UTC is currently (50+) experiencing a major infection of the Flashback Trojan via outdated Java.  Apple has released an update to plug the vulnerability, but older OS X versions are still vulnerable.

“The updates are available for OS X 10.6 and 10.7 systems that have Java installed; you can update your system by using the Software Update utility in the Apple menu. Save any current work and do it NOW.

However, so far there have been no updates to patch older versions of OS X such as Tiger and Leopard, which come with Java runtimes installed and therefore are vulnerable to Flashback.”

This link below shows how to protect older macs.  Macs running Lion or Snow Leopard should patch now.

http://reviews.cnet.com/8301-13727_7-57411535-263/java-updates-block-flashback-for-lion-only/

Test to see if you are infected:

http://www.macupdate.com/app/mac/42571/anti-flashback-trojan

Call the ITD Help Desk at 425-4000 during the business work day  if you are unsure how to proceed.

The UT system recommends ClamXAV for protection.  The following is a guide to how to install it.

http://slug.ceca.utc.edu/docs/2011-5-clamXav.pdf

Use the instructions below at your own risk:

Applescript for Removal (Untested)

http://etresoft.org/freeware/MalwareChecker.zip

Manual Removal

http://www.f-secure.com/v-descs/trojan-downloader_osx_flashback_i.shtml

Original by Michael Ward, Ed.D

UT Chattanooga – ARCS, IT Security

With edits by Richard Gambrell

Information Systems/ITD