Apple on Thursday released a Java update to remove the Flashback malware. Flashback is a Mac trojan that reportedly affected over 600,000 Macs worldwide.
Apple software update release notes:
This Java security update removes the most common cariants of the Flashback malware.
This update also configures the Java web plug-in to disable the automatic execution of Java applets. Users may re-enable automatic execution of Java applets using the Java Preferences application. If the Java web plug-in detects that no applets have been run for an extended period of time it will again disable Java applets.
This update is recommended for all Mac users with Java installed.
The Flashback trojan was first discovered last year and has evolved since then to a self-installing version affecting Macs today. The malicious software exploits a Java security hole allowing it to install itself on a user’s computer after visiting a malicious website. Flashback is able to track web browsing information, user ID’s and passwords.
The download is available via Software Update and sized at 66.8MB.