A new Mac trojan has been discovered infecting visitors to a Dalai Lama website.
F-Secure spotted the simple backdoor dubbed Dockster which could log keystrokes.
 |
It exploited the same patched Java vulnerability (CVE-2012-0507) used by the password-stealing Flashback trojan which infected potentially hundreds of thousands of Macs.
The unofficial Dalai Lama site was also serving a Windows exploit (Trojan.Agent.AXMO) which took advantage of a separate Java vulnerability that was patched with an emergency fix on 30 August.
The malware appeared to be the latest in a string of sustained attacks against Tibetan activists.
The latest versions of Mac OS X were immune from the threat.
"Current versions of Mac OS X and those with their browser's Java plug-in disabled should be safe from the exploit," F-Secure security adviser Sean Sullivan said.
_(37).jpg&h=140&w=231&c=1&s=0)
_(33).jpg&h=140&w=231&c=1&s=0)
Cyber Resilience Summit
iTnews Executive Retreat - Security Leaders Edition
Huntress + Eftsure Virtual Event -Fighting A New Frontier of Cyber-Fraud: How Leaders Can Work Together
iTnews Cloud Covered Breakfast Summit
Live & Hands On Demo: Navigating the BMC AMI DevX Platform to Understand Code Faster Using AI
.jpg&h=271&w=480&c=1&s=1)
_(1).jpg&h=140&w=231&c=1&s=0)
