No other companies corroborate this claim... nor does it make sense. . . since this can install only on Macs that have an OPTIONAL install of the Java runtime library applet, not FLASH. The Trojan itself has been found on only a small number of obscure websites... and to infect such a large number of Macs, all of which would have to be running an older install of OSX (Leopard or older), it would have to be found on numerous popular and frequently visited websites! It simply is not on such websites that Mac users would frequent. Here is a list of the example websites Doctor Web says they found the malware that would infect Macs:
godofwar3.rr.nu
ironmanvideo.rr.nu
killaoftime.rr.nu
gangstasparadise.rr.nu
mystreamvideo.rr.nu
bestustreamtv.rr.nu
ustreambesttv.rr.nu
ustreamtvonline.rr.nu
ustream-tv.rr.nu
ustream.rr.nu
I don't find THOSE websites to be the type that Mac users would visit!
The rate of infection this company was reporting smacks of the kind we saw with viral infections, not Trojan installations.
In addition, Apple pushed out a patch for Java that fixed this variation of the Flashback vulnerability early Tuesday morning... and since even OSX Leopard Macs are updating their malware definition files daily, I find it even more unlikely that this story is credible.
Does this trojan exist? Yes. Is it in the wild? Yes. It is one of the 20-22 known OSX trojan horse applications out there now... that the OSX system will prevent from being downloaded or installed without the user over-riding the built-in protections. Has it infected 600,000 Macs and made them into a botnet? I highly doubt it.
Frankly, it sounds like FUD to me.
Apple Security Ping!
Discuss technical issues, software, and hardware.
Don't attack people!
Don't respond to the Anti-Apple Thread Trolls!
PLEASE IGNORE THEM!!!
If you want on or off the Mac Ping List, Freepmail me.