Symantec: Flashback Trojan for Mac Generates $10,000/Day
May 1, 2012 1:46 PM
comment(s) - last by
Flashback appeared in March 2012, and by April, it had infected over 600,000 Macs
Security software company Symantec released a report today showing that the Flashback trojan, which is
infecting hundreds of thousands of Mac computers
, could be generating as much as $10,000 per day.
The Flashback trojan, also known as Flashfake, disguises itself as an install Java applet on hijacked sites. When the user approves it, the trojan runs a piece of code that exploits a flaw in Java to remove OS X's anti-malware abilities. It then has the ability to steal clicks from ads on Google's search engine next to regular search results. Flashback installs alternative control programs, which turns Macs into bots. Meanwhile, the cyber criminals reap the benefits from the ghost clicks, meaning ad clicks that are not performed by a human, but by a bot instead.
Flashback appeared in March 2012, and by April, it had
infected over 600,000 Macs
. Despite efforts to eliminate the trojan, hackers are still earning fraudulent revenue from Flashback daily.
Symantec offered an example of a code that hijacked an ad based on a search for the word "toys." While Google should be making money on this ad click, the code redirects the click elsewhere, and the hackers receive 8 cents for the ghost click instead.
"It's now well-known that the latest OSX.Flashback.K variant was being distributed using the
Oracle Java SE Remote Java Runtime Environment Code Execution Vulnerability
(CVE-2012-0507), which was patched by Oracle in February," said Symantec. "Unfortunately for Mac users, there was a large window of exposure since Apple’s patch for this vulnerability was not available for six weeks.
"This window of opportunity helped the Flashback Trojan to infect Macs on a large scale. The Flashback authors took advantage of the gap between Oracle and Apple's patches by exploiting vulnerable websites using Wordpress and Joomla to add malicious code snippets."
The Symantec report was unable to come up with a definite figure regarding how much the hackers were making, but estimated that cyber criminals using hundreds of thousands of Flashback trojan infections could be making up to $10,000 on a daily basis. It came to this conclusion by comparing Flashback infections to the 2011 W32.Xpaj.B botnet in 2011, which consisted of only 25,000 Windows PCs that generated $450 per day.
Just last month, computer security company Kaspersky Labs announced that
Apple is at least 10 years behind Microsoft when it comes to security
. With Apple selling more Macs year-over-year, cyber criminals are starting to notice these computers' popularity and target them with malware attacks.
This article is over a month old, voting and posting comments is disabled
The real issue Mac vs. Windows
5/5/2012 9:01:33 PM
When I switched from MS to Apple 11 years ago the difference in performance w/o problems was night (MS) and day (Apple) and things have gotten nothing but brighter since then. NOTHING ever goes wrong, since that time years ago no program has ever crashed save a rare problem on an internet site. AND with the time and hassle saved the question of a few extra dollars cost is absurd if you earn more than 50 cents per hour and if that argument isn't enough, over the last 6+ years, no one I know of at the Boston Mac Group (MIT) has purchased anti-virus software ($100 - 200/yr) as there is still no need for it. When a new OS comes out the price has averaged out to $20/yr; I use Apple's version of MS Office and paid 15% the cost and when after 3 years a new version was available, that was $35. If I don't know how to do anything involving my Mac or Apple software, I call for free support (after $350/3 years) and am talking to an expert in that topic in a total wait time of so far NEVER more than 3 minutes. Frankly, I have many better things to do with my life than waste time trying to become a software engineer like when MS was a miserable part of my life. And thems just for starters...
"It looks like the iPhone 4 might be their Vista, and I'm okay with that." -- Microsoft COO Kevin Turner
Kaspersky Labs: Apple's Security 10 Years Behind Microsoft
April 26, 2012, 7:39 AM
Apple Admits Its Macs Have a Malware Problem
April 12, 2012, 12:07 PM
Malware Authors Get Boost from Apple's Sluggish Updates, Infect 600K Macs
April 6, 2012, 8:40 AM
Apple Adds New Password Protection for Third Party iCloud Apps
September 17, 2014, 8:50 PM
Facebook Tests Moments App, Aims to Keep Your Private Memories Private
September 17, 2014, 5:46 PM
Russian Hackers Compile List of 10+ Million Stolen Gmail, Yandex, Mailru
September 11, 2014, 11:41 AM
House Minority Leader Pelosi Criticizes FCC's "Fast-Lane" Net Neutrality Plan
September 9, 2014, 4:15 PM
Smarter Than Siri? Cortana Adds Game NFL Game Winner Prediction
September 3, 2014, 4:12 PM
Apple Says Nude Celebrity Photo Dump Wasn’t Result of iCloud, Find My iPhone Breach
September 2, 2014, 3:26 PM
Most Popular Articles
HTC Preps Nexus 9 With Nvidia K1 64-Bit "Denver" SoC, Android L Onboard
September 10, 2014, 10:21 PM
Apple iPhone 6, iPhone 6 Plus Reviews Roll In
September 16, 2014, 9:13 PM
Dell Announces "World's Thinnest" Tablet: The Venue 8 7000 Series
September 11, 2014, 8:51 AM
Samsung Calls Out “Copycat” Apple for 5.5” iPhone 6 Plus in New Ads
September 14, 2014, 11:06 PM
Confirmed: Next Generation of Windows to Be Announced on September 30
September 15, 2014, 4:43 PM
Latest Blog Posts
ISIS Imposes Ban on Teaching Evolution in Iraq
Sep 17, 2014, 5:22 PM
Space Terrorism is a Looming Threat For the United States
Apr 23, 2014, 7:47 PM
Facebook Aims to Provide Internet to "Every Person in the World" with Drones, Satellites
Apr 1, 2014, 10:20 AM
Retail Mobile Sites Experience Outages in Light of Simplexity's Bankruptcy
Mar 14, 2014, 8:48 AM
Tesla vs. BMW: Who Has the Safer EV?
Feb 1, 2014, 2:56 PM
More Blog Posts
Copyright 2014 DailyTech LLC. -
Terms, Conditions & Privacy Information