New variant of Apple malware once again puts users at risk

Share this article:
New variant of Apple malware once again puts users at risk
New variant of Apple malware once again puts users at risk

A new twist on an old piece of Apple malware, named OSX/Tibet.C, has put the backdoor on users' radars again.

According to researchers at Mac security software company Intego, the malware is downloaded to computers unbeknownst to users via Java applets hosted on compromised websites. The attack is known as a 'watering hole' because it baits victims without having to target them individually.

The trojan contacts a China-based command-and-control server which gives operators remote access.

Apple's operating system is typically malware free, although the password-stealing Flashback malware infected hundreds of thousands of machines last year. Tibet.C exploits Java vulnerabilities which can be patched by downloading Java 7u25 and newer versions of the platform. 

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

TOP COMMENTS

More in News

Email promises free pizza, ensnares victims in Asprox botnet instead

Email promises free pizza, ensnares victims in Asprox ...

Cloudmark came upon an email that offers free pizza, but clicking on the link to get the coupon ends with victims being ensnared in a botnet.

Report: most orgs lacking in response team, policies to address cyber incidents

In its Q3 threat intelligence report, Solutionary learned that 75 percent of organizations it assisted had no response team or policies and procedures to address cyber incidents.

Flash redirect campaign impacts Carnegie Mellon page, leads to Angler EK

Flash redirect campaign impacts Carnegie Mellon page, leads ...

Malwarebytes found that, since early July, thousands of sites had been targeted in the campaign.