Java-based Trojan Attacks Mac OS X Via Social Networks

A new Java-based trojan virus which exploits vulnerabilities found in the Mac OS X and Windows, has been sighted on several prominent social networking platforms.

The new virus is disguised as a link a video accompanied by a message.

The message reads, “Is this you in this video?”

When users click on the link, a Java applet is opened that secretly downloads malicious files on the computer system including an installer that runs without the user's knowledge.

According to security firm SecureMac, the trojan virus, called trojan.osx.boonana.a, is being circulated as a message on social networking websites such as Facebook.

When a user clicks on the link, the virus downloads several files on the system and a program that breaks though all the password protection that has been activated on the Mac OS X system.

SecureMac researcher Nicholas Ptacek, explained: “The trojan hijacks user accounts to spread itself further via spam messages. [In addition, it] attempts to hide its Internet communications and actions through obfuscated code spread through multiple files and will attempt to contact additional command servers if the primary servers are unavailable.”