MAAS History
Disclaimer
exocrine exocrine

All information Provided as is.

Entries in Condition:GREEN (119)

Thursday
Apr122012

Condition Remains GREEN

Apple has released APPLE-SA-2012-04-12-1 Java for OS X 2012-003 and Java for Mac OS X 10.6 Update 8 for Mac OSX which disables the Web Plug-In when it is not used for 35 days. This update also includes a removal tool and check for FlashBack. 

After the update if you plan to use Java you should review the setting in the Security Preference.App.

http://www.magmatic.com/apple-security-muse/2012/2/23/java-hardening-tips.html

 **Important note: If Java is not installed Software Update will not update Java, this should be the case for OSX Lion Servers and Clients that have never used Java.

 Software Update Information 

This Java security update removes the most common variants of the Flashback malware.
This update also configures the Java web plug-in to disable the automatic execution of Java applets. Users may re-enable automatic execution of Java applets using the Java Preferences application. If the Java web plug-in detects that no applets have been run for an extended period of time it will again disable Java applets.

This Java security update removes the most common variants of the Flashback malware.This update also configures the Java web plug-in to disable the automatic execution of Java applets. Users may re-enable automatic execution of Java applets using the Java Preferences application. If the Java web plug-in detects that no applets have been run for an extended period of time it will again disable Java applets. 

 

Thursday
Feb232012

Condition Remains GREEN

Intego has reported the discovery of a new version of the Flashback Trojan which remains LOW RISK. The attack vector is via a Java applet and includes the use of a self signed certificate. Users can eliminate the risk by completely turning off Java in Safari which is recommended. Java is no longer a popular platform and is seldom used for most day to day general computing.  

If you need to use Java you can do the following:

  • In /Applications/Utilities/Java Preferences.app disable "Allow User to grant permissions to content from an untrusted authority."

More information about hardening Java can be found here

All version of Flash Back are considered LOW RISK to NO RISK. If you update Java than you are completely protected. Currently the latest version of Snow Leopard and Lion are completely immune to Flashback Trojan.