New Java malware affects Macs running Snow Leopard and earlier
By Lex Friedman
More Java-based Mac malware is on the loose, but you need fear only if you’re still running Snow Leopard or an earlier version of OS X. In addition to afflicting older Macs, the exploit targets Windows and Linux machines with the Java runtime installed, too.
As first reported by F-Secure, this new Java malware was discovered on a compromised Colombian Transport website, with a bit of social engineering thrown in for good measure: You need to approve the installation of a Java applet, which OS X will warn you is from a root certificate that “is not trusted,” to get infected.
Once authorized, the exploit downloads additional malicious code from the Web. Security firm Sophos says that the malware then attempts to open a backdoor on your computer, through which hackers could remotely access the machine.
Because the Mac version of the malware runs as a PowerPC app, only Macs that can run PowerPC software are at risk. Since Lion (and Mountain Lion) no longer include Rosetta, the technology that allows Intel-based Macs to run PowerPC software, computers running those versions of Mac OS X cannot be infected.