Plenty of companies and people have released tools for identifiying whether or not the nefarious Flashback.k Trojan has infected their machines, but outside of a couple of Java patches, Apple hasn’t released any tools to help you remove infected files and close any holes. But, Apple is working on it.
According to a support document that popped up on Apple’s website, Apple is preparing a software bundle that will detect and remove the Flashback malware in its entirety.
[quote]Apple released a Java update on April 3, 2012 that fixes the Java security flaw for systems running OS X v10.7 and Mac OS X v10.6. By default, your Mac automatically checks for software updates every week, but you can change that setting in Software Update preferences. You can also run Software Update at any time to manually check for the latest updates …Apple is developing software that will detect and remove the Flashback malware … In addition to the Java vulnerability, the Flashback malware relies on computer servers hosted by the malware authors to perform many of its critical functions. Apple is working with ISPs worldwide to disable this command and control network.[/quote]
Until Apple happens to roll out the software, you can still use Kaspersky Labs tools, which we highlighted yesterday, to identifity and remove the trojan should you actually be infected. We’ve also put together some other suggestions in the post from yesterday so we recommend heading over there and checking it out.
It has been reported that 2 percent of all Macs (~600,000) have been infected with the trojan. At the very least, if you have Java installed, and you’re running OS X, you should check to see if your system has been compromised.