- 16 April 2012 10:05
Apple pumps out yet another Java update
Apple has delivered - or so it says - on its promise to provide a Flashback malware removal tool.
The new update is packaged in two flavours:
* Java for Mac OS X 10.6 Update 8, documented in HT5243.
* Java for OS X Lion 2012-003, documented in HT5242.
Both updates claim that "this Java security update removes the most common variants of the Flashback malware. "
The one for Lion goes a little further:
This update also configures the Java web plug-in to disable the automatic execution of Java applets. Users may re-enable automatic execution of Java applets using the Java Preferences application. If the Java web plug-in detects that no applets have been run for an extended period of time it will again disable Java applets.
The updates also include the latest Java version all over again, 1.6.0_31.
If you're using Snow Leopard, disabling Java in your browser won't happen automatically. It looks as though the Java applet autodisabler is Lion-only.
I'd love to tell you more about the Flashback remover supplied by Apple, but I'm afraid I don't know how.
There's no documentation about it; there's no information about how to run it by hand in the future, or how it works, or what variants of the malware it finds; and - at least on my uninfected 10.6 computer - it didn't give any visual indication that it had run at all. (Three words for Apple about security bulletins: promptness, clarity and openness.)
(Update. HT5247 has a bit more story about the removal tool. It's documented to say nothing if it finds nothing. Thanks to François for pointing this out.)
Also, of course, it won't protect you against reinfection, and it won't protect you against any other Mac malware.
So there you have it. Apple's Java distribution and the Flashback malware addressed in one go. Unless you have OS X Leopard (10.5) or earlier. If you do, you're still out of luck - no patches for you.
PS. See how I resisted the urge to mention the free Sophos Anti-Virus for Mac Home Edition, complete with detection, prevention and remediation of Flashback and heaps of other malware, at any point in the above article :-)
UXC Connect’s Jesmond Psaila says that DevOps can do for IT operations what Agile did for software development. This paper demonstrates how, by combining both approaches, you can significantly improve operational efficiency and time-to-market. • Marketing and development teams want to constantly change or increase functionality, while IT operations teams want to keep the environment as stable as possible • Agile software development and virtualisation have not solved the time-to-value problem faced by marketing and IT operations teams • Recent movements in DevOps aim to address and redefine a more agile service management platform, while new tools have vastly improved functionality to configure and automate common processes
- FTMachine Learning | JAVA | San Fran based global Company | SydneyNSW
- FTCampaign Managers | RTB | Display + Video | Trading desk |SydneyNSW
- CCL2 Technical Support Engineer - RightFax/MessagingVIC
- FTSenior Media TraderNSW
- FTDigital Account Manager X 3 | Display + Video advertisingNSW
- FTCampaign Managers| RTB / Programmatic | Expression of InterestNSW
- FTDigital Media PlannerNSW
- FTChief Information OfficerNSW
- FTInformation Services ManagerNZ
Communications service providers (CSPs) are struggling with an explosion of data traffic resulting from increased mobile usage, streaming video, resource-intensive over-thetop (OTT) applications, and smart device proliferation. At the same time, CSPs must deploy new network technologies and services to stay competitive and satisfy customers.
- IBM Watson now answers your questions before you ask
- Are Uber's aggressive recruitment tactics legal?
- Fibre, Internet segments drive Vocus Communications revenue
- Senate extends telecommunications interception inquiry
- PC market in 2014 a bit less dire than previously thought
- Cotap, a WhatsApp for the enterprise, links with cloud storage providers
- Apple loses bid for sales ban in Samsung patent case
- Broadcom wants to let 1,000 IoT devices bloom with $19.99 development kit
- Microsoft reissues patch that crippled Windows PCs
- Retailers warned to act now to protect against Backoff malware
- Intel makes the world's smallest IoT modem
- Wireless competition heats up, and so do changes in executive ranks
- Microsoft rolls out DLP to SharePoint Online and OneDrive for Business
- Salesforce.com CRM upgrade puts heavy emphasis on mobile
- Vulnerabilities on the decline, but risk assessment is often flawed, study says says