A new trojan horse has cropped up that affects Mac OS X (and Windows as well), primarily disguised as a video flitting around social networking sites. When users click an infected link, a Java applet is launched that downloads multiple files, including an installer that runs automatically without users’ knowledge.
The Trojan, dubbed trojan.osx.boonana.a by security firm SecureMac, appears as a message on social networking sites such as Facebook that reads, “Is this you in this video?” When the user clicks the link, a Java applet runs, allowing the system to download several files and install a program that can bypass the usual password verification OS X requires for installation.
The malware launches automatically on startup, communicates with command and control servers, and can also crack user accounts on other sites to continue to spread itself as spam.
SecureMac asserts that because the initial phase of the trojan runs on Java, it can spread itself to both Mac OS X and Windows. SecureMac doesn’t say explicitly how it differs on Windows, only that the payload includes “other files” that are directed at Windows.
Disabling Java in your browser can help you avoid infection, but the problem is solved easily enough—don’t click shady links. For those already under Boonana’s spell, though, SecureMac has created a free removal tool. The company also reminds Mac users that as Apple’s market share grows, they need to be mindful of increased attention from hackers.
Read the comments on this post
View full post on Security
Related Posts
- Podcast: Security Risks and Mitigation Suggestions of Social Networking Sites
In this podcast interview, I discuss the risks that social
networking sites introduce to enterprises. I also suggest a few mitigation
strategies. What are drop-by-drop data leaks about? Tune in ... - Facebook Scam: ‘Wired News: iPhone 5 – First Exposure’ leads to Adware
From likejacking to photo-tagging, Facebook scammers are constantly searching for new ways to get their scam campaigns to spread through the social network. Early this weekend, we observed a new type ... - New Banking Trojan Targeting ACH and Wire Payment Sites is Discovered
Over the past year, the SecureWorks Counter Threat Unit (CTU)(SM) has seen criminals continue to target Automated Clearing House (ACH) and wire transfer transactions for fraud activity, resulting in h... - Sophos report reveals increase in social networking security threats
Sophos has today published its annual Security Threat Report, looking back at the last twelve months and ahead to the threats we can expect to encounter during 2011.
Inside you'll find a wide variet... - 2 Types of Social Media and Social Networking Risks for Enterprises
People get really worked up when discussing the dangers of social media and social networking. There are reasons to be concerned, but no need to panic.
Novel ways of interacting on-line are new to ev... - 2 Types of Social Media and Social Networking Risks
People get really worked up when discussing the dangers of social media and social networking. There are reasons to be concerned, but no need to panic.
Novel ways of interacting on-line are new to ev... - Java drive-by download infects your PC with Trojan
Lately I’ve been interesting in dissecting malicious Java programs. I found one used as a drive-by download on this site under the deceiving name: “Sun_Microsystems_Java_Security_Update_6.... - Social Networking: Been There, Done That, But Something Is Different
Why are we so excited and concerned about social networking?
A Brief History of Social Networking
In an earlier note I proposed defining social networking as communicating while being mindful of rela... - The Definition of Social Networking
What do we mean when we say social networking? I haven’t been able to find an authoritative reference that feels right, so I thought I’d take a shot at the definition.
Wiktionary includes, among its d... - Most Parents Monitor Kids’ Social Networking Regularly
Some parents appear to have no shame when it comes to the difference between monitoring and cyber stalking, according to a new study.
View full post on PCMag.com Security Coverage...
Posted on 29 October 2010. Tags: Attacks, Java, Networking, Sites, Social, Trojan
