Security firm Sophos has discovered more malware for the Mac OS X platform called Sabpab.
It uses the same Java vulnerability as Flashback to install
itself as a “drive-by download.” Users of older versions of Java now have still more malware to worry about.
itself as a “drive-by download.” Users of older versions of Java now have still more malware to worry about.
It also doesn't require any user
interaction to infect a system either just like Flashback all that
needs to happen is for you to visit an infected webpage. Sabpab,
according to Sophos, installs a backdoor that allows the hackers to
capture screen snapshots, upload or download files and execute commands
on infected Macs remotely.
The Trojan creates the files
- /Users//Library/Preferences/com.apple.PubSabAgent.pfile
- /Users//Library/LaunchAgents/com.apple.PubSabAGent.plist
No comments:
Post a Comment