Apple victim of malware attack

The company said it has found no evidence that the attackers stole any data

Apple on Tuesday said it was a victim of a malware attack. A small number of systems inside the company were compromised.

The malware attack was tied to a vulnerability in a Java plug-in for browsers, Apple said in a statement sent via email.

"There is no evidence that any data left Apple. We are working closely with law enforcement to find the source of the malware," the statement reads.

Apple isolated the infected systems from its network.

The malware reached Apple computers through a website for software developers. The same malware is also tied to recent malware attacks against Facebook.

Apple is releasing a tool that scans Macs and removes the Java malware. Oracle has also released an update to Java that fixes the vulnerability.

Security concerns prompted Apple to stop adding Java to the operating system by default starting with Mac OS X Lion. However, users can install it independently. If Java is installed, it is automatically disabled after 35 days if not used.

Agam Shah covers PCs, tablets, servers, chips and semiconductors for IDG News Service. Follow Agam on Twitter at @agamsh. Agam's e-mail address is agam_shah@idg.com

Tags Applesecurity

Comments

Comments are now closed

CSO Corporate Partners
  • f5
  • Webroot
  • Trend Micro
  • NetIQ
rhs_login_lockGet exclusive access to CSO, invitation only events, reports & analysis.
CSO Directory

Enterprise Virtualisation Security

Deep Security provides a comprehensive Server Security Platform giving organisations advanced protection for Physical, Virtual, and Cloud Servers.

Security Awareness Tip
Security ABC Guides

Warning: Tips for secure mobile holiday shopping

I’m dating myself, but I remember when holiday shopping involved pouring through ads in the Sunday paper, placing actual phone calls from tethered land lines to research product stock and availability, and actually driving places to pick things up. Now, holiday shoppers can do all of that from a smartphone or tablet in a few seconds, but there are some security pitfalls to be aware of.