Costin Raiu, Kaspersky Lab security researcher, has discovered another Mac OS X Trojan. Dubbed Backdoor.OSX.SabPub.a (or just SabPub, for short), the malware uses Java exploits to infect a Mac, connect to a remote Web site, and wait for instructions that include taking screenshots of the user’s Mac and executing commands.
“The Java exploits appear to be pretty standard, however, (and) they have been obfuscated using ZelixKlassMaster, a flexible and quite powerful Java obfuscator,” Raiu wrote on the Securelist blog. “This was obviously done in order to avoid detection from anti-malware products.”
Raiu’s discovery comes as Mac users are on high alert over the Flashback Trojan, which reportedly infected over 600,000 Macs worldwide.
Source: CNET News