ITWire

Home Business IT Security Older Sabpab Trojan uncovered

Older Sabpab Trojan uncovered

Get all your tech news delivered to your mail box five days a week
iTWire UPDATE - it's FREE!


While Mac users have been worrying about the Sabpab malware that exploits the same Java vulnerability that was used by Flashback.K, it turns out that a version exploiting an old Word vulnerability has been circulating since February.
The discovery of Flashback.K caused a tizzy this month as it was one of the few pieces of Mac malware that involves a true 'drive-by' attack - that is, all a user needs to do is visit a malicious web page and the malware will be installed without further action on the user's part. This was achieved by exploiting a vulnerability in Java that Apple had been slow to patch.

Flashback.K was followed by Sabpab, a different piece of malware that exploited the same Java vulnerability even though Apple had by then released a Java update that plugged the security hole. (Incidentally, Symantec has reported that the number of computers infected with Flashback.K had fallen to around 140,000 by Monday April 16, compared with over 600,000 at its peak.)

Now security vendor Kaspersky is saying that an earlier - though highly targeted - version of Sabpab has been in circulation since February. That variant exploits a Microsoft Word 2004 and 2008 vulnerability that was patched by Microsoft in 2009.

While keeping your system current with regard to security-related updates doesn't guarantee you won't be affected by malware (as Flashback.K demonstrated), it does close a large proportion of the doors that the Bad Guys know about. Indeed, a high percentage of malware infections on Windows machines are said to involve old vulnerabilities that should have been patched.

ITWIRE SERIES - CIO SUMMIT GOLD COAST

For CIOs & Senior IT Management Summit on the Gold Coast!

This event has been personally vetted by the iTWire CEO who has attended four of these conferences in the past and is an event you cannot afford to miss!

We can guarantee that this conference is of great value. Network with fellow CIOs and IT Mgrs and hear Glenn Archer CIO, Australian Government Information Management Office (AGIMO), Matt Barrie, Award-winning Entrepreneur to provide insights on Navigating Your Entrepreneurial Initiatives in a Hyper-connected New World, Stephen Tame, CIO & Head of Group Information Technology, Jetstar, Tim Thurman, CIO, Australian Securities Exchange (ASX).

LIMITED PLACES REGISTER NOW

Stephen Withers

joomla visitors

Stephen Withers is one of Australia¹s most experienced IT journalists, having begun his career in the days of 8-bit 'microcomputers'. He covers the gamut from gadgets to enterprise systems. In previous lives he has been an academic, a systems programmer, an IT support manager, and an online services manager. Stephen holds an honours degree in Management Sciences, a PhD in Industrial and Business Studies, and is a senior member of the Australian Computer Society.

More in this category: « No trust, too little education on IT security Nextgen Networks offers Arbor Networks DDoS protection »
back to top


Services

Company

Community

Connect

http://bs.serving-sys.com/BurstingPipe/adServer.bs?cn=tf&c=19&mc=imp&pli=5460041&PluID=0&ord=[2000]&rtu=-1