You are immune of this malware infection if you have installed the above mentioned security products on your Mac. It will stay quiet and become part of a botnet.
It appears that Flashback is designed to infect the Mac computers which do not install security software.
When Flashback is successfully installed, it will report to the botnet command and control server.
If none of the above applications is found, the Trojan will download and install Flashback on Mac computer. If the application is found, the Trojan will stop and delete itself to avoid compatibility problem. Otherwise the trojan will search for the presences of Microsoft Word, Office 20 and Skype applications. If the user provided the administrator password, the trojan will download and install Flashback components to the machine. If so it will delete itself and do nothing, otherwise it will prompts for the administrator password. The trojan will detect if certain security products (Little Snitch, Xcode, VirusBarrier, iAntiVirus, avast!, ClamXay, HTTPScoop and Packet Peeper) installed on the Mac PC. A success in the exploit will cause a trojan downloader installed. Firstly, when a user using a Mac computer visits a website which has been previous compromised, the exploit script embedded in the web page determined it is a Mac OS and served an exploit that targeted the unpatched Java vulnerabilities (CVE-2011-3544 and CVE-2008-5353). Flashback malware steals passwords and other information from users through their web browser and other applications. It evolved quickly and now it uses drive-by download 1 technique to infect computer without user attention.
Attack against Mac systems one after one, a new malware "SabPub" was discovered.įlashback was discovered in September 2011 and masqueraded as legitimate software “Flash player installer” to trick Mac user to update the Flash player. According to a Russian security antivirus product provider, “Flashback” malware had infected more than 600,000 Mac systems worldwide, with most in the U.S. Today this myth has been challenged by the “Flashback” malware. As I mentioned above, I'd also like to make use of your anti-virus product for my Macs, hence my query about the availability of a new version.Once upon a time there was a myth like this “Mac OS is safe and does not need antivirus”.
My partner has also installed your backup and internet security products on her Windows 7 laptop, both of which look impressive. Since I recently first encountered Comodo's products (through the anti-virus reviews), I've been very impressed with the breadth of your organisation's product range. I'm sure many of us are familiar with that scenario! Nevertheless, as I said, I write this as an encouragement to try to be a little more responsive here and show that Comodo recognises that users taking time to communicate with you can and does have a positive mutual benefit. I'm sure you know this and it may well be that the actual development work is keeping you all so busy that finding time to respond to forum posts cannot be a priority. Just by way of encouragement, and not criticism, may I just say that it can be of great benefit to software developers to maintain a responsive attitude to comments made on their own forums? It hasn't been that long since I posted (above) - just over a week - but in the normal course of events, that should be more than long enough for some sort of response to be made, even if it's not possible to provide one that fully answers the questions that were asked.