New Version of Flashback Trojan Targets Mac Users

wiredmikey writes with this extract from Security Week: "On Friday, researchers from security firm Intego reported that a new variant of Flashback is targeting passwords and as a byproduct of infection, Flashback is crashing several notable applications. Flashback was first discovered by Intego in September of 2011. It targets Java vulnerabilities on OS X, two of them to be exact, in order to infect the system. Should Flashback find that Java is fully updated, it will attempt to social engineer the malware's installation, by presenting an applet with a self-signed certificate. The certificate claims to be signed by Apple, but is clearly marked as invalid. However, users are known to skip such warnings, thus allowing the malware to be installed. ... The newest variant will render programs such as Safari and Skype unstable, causing them to crash. Interestingly enough, normally these are stable programs, so if they start suddenly crashing might be a sign of larger issues."

Re:But I thought...

[jo_ham]

I know you're trolling, but no he didn't.

He did say they were much less likely, but it has never been the case that Macs were immune. There has been a history of malware on the Mac since the pre-OS X days.

Far fewer viruses in the OS X era though (relative to earlier Mac OSes), but several trojans - usually in pirate software (like the infamous "pretends to be MS Office installer but really destroys your home folder" one).

Vigilance is necessary on all platforms, especially against trojans, since they tend to exploit the common weak link in computer security - the user of the system.

Re:But I thought...

[Anonymous Coward]

If you remember the "I'm a PC" and "I'm a Mac" commercials, the gist of several of the ads was that Macs COULDN'T be compromised like PCs.

While geeks always new better, I think the point the OP was trying to make is that the majority of Mac users, those who "just want it to work", were sold on the idea that they weren't succeptibal to viruses and malware.

Re:

[Anonymous Coward]

Susceptible.

You're obviously on a computing device connected to the Internet so why not take a few seconds to look up a word if you don't know how it's spelled?

Re:

[Taty'sEyes]

You missed his usage of the word "new"...

Re:But I thought...

[Sancho]

I don't think they ever said "couldn't" or "can't", but instead said, "don't."

Re:

[Lumpy]

" you remember the "I'm a PC" and "I'm a Mac" commercials, the gist of several of the ads was that Macs COULDN'T be compromised like PCs."

And at that time it was 100% correct.

Pc's would get a virus just by letting it sit on the internet without a firewall. MAC's would not do this as they actually had a firewall in the BSD underpinnings.

I know that MS fanbois hate that this was a fact and most try like hell to ignore it, but it's also the reason why Linux is far more secure than Windows. Ms is getting bett

Re:But I thought...

[DJRumpy]

Not only that, but this isn't a virus. It's a trojan, and there is no secure system free of trojans unless no human ever interacts with it. As far as I know, as of right now, there are no viruses in the wild for a Mac, as opposed to the 100K plus that are there for a PC. In that respect, the chances that a user will be duped into installing a bit of code with this specific trojan are pretty limited.

Why is it that when we hear about the 1 or 2 trojans for Mac that come out each year, the anti-apple folks come out of the woodwork claiming they are all 'viruses' and that Mac users think they are immune, etc. Of course slashdot extremists will pander to this and mark such posts insightful. The very fact that we're talking about a trojan on a Mac and that it is 'news' speaks volumes. The vector of infection for a trojan has nothing to do with the OS, and unless you need to turn in your geek card, everyone here damn well knows that.

Is a Mac immune? Of course not. No user system is immune from Trojans. Are you less likely to be infected on a Mac? Certainly, and claims to the contrary are patently false. Will that change in one year? Ten years? Who knows. That doesn't change the fact that the gist of the I"m a Mac commercials is still valid, even today.

Re:

[Ol Olsoc]

Why is it that when we hear about the 1 or 2 trojans for Mac that come out each year, the anti-apple folks come out of the woodwork claiming they are all 'viruses' and that Mac users think they are immune, etc. Of course slashdot extremists will pander to this and mark such posts insightful. The very fact that we're talking about a trojan on a Mac and that it is 'news' speaks volumes.

It makes the PC fans feel better about themselves. But I can't actually explain the logic.

One of my favorite in person trolling games is to get together with friends, and since we're all techies, I'll bring up something about say, a virus on the PC, and invariably, most will brag about how "I've never gotten a virus". Then in the next breath, they tell their story of how their machine was infected so badly that they almost had to or had to reformat their computer because of some virus they picked up. Same

Re:

[makomk]

Not only that, but this isn't a virus. It's a trojan, and there is no secure system free of trojans unless no human ever interacts with it.

Strictly speaking, most of the Windows users they were targetting with that ad would probably have been infected by trojans rather than viruses too - Apple kind of relied on users not making that distinction.

Re:

[exomondo]

Of course slashdot extremists will pander to this and mark such posts insightful.

I don't get who these 'slashdot extremists' are, or what their point of view is, could you explain it? In just about every story it's some idiot referring to the 'slashdot crew' or 'slashdot extremists' or just 'slashdot' as the people who don't share their point of view, as though they have such a unique - but correct - perspective that the entire community cannot or refuses to see, the result is that said groups are defined as both both bashing and defending Microsoft and Google and Apple and GPL and FOSS

Re:

[heroid1a]

MAC != Mac Capisce?

Re:But I thought...

[hal2814]

Vigilance is very important on all platforms. The worst infection I ever had was on a Solaris 9 box. Some piece of garbage zombie bot took advantage of a weakness in CDE. Who the hell targets CDE?!

Re:

[stephanruby]

Who the hell targets CDE?!

Blind people?

Re:But I thought...

[LordLimecat]

The "Im a PC ads" certainly made that statement. Youre not going to look at this ad...
http://www.youtube.com/watch?v=GQb_Q8WRL_g [youtube.com] ...and tell me that the implication isnt supposed to be that "Macs are immune to viruses".

I also find it telling that folks who are not very technical and not qualified to comment on the security of an OS somehow have this idea that Macs cant get viruses. Now where do you suppose that assumption comes from?

Re:

[Anonymous Coward]

That commercial did not, in fact, make the statement that "Macs are immune to viruses."

It did say that there were "114,000 known viruses for PCs" to which the Mac replies "PCs. Not Macs."

It's worded in such a way that your casual listener will likely believe "Oh, Macs don't get PCs", but it's ALSO worded so that Apple could easily argue that they merely meant that there are simply *not* 114,000 viruses for Macs. Maybe there's 100,000. Maybe 150,000. Maybe 0. But they didn't say outright, "Macs don't get vir

Re:But I thought...

[I(rispee_I(reme]

That commercial did not, in fact, make the statement that "Macs are immune to viruses."

It did say that there were "114,000 known viruses for PCs" to which the Mac replies "PCs. Not Macs."

What about this one [youtube.com]?

It says, "I run Mac OS X, so I don't have to worry about your spyware and viruses."

I suppose the argument could be made that the commercial meant that the person running OS X didn't have to worry about anyone's spyware and viruses but his own (due to the word "your"), but only someone who was already on guard against Apple's duplicitous salesmanship would interpret the commercial in that way.

**** BEGIN PEDANTRY DETERRENCE ****
**** REASONABLE READERS MAY DISREGARD ****

Also, because the Mac representative has spent the previous entirety of the commercial scoffing at the PC representative's paranoia, there is a much more obvious and likely meaning of "your spyware and viruses", as in, "Take your average virus, for example. It doesn't worry me." This usage of "your" does not convey possession (by the PC representative), and thus does not distinguish between viruses and spyware by platform.

**** END PEDANTRY DETERRENCE ****

The commercial clearly suggests that Mac OS X boasts some special resistance or protection (immunity, perhaps?) against spyware and viruses that saves its users the trouble of worrying about same.

Re:

[mikael_j]

Spyware is software, the SPIES on you. A virus is a self-propagating program. A trojan is a piece of malware disquised as something else. Ergo, spyware trojan is not the same as a spyware virus. Semantics, yes, but it's better than calling everything a virus.

Re:

[Barsteward]

they should have been a lot more specific and say "Windows PC" as the Mac is a Personal Computer as well.

"not immune" != "just as bad as a PC"

[Brannon]

Security has always been and will always be a question of reducing the frequency and impact of escapes--anyone who thinks otherwise is "not very technical and not qualified to comment."

Macs are safer than Windows PCs. IOS is safer than Android.

Re:

[EdIII]

I'm sorry, with all due respect, that is bullshit.

The only reason why Macs are perceived as more secure is because they have less market share, and therefore less interest to those who make the malware. Period.

So if I go out in the middle of nowhere in the desert and build a house, it is kind of stupid for me to claim that my house is safer just because nobody tried to rob it in 15 years.

Sony was thought of as impenetrable with their PS3. Pissed the wrong people off when they removed the OtherOS support..

Re:"not immune" != "just as bad as a PC"

[Daniel Dvorkin]

The only reason why Macs are perceived as more secure is because they have less market share, and therefore less interest to those who make the malware.

-1, Security Through Obscurity.

I'll remind you yet again that in the pre-OS X era, there was quite a bit of Mac malware floating around; never as much for DOS/Windows PCs, to be sure, but still a lot of it. At a rough guess, it existed about in proportion to the relative market share of the Mac OS ... which kind of gives credence to the market share argument, except that when OS X became the standard, the number dropped to damn near zero, and stayed there for many years. There's more OS X malware out there than there used to be, now, but the proportion is still nowhere near the market share of OS X relative to Windows. And the vast majority of exploits are, like this one, browser-based, rather than targeting the OS itself.

In short, the market share argument is just as much bullshit as security-through-obscurity arguments always are.

Re:

[Ameryll]

"The only reason why Macs are perceived as more secure is because they have less market share, and therefore less interest to those who make the malware."

That may be why techies believe it, but then they tell their non-techie friends who just spread the word that macs are immune to viruses. I know a lot of people who tell others that they're immune to viruses without knowing why that might be.

Worst I had a teacher, whom I was a TA for, telling freshmen that macs couldn't get viruses. If I recall correctly

Re:

[UnknowingFool]

Technically they are all correct. Macs are safer from viruses as viruses have a difficult time self-replicating. The nature of unix makes it hard for them to do so. Now I would caution that Macs are not immune from all forms of malware. Trojans rely on the user accepting the programs and some users will load and run anything.

Re:

[Daniel Dvorkin]

So your argument is that changing the core operating system will get rid of viruses, and make the virus makers to start from scratch? I bet if I switch to a new OS, like WebOS, and a catch up quickly, it will take some time for viruses to show up. so your argument doesn't disprove anything.

OS X has been around for thirteen years, and has been the default OS on all new Macs for ten years. And Windows viruses still outnumber Mac viruses by well over a thousand to one. Are virus writers really that slow? I don't think so.

Re:

[philip.paradis]

So if I go out in the middle of nowhere in the desert and build a house, it is kind of stupid for me to claim that my house is safer just because nobody tried to rob it in 15 years.

You might want to pick a better analogy. Many criminals have specifically targeted houses built in remote/rural locations, because of a perceived lessening of the odds that neighbors will notice their activities (there aren't any neighbors, or they're half a mile down a dirt road), coupled with greatly increased police response times.

The understood risk with such plans is the somewhat increased likelihood that the residents will own firearms and know how to use them, but rural homes getting assaulted, the i

Re:

[ewanm89]

Exactly, in any targeted attack (think pwn2own) MacOSX usually comes of worse, but attacks of opportunity are much less rare, it's easier to go to the estate and just find one without an alarm than the middle of the desert.

Re:

[optimism]

The only reason why Macs are perceived as more secure is because they have less market share, and therefore less interest to those who make the malware. Period.

Nah. Macs are perceived as more secure because Apple ~advertises~ them that way.

PCs are perceived as less secure because the mainstream (Windows/PC) software ecosystem, including FUD miscreants like Symantec, McAfee, and Trend Micro, market their products and maintain their control via scare tactics. They make malware sound more pervasive and damaging than it is. Ironically, most of the damage comes from their products.

The reality is that Macs and PCs are of approximately equal value to malware authors. PCs

Re:

[Ol Olsoc]

The only reason why Macs are perceived as more secure is because they have less market share, and therefore less interest to those who make the malware. Period.

Bullshit yourself. Do you think there is like only three Macs out there?

If they were vulnerable, the millions of Macs out there would make them a nice platform to use and distribute. After all, you can ask PC fans, Mac users are depicted as computer illiterate idiots. A vulnerable platform plus stupid users is an almost irresistible target and ideal distribution network.

But believe as you wish. A good story helps some folks believe that they made the right choice.

Re:

[mjwx]

Sony was thought of as impenetrable with their PS3. Pissed the wrong people off when they removed the OtherOS support... and lo and behooooold.... security was destroyed. I can download over 200 PS3 games right now with all sorts of firmware and methods to "pwn" the PS3. I hate Sony so I have no interest in giving them money for that POS.

This, it's the same with the Xbox and Wii.

Consoles are extremely popular, look how quickly they get hacked. A hack to give the user more functionality is a hack never

Re:

[LordLimecat]

Any reason Mac OSX (fully patched) has been the first to fall in the yearly Pwn2Own since its inception, if what youre saying is accurate?

Re:

[jo_ham]

Look at it carefully. It does not make that statement. As I mentioned in another comment, they lie by omission, because they're talking about the PC.

The phrase "last year there were 114,000 known viruses for PC... yeah but not Mac..." is accurate. What it doesn't mean is that it's immune. They can't state that (and don't) because it isn't true.

And the idea that less tech savvy people believing that Macs can't get viruses is probably from personal experience. There have been a handful of viruses for OS X in

Re:But I thought...

[Anonymous Coward]

The fact that this is even considered a story makes the point that Macs are still less afflicted by this stuff than Win boxes. Can you imagine if Slashdot were to post a story for every new Windows malware variant that appears?

Re:

[thetoadwarrior]

It never made that statement because it would have been false. It did have PC talk about 14,000+ Windows viruses which are harmless to Mac so, at best, it implied, Mac is immune to Window's viruses but that's about it.

And the fact is Macs aren't as insecure. Is that because they're unix based or because they're not as popular? It doesn't really, matter, they are generally more secure and generally require user stupidity which no system is invulnerable against and that is why they would never say the Mac

Re:

[Attila Dimedici]

You have the option on Windows of not running as Administrator. And starting with Vista, if the user gets infected it is only that user profile that is infected (unless they were running as Administrator) and knowledgeable users will not get the entire system infected.

Re:

[drsmithy]

And starting with Vista, if the user gets infected it is only that user profile that is infected (unless they were running as Administrator) and knowledgeable users will not get the entire system infected.

No, this has been true for every version of Windows NT.

Re:But I thought...

[LordLimecat]

On Windows there is a user called System and most programs need to be installed/run as the system user which gives a virus Trojan unlimited access to the full system.

Thats just plain not accurate on several levels.

For starters, I have never in my life seen an installer that needed to run as System. Administrator, yes, but thats not the same thing. For another, you need to install system programs on Mac as root, which IS the same thing as "the system user", as it has the highest rights on the system.

Third, most programs do NOT need to be installed as an admin-- you can install them to the local user's folder. I assume you could pull this off in a Mac, but Im not sure.

If you have a knowledgeable user on a Mac he can run the system securely with out a need for a virus scanner. Unfortunately on Windows you do not have this option.

Baloney. If youre downloading random executables from the net, I suppose you might want that scanner; but if your browser plugins are out of date it wont matter terribly much what OS you use or whether you have a scanner, as each year's Pwn2Own proves (with Mac getting hacked first each time).

Re:

[bryan1945]

You don't need to be root to install a program. Some programs need an Adminstrator-like account, but it's not root. In OS X's security pane you can essentially shut off root from user access. Non-admins, i.e. normal users, can install most programs.

Re:

[Gilmoure]

And they can always install apps into their home directory.

Re:

[Anne Thwacks]

You just drug the self-contained executable

You really mean all those apps on my Mum's Apple are drugged? Don't tell her she might 'frique out!

Re:

[LordLimecat]

The applications folder, last I checked, resided on the root of the OSX filesystem (/Applications). That is a system directory which a non-admin will not have rights to.

Many OSX apps do have "installers", even though as you point out they are just disk-images that request you to drag the .app over to /Applications. Arguing whether that is an "installer" isnt terribly relevenat.

Well, OS X already has built-in antivirus since Snow Leopard IIRC. Just google XProtect.

And Windows has Windows Defender. Both are absolutely worthless, because anyone developing a virus will at the get-go ensure it g

Re:

[Gilmoure]

Bosch of course. And don't even bring up Rigid. Unless you're dealing with tools to work on a septic system, they're just rebadged (colored) Ryobi. Sad to see.

Re:

[Arrepiadd]

If you have a knowledgeable user on a Mac he can run the system securely with out a need for a virus scanner. Unfortunately on Windows you do not have this option.

Now I've never ran an anti-virus on an UNIX system I own, including my Macs, but I would never run a Windows system without it.

Stop spreading FUD, please.
When I used Windows XP I didn't have an antivirus for extensive periods. When I did, I kept it off all the time. I must certainly have had periods of over between 6 months between scans. And I never found viruses, adware, spyware and so on.

I didn't install random crap I found on the internet. I used an account without privileges. I had the standard firewall on. I updated my software. That's all there is!
And before you say it was impossible to have a standard privilege account ba

Re:

[jo_ham]

So you're saying this trojan is a virus?

Mhmmmhmmmm.

Try harder next time.

Re:

[scot4875]

Do you also correct every mistaken article and post about Windows 'viruses' that are actually trojans? Or are you just here to white knight for Apple?

--Jeremy

Re:

[jo_ham]

Of course I do. This isn't about Apple or Microsoft, it's about the definitions used to describe security threats and the distinction is important.

The more the anti-Apple brigade run around wailing about what they perceive Apple users think about "viruses" in a story about a trojan the less the discussion is about the actual threat in question.

I also make the distinction on Windows, especially when educating users (generally family members) whose machines I occasionally look after.

It may seem pedantic, but

Re:But I thought...

[MikeMo]

Regardless, this is neither a virus nor a worm. It's a trojan. You're supposed to know the difference.

Re:But I thought...

[symbolset]

If you have to deliberately install it, it's neither a virus nor a worm. It's an app.

If you want to lose all your accounts' credentials

[Anonymous Coward]

... there's an app for that.

Even worse

[formfeed]

It is a "new variant of Flashback"

A new variant??

something made with parts that have been used previously?
maybe even on a PC?
code parts that could run on any grey unspectacular computer?
a modified version of something coded for the masses?

Please tell me, they at least improved it so it would use functions only genuine apple hardware could provide.

Re:

[garyoa1]

But no one told you that Jobs was a marketing genius. ;)

What's Java?

[fostware]

Java was an optional extra on 10.6 and is a separate download on 10.7.

Re:

[SuperSlacker64]

Answered your own question, eh?

Re:

[account_deleted]

Comment removed based on user account deletion

Re:

[fostware]

Honestly, I wouldn't know... :)

We only perform a "time machine/re-image or reinstall/restore user" when a user gets a hardware or software upgrade. Java is left to the user to request, Casper self-service, or install themselves (all owners are local admins of their own machines).

It's a little harsh, but that's the result of managing Macbooks for 1800 staff and students.

BTW, I get the distinct impression that Java is the next "blight" to purge now that Apple has made a concerted effort to make sure Flash isn

Re:

[account_deleted]

Comment removed based on user account deletion

Re:

[Trillan]

Use Sun's site to check:
http://java.com/en/download/testjava.jsp [java.com]

I doubt it's still installed after an upgrade, though.

Re:

[TheRaven64]

Open a terminal. Type 'java'. Does it say command not found, or does it give you the help info for Java? I have Java installed for a couple of local apps, but you can disable it in Safari easily (preferences, security, uncheck enable java).

Re:

[account_deleted]

Comment removed based on user account deletion

Re:

[stesch]

It's the Minecraft runtime.

Re:

[Rosyna]

Silly Adobe Applications (like Photoshop) require Java be installed or else they won't work.

If you want to blame anyone for Flashback, blame Adobe. Since without them, Java would never be installed on most Macs running Mac OS X 10.6 or higher.

Re:

[Pope]

It's that thing that should always be turned OFF in Safari's preferences since 10.4.

More malware

[meerling]

Since it's causing instabilities, it's a poorly written piece of malware.
The standard generic symptom of being infected by malware is there are no apparent symptoms. It's just that when people start having problems is when they start looking, but you can bet they were infected LONG before they had those unrelated problems. Obviously that doesn't apply to this one, since it's new and it does cause problems. And yes, you can find others that have recognizable symptoms, but most don't.

Wonder how long until Mac users start claiming the don't have malware again. (Will it be Months, Weeks, Days, or Hours...) :)

No offense meant to Mac users, but find a way to escape the reality distortion field if you are still in it.

Re:More malware

[jo_ham]

Who says Mac users claim they don't get malware? It seems to be oft-repeated here on Slashdot, but whenever the topic of Mac security comes up actual Mac users post in the threads that they're well aware that OS X is not invulnerable, and in fact posting examples of trojans and malware that they remember hearing about.

It comes up every time, so the only people who seem to perpetuate the myth of the technology-literate Apple user who claims immunity from security threats are the ones seeking to mock the Reality Distortion Field and the users of Apple software as clueless.

Incidentally, this malware does have some relatively sneaky features - it allegedly avoids trying to install itself if it detects AV software, to attempt to avoid early detection. Crashing browsers is not a good start though. Not very subtle, since Safari doesn't really crash any more - it tends to be the helper process that crashes and that is restarted almost transparently to the user.

Re:

[I(rispee_I(reme]

Who says Mac users claim they don't get malware? ...
It comes up every time, so the only people who seem to perpetuate the myth of the technology-literate Apple user who claims immunity from security threats are the ones seeking to mock the Reality Distortion Field and the users of Apple software as clueless.

Here [youtube.com] is an Apple commercial that claims that Macintoshes don't get viruses. It is part of a series of commercials that make it seem as though there is some special feature of Apple hardware that makes it

Re:

[paiute]

Here is an Apple commercial that claims that Macintoshes don't get viruses.

Flashback Trojan. Not a virus.

Re:

[I(rispee_I(reme]

You are as correct here as you are irrelevant, since I was replying to a post that only mentioned "malware".

Since you have decided to play the pedant, I might also point out that the target audience for the Apple advertisement is unlikely to make the fine distinction between trojans and viruses.

Re:

[jo_ham]

So again, where does it say that Apple computers are immune?

It states that Windows PC are clearly not, but it doesn't actually say that OS X *doesn't* have malware - it actually lies by omission in that respect (the PC gives up and the Mac wins by default, not because it has no viruses).

The reason that they never state that they're immune is because, quite simply, they're not.

Apple can certainly say they're more secure than Windows though, which is what they did.

(this relates to both viruses and trojans, al

Re:

[UnknowingFool]

And I would say that a person on a tech forum not knowing the difference between a virus and a trojan is perpetuating bad information. That's like saying that vaccines are ineffective because you still have a chance to get food poisoning from salmonella, listeria, and botulism no matter how many vaccines you take.

Re:

[makomk]

What proportion of the users that Apple was targeting in that advertising campaign do you think would know or care about the difference between a virus and a trojan?

Re:

[UnknowingFool]

The flu vaccine protects you against a strain of the flu virus. It does not protect you against other strains, other viruses, or other pathogens. Someone not understanding/not caring about this presents a challenge to health professionals. The only that can be done is to inform them. If they are determined not to learn, there 's not much that can be done.

Re:

[artor3]

Apple, and their fans, have long insinuated that Macs don't get malware. It's a major part of their advertising campaign. Walk up to ten technically illiterate people and ask what the advantages are of Macs over PCs, and I'd wager at least half would say that they don't get viruses. I know that's why my sister bought one, as she flat out told me so (this was during the Vista era, so it wasn't worth correcting her). This belief didn't come from nowhere. Apple and their fans have carefully built it up ov

Re:

[UnknowingFool]

No they have said there are not as many viruses for Macs as there are PCs and thus users are safer from viruses. Viruses. This is a trojan which requires intervention by the user.

Re:

[dbet]

Walk up to a bunch of pet owners and ask them the advantage of a cat over a bear. They'll claim cats don't maul you. But we all know cats can theoretically maul you, so by your logic, I have just proven that cats and bears are equally dangerous pets.

For a large majority of Mac users, the only malware they've seen in the last 10 years is extra search bars in Firefox, and you don't even have to run AV software.

Windows still allows changes to the registry without your immediate consent if you're runnin

Re:

[gnasher719]

Apple, and their fans, have long insinuated that Macs don't get malware.

Fact: Macs used by reasonable intelligent users don't get malware. Fact: There are no known viruses for the Macintosh in the wild. Fact: There is malware in the form of Trojans and scareware trying to attack Macs or Mac users; such malware relies on user stupidity.

Here in the UK, people get phone calls from a company claiming that their computer is infected by malware, and they should pay this company money to clean up the infection. Does having a Mac protect you from these calls? Of course not. I got th

We said there was none - now there is...

[SuperKendall]

Who says Mac users claim they don't get malware?

They said that because it was true for a while, there was no malware to get.

Now, correctly, we will say "be careful you don't get the malware".

The malware that requires people to download Java by the way, which does not ship with macs now...

Re:

[gl4ss]

*Who says Mac users claim they don't get malware?*

fucking real life mac users. all the fucking time. get out sometime 'eh? they got the idea from adverts. you know, people who wouldn't know what you were talking about if you joked about the RDF. people who bought macs in recent years because "they just work"(they're not techno literate).

(disclaimer, my other pc is a mac)

Re:

[VisceralLogic]

As a Mac user, I don't claim there is no Mac malware, but I do claim that I don't get any. I got one virus on OS 7, but never anything on OS X.

Re:

[jo_ham]

I'm exactly the same. I didn't even get any malware on OS 8.6/9, but that was because we isolated the machine and it really only edited video. I've never been infected on any of my OS X machines, in the 10 years since I've been using it.

Re:

[jo_ham]

You are misreading it - I mean the exact opposite; that not all Apple users (or computer users in general) are technology-literate.

In other words, I'm talking about the sort of people who frequent technology websites such as Slashdot.

Apple knows the solution

[wannabgeek]

From now on, all Macs will have a firewall and any download will only happen after being approved by Apple. Like the AppStore makes your computer safe from third-party apps, this will make your computer safe from Web.

Got my hopes up...

[hal2814]

The first words of this post were "New Version of Flashback... [wikipedia.org]" It all went downhill from there. But at least Delphine Software isn't going to bastardize a classic by turning it into yet another FPS. [wikipedia.org]

Re:

[Osgeld]

FLashback .... one of my all time favorites, at one point I would have told you that was the only game my sega could play

Java version?

[RockMFR]

Which versions of Java are vulnerable? Basic details are nice to have...

I am so tired..

[Higgins_Boson]

I am so tired of these April Fool's jokes when it isn't even April yet.

Everyone knows Macs don't get trojans or viruses and that this story originated from The Onion!

The real story

[Rootkit]

is that Skype is known to be stable. That is certainly news to me.

Re:

[Samantha Wright]

Came here to say more or less the same thing. It must be a Mac-only feature?

Just in time

[koan]

For this...
http://apple.slashdot.org/story/12/02/25/2327214/quicktime-creator-brings-flash-and-office-to-the-ipad-by-subscription [slashdot.org]

Why is this a trojan horse and not a virus?

[evilsofa]

From the Intego article about the new variant: "This malware is particularly insidious, as users don’t download anything or double-click any file to launch an installer." Yet Intego repeatedly refers to as a Trojan horse. All of the other articles I can find only reference the Intego report, and don't call it a virus either, including those who would know better, such as Ars Technica and the ISC Diary.

But if it requires no interaction from the user, then why is it not the first true Mac OS X viru

Re:

[JimboFBX]

close, a trojan doesn't have a replication method classification, a trojan is just a piece of malware that provides a backdoor to your computer. A trojan could be a worm or a virus or just malware.

Come to think of it, viruses in their "true" form are pretty rare now-a-days. Pretty much everything is just straight-up malware/adware or worms. I wonder if it has to do with the fact all programs are at least 32-bit now and don't run machine code directly.

Safari stable? Since when?

[dragisha]

First thing to stop using when you get an OSX machine, in my book.
When I first got MBP, fall 2010, I had few hard freezes. They stopped as soon as I stopped using Safari.
It may be a coincidence, but my MBP is definitely more stable without. A lot more stable!

As for users ignoring warnings... It looks like good case for Apple to close OSX as they closed iOS - force us to use single app store. Good thing gnome-shell is really nice env, so current OSX users have upgrade, errr, escape path available.

Re:

[Lumpy]

I know a LOT of mac users and none of them use safari, They all use Chrome or Firefox, mostly because of what you experienced. Safari causing the system to crash. Running Lion helps, mostly because they eliminated the PPC code completely, but that adds in new issues installing older software that was universal and written by dummies that did not make the installer universal.

Re:

[dbialac]

Since early on but not since the 3.x days. I found it funny to watch Steve talk about how unstable flash was and how it caused most of Safari's crashes. I never had issues with flash once I dumped Safari. Oddly, I don't have issues with flash on Chrome -- and it's the same rendering engine!

*ANY* platform can get infected

[Hamsterdan]

Even if the platform doesn't have any security holes, never underestimate the USER

Download free Natali Portman naked .img would do that on OS X

Re:

[Hamsterdan]

WTF?

meant .dmg

Why doesn't /. have a way to edit posts? it's not like we're stuck in 1995...

Re:

[gl4ss]

WTF?

meant .dmg

Why doesn't /. have a way to edit posts? it's not like we're stuck in 1995...

it would radically alter the atmosphere and feel of the site to have edits.

you know all those shitty sites which have comments sections that flame up with some troll or another.. and then there's half of the discussion totally vaporized.

for the same reason modding slashdot doesn't erase the comments.

Solution Found!!!!

[Nyder]

You need to hold your mac by the corners.

Where do I click?

[microphage]

I'm on a Mac, where do I click for a working example?

Re:

[TheRaven64]

But the Trojans were actually from Troy, which is in Turkey, not France, though apparently they didn't mind it Greek style occasionally.

Way off topic, but the Greeks actually refer to that as 'Turkish style'...

Re:

[exomondo]

Then what's 'Turkish delight'?