The Trojan... how safe are we?
8 views
Skip to first unread message
mac98aop
Apr 15, 2012, 5:27:43 PM4/15/12
to sm...@googlegroups.com
Being Unix based (ie, needs Amin password to make any changes) I've always told folks we Mac users don't need to worry about AntiVirus (okay okay, so we could have it to prevent us sending something on by mistake) but, does this new trojan malware indicate that there are holes and we now need to start worrying?
Has the playing field changed?
How so?
Russell Brown
Apr 15, 2012, 5:42:39 PM4/15/12
to sm...@googlegroups.com
This page has useful info
Game changer? Maybe. Maybe not. Reflects the increasingly popularity of macs I guess.
Russell
Sent from a device of sorts.
Sent from a device of sorts.
@drbrown1970
--
You received this message because you are subscribed to the Google Groups "Sussex Mac User Group" group.
To view this discussion on the web, visit https://groups.google.com/d/msg/smug/-/EPEbdKA6dqYJ.
To post to this group, send an email to sm...@googlegroups.com.
To unsubscribe from this group, send email to smug+uns...@googlegroups.com.
For more options, visit this group at http://groups.google.com/group/smug?hl=en-GB.
Sam - MacAmbulance
Apr 15, 2012, 5:48:44 PM4/15/12
to sm...@googlegroups.com
Personally I don't think it's a reason to install a dedicated antivirus program just yet. They affect the speed of the computer to a degree that it's just not worth it for a single threat, especially one which Apple has already issued a software fix & removal tool for.
We'll need to keep an eye on things and see if more variants appear, if Apple can't keep up then Sophos produce a free version of their antivirus software for home use.
Regards
Sam
MacAmbulance
Providing affordable Apple & PC services
Sam Mullen
07747 778022
http://www.macambulance.co.uk
in...@macambulance.co.uk
Emrah Omuris
Apr 15, 2012, 6:09:40 PM4/15/12
to sm...@googlegroups.com
OS X doesn't come with Java pre-installed but many people do install it due to its popularity and the issue was with Java, not OS X (at least that's what Apple's Marketing Team is thinking possibly)
Sent from iPhone
Sent from iPhone
--
You received this message because you are subscribed to the Google Groups "Sussex Mac User Group" group.
Sam - MacAmbulance
Apr 15, 2012, 6:23:04 PM4/15/12
to sm...@googlegroups.com
Lion doesn't come with Java, Snow Leopard and below do.
Sam
mac98aop
Apr 16, 2012, 11:08:32 AM4/16/12
to sm...@googlegroups.com
so are we still satisfied that the OS is inherently safe, (as opposed to below the radar of virus writers due to lack of users) as it always requires Admin passwords.
However, other apps such as Java, might be the weakness....
To unsubscribe from this group, send email to smug+unsubscribe@googlegroups.com.
--
You received this message because you are subscribed to the Google Groups "Sussex Mac User Group" group.
To post to this group, send an email to sm...@googlegroups.com.
To unsubscribe from this group, send email to smug+unsubscribe@googlegroups.com.
Sam - MacAmbulance
Apr 16, 2012, 11:44:47 AM4/16/12
to sm...@googlegroups.com
There's always a chance that there's an undiscovered security flaw in OS X, it's just much less likely that someone would put the time into finding it than WIndows. The FlashBack trojan used a flaw in Java but did install a Mac specfic program, so they've obviously put some time into the development.
Most likely the mac malware was ready to go waiting for a security flaw to be found, in this case with Java.
Toby Leighton
Apr 17, 2012, 12:04:21 PM4/17/12
to sm...@googlegroups.com
IMHO its a matter of time before similar exploits arise in Flash/PDF files, as I think there have been mac PDF exploits in the past. It is quite common in the windows world for malware/trojans to exploit flaws in out of date adobe plugins, but luckily so much so that adobe plugins tend to hassle you quite frequently about keeping up to date nowadays, and on macs built in preview does a great job making adobe reader only necessary if you really need it.
It feels like the mac platform has now reached suitable sized market penetration level and the day that security people have been saying is around the corner for years is nearly here.
I dont think its a situation where every mac needs an antivirus program urgently, but do I think the days of carefree web browsing and freebie program/plugin experimentation are over.
Be careful out there, install updates when they are available, and remove any old apps that you don't use.
--
You received this message because you are subscribed to the Google Groups "Sussex Mac User Group" group.
To post to this group, send an email to sm...@googlegroups.com.
To unsubscribe from this group, send email to smug+uns...@googlegroups.com.
Russell Brown
Apr 17, 2012, 1:44:13 PM4/17/12
to sm...@googlegroups.com
Report I saw today about another java(?) exploit spread within .doc files, with the aim of infecting Macs.
It was on both TUAW and Apple insider.
Russell
Sent from a device of sorts.
Sent from a device of sorts.
@drbrown1970
Graham Perrin
Apr 18, 2012, 7:53:11 AM4/18/12
to sm...@googlegroups.com
… the issue was with Java …
Correct, the issue was with a part of Java, a part that Oracle is not ready to open source.
For some time it has been possible to install on OS X a developer preview of a JDK provided by Oracle, but that installation was missing two key parts (not open sourced):
* Java plug-in.
Less widely known
-----------------
About Java for OS X Lion 2012-002
Currently not mentioned in that article … with this Apple-provided version of Java, you can:
* prefer something greater than the System version of Java
— and if that greater thing is without the Java plug-in, without Java Web Start, then your web browser should automatically use the (System) version of Java that *does* include those features.
Reply all
Reply to author
Forward
0 new messages