Re: [Jmol-users] OSX Java vulnerability

It is in the link he provided.


***********************************************
Jeff Hansen
Department of Chemistry and Biochemistry
DePauw University
602 S. College Ave.
Greencastle, IN 46135
[EMAIL PROTECTED]
***********************************************


On Apr 5, 2012, at 10:36 AM, Philip Bays wrote:

> Tim:
> Can you provide a link to the F-Secure instructions page?
> 
> Phil
> 
> On Apr 5, 2012, at 10:11 AM, Timothy Driscoll wrote:
> 
>> <http://arstechnica.com/apple/news/2012/04/flashback-trojan-reportedly-controls-half-a-million-macs-and-counting.ars>
>> 
>> Flashback trojan reportedly controls half a million Macs and counting
>> By Jacqui Cheng | Published about 16 hours ago
>> 
>> Variations of the Flashback trojan have reportedly infected more than half a 
>> million Macs around the globe, according to Russian antivirus company Dr. 
>> Web. The company made an announcement on Wednesday—first in Russian and 
>> later in English—about the growing Mac botnet, first claiming 550,000 
>> infected Macs. Later in the day, however, Dr. Web malware analyst Sorokin 
>> Ivan posted to Twitter that the count had gone up to 600,000, with 274 bots 
>> even checking in from Cupertino, CA, where Apple's headquarters are located.
>> 
>> We have been covering the Mac Flashback trojan since 2011, but the most 
>> recent variant from earlier this week targeted an unpatched Java 
>> vulnerability within Mac OS X. That is, it was unpatched (at the time) by 
>> Apple—Oracle had released a fix for the vulnerability in February of this 
>> year, but Apple didn't send out a fixuntil earlier this week, after news 
>> began to spread about the latest Flashback variant.
>> 
>> According to Dr. Web, the 57 percent of the infected Macs are located in the 
>> US and 20 percent are in Canada. Like older versions of the malware, the 
>> latest Flashback variant searches an infected Mac for a number of antivirus 
>> applications before generating a list of botnet control servers and 
>> beginning the process of checking in with them. Now that the fix for the 
>> Java vulnerability is out, however, there's no excuse not to update—the 
>> malware installs itself after you visit a compromised or malicious webpage, 
>> so if you're on the Internet, you're potentially at risk.
>> 
>> If you think one of your machines may be infected, F-Secure has instructions 
>> on how to use the Terminal to find out.
>> 
>> 
>> tim
>> -- 
>> earth:usa:virginia:blacksburg:toms creek basin
>> 
>> behindtherabbit: twitter | facebook | diigo | tumblr
>> rabbitwocky    : chat | skype | blogspot
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> 
>> ------------------------------------------------------------------------------
>> Better than sec? Nothing is better than sec when it comes to
>> monitoring Big Data applications. Try Boundary one-second 
>> resolution app monitoring today. Free.
>> http://p.sf.net/sfu/Boundary-dev2dev
>> _______________________________________________
>> Jmol-users mailing list
>> [EMAIL PROTECTED]
>> https://lists.sourceforge.net/lists/listinfo/jmol-users
> 
> J. Philip Bays
> Emeritus Professor of Chemistry
> Department of Chemistry and Physics
> Saint Mary's College
> Notre Dame, IN 46556
> [EMAIL PROTECTED]
> 
> 
> 
> 
> 
> 
> ------------------------------------------------------------------------------
> Better than sec? Nothing is better than sec when it comes to
> monitoring Big Data applications. Try Boundary one-second 
> resolution app monitoring today. Free.
> http://p.sf.net/sfu/Boundary-dev2dev
> _______________________________________________
> Jmol-users mailing list
> [EMAIL PROTECTED]
> https://lists.sourceforge.net/lists/listinfo/jmol-users


------------------------------------------------------------------------------
Better than sec? Nothing is better than sec when it comes to
monitoring Big Data applications. Try Boundary one-second 
resolution app monitoring today. Free.
http://p.sf.net/sfu/Boundary-dev2dev
_______________________________________________
Jmol-users mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/jmol-users