“This update provides basic detection for this new threat, which the Apple security team named OSX.Leverage.A,” Erwin reports. “Intego VirusBarrier already provides protection against this threat, which it identifies as OSX/FlashyComposer.A.”
“The malware is a newer version of OSX/Leverage.A, which Intego analyzed back in 2013,” Erwin reports. “The new iteration disguises itself as a fake Flash Player update, which Intego warned could happen in our 2013 blog post. A potential victim will land on a webpage designed to appear as though it is a legitimate Adobe website, which loads an iframe from a URL with malicious code. If a victim allows the execution of the malicious file when prompted or manually executes it from the Downloads folder, the Leverage malware installs a backdoor…”
Read more in the full article here.
MacDailyNews Take: How to tell if an update for Adobe’s shiteous Flash Player is valid here.