-Secure, criticized Apple€™s slow response.

      €œApple has announced that it’s working on a fix for the malware, but has given no schedule for it,€ Hypponen wrote. €œQuite surprisingly, Apple hasn’t added detection for Flashback€”by far the most widespread OS X malware ever€”to the built-in Xprotect OS X antivirus tool. Also note that Apple has not provided a patch for the Java vulnerability used by Flashback for OS X v10.5 (or earlier).€

      Jeff Burt
      Jeff Burt
      Jeffrey Burt has been with eWEEK since 2000, covering an array of areas that includes servers, networking, PCs, processors, converged infrastructure, unified communications and the Internet of things.

      Get the Free Newsletter!

      Subscribe to Daily Tech Insider for top news, trends & analysis

      Get the Free Newsletter!

      Subscribe to Daily Tech Insider for top news, trends & analysis

      MOST POPULAR ARTICLES

      Artificial Intelligence

      9 Best AI 3D Generators You Need...

      Sam Rinko - June 25, 2024 0
      AI 3D Generators are powerful tools for many different industries. Discover the best AI 3D Generators, and learn which is best for your specific use case.
      Read more
      Cloud

      RingCentral Expands Its Collaboration Platform

      Zeus Kerravala - November 22, 2023 0
      RingCentral adds AI-enabled contact center and hybrid event products to its suite of collaboration services.
      Read more
      Artificial Intelligence

      8 Best AI Data Analytics Software &...

      Aminu Abdullahi - January 18, 2024 0
      Learn the top AI data analytics software to use. Compare AI data analytics solutions & features to make the best choice for your business.
      Read more
      Latest News

      Zeus Kerravala on Networking: Multicloud, 5G, and...

      James Maguire - December 16, 2022 0
      I spoke with Zeus Kerravala, industry analyst at ZK Research, about the rapid changes in enterprise networking, as tech advances and digital transformation prompt...
      Read more
      Video

      Datadog President Amit Agarwal on Trends in...

      James Maguire - November 11, 2022 0
      I spoke with Amit Agarwal, President of Datadog, about infrastructure observability, from current trends to key challenges to the future of this rapidly growing...
      Read more
      Logo

      eWeek has the latest technology news and analysis, buying guides, and product reviews for IT professionals and technology buyers. The site’s focus is on innovative solutions and covering in-depth technical content. eWeek stays on the cutting edge of technology news and IT trends through interviews and expert analysis. Gain insight from top innovators and thought leaders in the fields of IT, business, enterprise software, startups, and more.

      Facebook
      Linkedin
      RSS
      Twitter
      Youtube

      Advertisers

      Advertise with TechnologyAdvice on eWeek and our other IT-focused platforms.

      Advertise with Us

      Menu

      • About eWeek
      • Subscribe to our Newsletter
      • Latest News

      Our Brands

      • Privacy Policy
      • Terms
      • About
      • Contact
      • Advertise
      • Sitemap
      • California – Do Not Sell My Information

      Property of TechnologyAdvice.
      © 2024 TechnologyAdvice. All Rights Reserved

      Advertiser Disclosure: Some of the products that appear on this site are from companies from which TechnologyAdvice receives compensation. This compensation may impact how and where products appear on this site including, for example, the order in which they appear. TechnologyAdvice does not include all companies or all types of products available in the marketplace.

      ×