Symantec: Flashback Trojan for Mac Generates $10,000/Day
May 1, 2012 1:46 PM
comment(s) - last by
Flashback appeared in March 2012, and by April, it had infected over 600,000 Macs
Security software company Symantec released a report today showing that the Flashback trojan, which is
infecting hundreds of thousands of Mac computers
, could be generating as much as $10,000 per day.
The Flashback trojan, also known as Flashfake, disguises itself as an install Java applet on hijacked sites. When the user approves it, the trojan runs a piece of code that exploits a flaw in Java to remove OS X's anti-malware abilities. It then has the ability to steal clicks from ads on Google's search engine next to regular search results. Flashback installs alternative control programs, which turns Macs into bots. Meanwhile, the cyber criminals reap the benefits from the ghost clicks, meaning ad clicks that are not performed by a human, but by a bot instead.
Flashback appeared in March 2012, and by April, it had
infected over 600,000 Macs
. Despite efforts to eliminate the trojan, hackers are still earning fraudulent revenue from Flashback daily.
Symantec offered an example of a code that hijacked an ad based on a search for the word "toys." While Google should be making money on this ad click, the code redirects the click elsewhere, and the hackers receive 8 cents for the ghost click instead.
"It's now well-known that the latest OSX.Flashback.K variant was being distributed using the
Oracle Java SE Remote Java Runtime Environment Code Execution Vulnerability
(CVE-2012-0507), which was patched by Oracle in February," said Symantec. "Unfortunately for Mac users, there was a large window of exposure since Apple’s patch for this vulnerability was not available for six weeks.
"This window of opportunity helped the Flashback Trojan to infect Macs on a large scale. The Flashback authors took advantage of the gap between Oracle and Apple's patches by exploiting vulnerable websites using Wordpress and Joomla to add malicious code snippets."
The Symantec report was unable to come up with a definite figure regarding how much the hackers were making, but estimated that cyber criminals using hundreds of thousands of Flashback trojan infections could be making up to $10,000 on a daily basis. It came to this conclusion by comparing Flashback infections to the 2011 W32.Xpaj.B botnet in 2011, which consisted of only 25,000 Windows PCs that generated $450 per day.
Just last month, computer security company Kaspersky Labs announced that
Apple is at least 10 years behind Microsoft when it comes to security
. With Apple selling more Macs year-over-year, cyber criminals are starting to notice these computers' popularity and target them with malware attacks.
This article is over a month old, voting and posting comments is disabled
Booga booga booga -- buy our stuff!
5/2/2012 3:42:41 PM
While Apple has not handled malware issue very well (particularly when it comes to having their "geniuses" lie to customers), these anti-virus companies have a history of using scare tactics to try to get people to purchase their products.
Java isn't part of OS X Lion. Users have to install it manually. Users also had to agree to install the malware. While Apple took too long to patch Java, there is also something to be said for computer users being responsible enough not to be suckered into choosing to install malware and also for Java to not be so vulnerable in the first place.
"Mac OS X is like living in a farmhouse in the country with no locks, and Windows is living in a house with bars on the windows in the bad part of town." -- Charlie Miller
Kaspersky Labs: Apple's Security 10 Years Behind Microsoft
April 26, 2012, 7:39 AM
Apple Admits Its Macs Have a Malware Problem
April 12, 2012, 12:07 PM
Malware Authors Get Boost from Apple's Sluggish Updates, Infect 600K Macs
April 6, 2012, 8:40 AM
Target Chief Information Officer Resigns in Wake of Holiday Data Breach
March 6, 2014, 2:01 PM
Quick Note: Yahoo to Require Users of its Services to Have Yahoo IDs
March 5, 2014, 4:55 PM
Ellen DeGeneres' Star-studded "Selfie" Briefly Crashes Twitter During Oscar Broadcast
March 3, 2014, 8:27 AM
Comcast Deal May See Netflix Start Paying Verizon, AT&T
February 25, 2014, 9:29 AM
Report: NSA Still Spying on German Officials
February 24, 2014, 1:19 PM
Netflix Agrees to Pay Comcast to End Traffic Jam
February 24, 2014, 10:00 AM
Most Popular Articles
Mt. Gox Bitcoin CEO Can't Stifle Grin as he Bows in Apology for Bankruptcy
February 28, 2014, 5:00 PM
Report: Microsoft Considering Offering Free “Windows 8.1 with Bing”
February 28, 2014, 10:21 AM
Facebook Kills Popular Messenger App for PCs
March 1, 2014, 4:01 PM
Two More Microsoft Executives Leaving the Company
March 3, 2014, 4:38 PM
USAF Moves Forward With Long Range Bomber Program Despite Budget Crunch
March 4, 2014, 9:44 AM
Latest Blog Posts
Tesla vs. BMW: Who Has the Safer EV?
Feb 1, 2014, 2:56 PM
Justice Leaks Details of Next HTC One Two Flagship Phone
Dec 5, 2013, 4:04 PM
Global Cyber Espionage Concerns Reveal Growing Cyber Armies
Nov 29, 2013, 11:04 AM
Is The Period Becoming an Expression of Anger?
Nov 26, 2013, 2:02 PM
NSA and Congress -- You Will Never Kill the Constitution, It's an Idea
Nov 10, 2013, 2:00 PM
More Blog Posts
Copyright 2014 DailyTech LLC. -
Terms, Conditions & Privacy Information