April 11th 2012
By Mike Flaminio
Apple has a new technical document addressing the Flashback malware. The Java exploit has been patched by Apple with a software update last week. Apple encourages users to utilize the latest Java release by updating via the Software Update tool. Apple also said it's developing a tool to remove any rogue installation.
Flashback utilized an exploit in Apple's Java implementation. The trojan horse functions as a botnet on a users computer and get infected when they're redirected to a malicious website.
While Apple is working on its own tool, users have a couple options to both check for an infection and removal. F-Secure has instructions on how to do both from the Terminal, and a new FlashbackChecker app is available that will check your system with a click of a button.
For this reason and many others, buying a copy of Little Snitch is a great idea. The software monitors and allows users to control their network activity, so if some rogue software tries to communicate with the outside, the user will be alerted.
Apple: About Flashback malware