|Sophos Discovers New Multi-Platform Java Attack Targeting Windows & OS X
IT News Online Staff
SophosLabs announced that its experts have discovered Trojan hidden inside multi-platform Java attack designed to hit both Windows and OS X users.
Just hours before the release of Mountain Lion, the latest version of the OS X operating system, new malware has been discovered highlighting the need for Apple Mac users to protect their computers with anti-virus software.
Sophos researchers have discovered that the new Morcut Mac OS X malware, also known as "Crisis", has been distributed as part of a multi-platform attack, designed to hit both Windows and Mac users - embedded in an archive file which pretends to be Adobe Flash Player.
The threat, which has not yet been seen in the wild, is complex - and when run on an OS X system drops multiple components, reconfigures system settings and installs a backdoor and root kit combination that connects to a remote server and waits for instructions from malicious hackers.
When run on Windows systems, a version of the Swizzor malware is installed instead.
Graham Cluley, Senior Technology Consultant, Sophos, said, "Analysis of this malware is ongoing, but Mac users are protected right now if they are running a good, up-to-date anti-virus. The good news is that this threat has not been seen in the wild so far, but we are seeing increasing evidence of cybercriminals exploiting the fact that many Mac users have still not got the message that they need to protect their computers."
"There is much less malware for Macs than there is for Windows, but that doesn't mean its non-existent. If Mac users are too laid-back about security and leave their bellies exposed, they're asking for trouble," said Cluley.
SophosLabs said it experts are continuing to analyze the Morcut malware, and warn that even if the threat does not break into the wild, the techniques it uses could be deployed by other malicious hackers in the future.