New variant of Apple malware once again puts users at risk

Share this article:
New variant of Apple malware once again puts users at risk
New variant of Apple malware once again puts users at risk

A new twist on an old piece of Apple malware, named OSX/Tibet.C, has put the backdoor on users' radars again.

According to researchers at Mac security software company Intego, the malware is downloaded to computers unbeknownst to users via Java applets hosted on compromised websites. The attack is known as a 'watering hole' because it baits victims without having to target them individually.

The trojan contacts a China-based command-and-control server which gives operators remote access.

Apple's operating system is typically malware free, although the password-stealing Flashback malware infected hundreds of thousands of machines last year. Tibet.C exploits Java vulnerabilities which can be patched by downloading Java 7u25 and newer versions of the platform. 

Share this article:

Sign up to our newsletters

More in News

AOL Mail hack furthers spam campaign using spoofed accounts

AOL confirmed on Monday that it was aware of the issue and working to remediate the situation.

Backdoors in Wi-Fi routers, said to be closed, can be reopened

Backdoors in Wi-Fi routers, said to be closed, ...

Although said to be patched, researcher Eloi Vanderbeken discovered during the Easter holiday that backdoors existing in certain wireless routers can be reactivated.

Apple ships Mac OS X updates, fixes several code execution bugs

Apple ships Mac OS X updates, fixes several ...

Among the addressed vulnerabilities, was a bug affecting WindowServer, which could allow an attacker to execute malicious code outside the sandbox.