Flashback Malware Still Affecting over 100,000 Macs

While Apple has pushed out several software updates to detect the Flashback malware and remove it from infected systems, Symantec noted late yesterday that over 100,000 machines remain afflicted by the issue as detected by their sinkhole operation to redirect server traffic.

flashback sinkhole infections
Symantec pegged the number at approximately 142,000 as of Monday, listing a rough estimate of "over 99,000" as yesterday's data was still coming in. Those numbers are down from a peak of over 600,000 machines two weeks ago, but a substantial number of machines are still infected by the malware.

The statistics from our sinkhole are showing declining numbers on a daily basis. However, we had originally believed that we would have seen a greater decline in infections at this point in time, but this has proven not to be the case. Currently, it appears that the number of infected computers has tapered off, but remains around the 140,000 mark.

As there have been tools released by Symantec and other vendors in the past few days concerning this threat, the infection numbers should have seen a dramatic decrease by now.

Symantec also takes a look at the domain name generator that allows infected machines to connect to their command-and-control servers to receive instructions. The generator uses a list of 14-character strings rotated each day, coupling each string with one of five top-level domains (.com, .net, .info, .in, or .kz) to find its instructions.

The report also claims that Flashback-infected systems can receive updated command-and-control server locations through Twitter, although no details on that process are provided. A similar claim was made for earlier versions of Flashback, although there has apparently been no demonstration of the Twitter delivery method actually being used.

Top Rated Comments

chrono1081 Avatar
140 months ago
I don't understand the concern everyone has. One trojan that infected 1% of Macs (thats right, 1%) and is easily fixed with an update compared to over a million known malware variants on Windows systems is nothing.
Score: 7 Votes (Like | Disagree)
Santabean2000 Avatar
140 months ago
Seems like a lot, but I guess not as a percentage. Still, new threats, I fear, will soon become the norm.

It was good while it lasted.


I hope I'm wrong.
Score: 6 Votes (Like | Disagree)
Henriok Avatar
140 months ago
As I installed today's Flash update, I thought to myself: how am I supposed to know if this is really Flash, or if this is actually a trojan?
Don't act on someone else's initiative. Act on your own.
If you see on some news site, or via some popup dialog, that Flash (or any other software) is updated, then go to the download site by yourself, or invoke the update process provided in the software.

Let's say that Software Update says that there's some software that needs to be updated. Read what the update is about and click [Cancel]. Then, you go to Software Update by your own action and run it. If it says the same thing as before, you go ahead and upgrade.

The first instance COULD've been a Trojan that just happens to mask itself as Software Update, or Flash updater, or some other updater/installer.
But, if you run through the process by your self manually, and according to standard procedure, you won't invoke any Trojan.

…probably. If you follow this, you won't get infected by ANY trojan that I know of and you won't get phished, or scammed by any email.
Score: 5 Votes (Like | Disagree)
caligomez Avatar
140 months ago
Do we really need antivirus software for Macs? I mean, assuming the growth of the platform, and that more and more malicious programs will be written.. I consider myself pretty smart in avoiding infection, but it only takes one savy developer to trick you with some method you didn't anticipate..

I don't have any type of security software.. Should I? If so, which is the best for Mac?
Score: 5 Votes (Like | Disagree)
macsmurf Avatar
140 months ago
You know I don't like to spread conspiracy garbage. But on this topic every story says these are estimated numbers or a best guess. Even still 100,000 is less than 1% of Mac users. How is this even an outbreak or panic like the media is portraying? I've gone around and checked about 100 of the machines at my work not a single one of them was infected. None of my friends have been infected and none of my home machines have been infected. So I'm starting to believe this is all BS that the antivirus companies are putting out so that you purchase their software subscriptions. I just feel they really want to be in the Mac market and capture Windows switchers.
The starting number was around 600 000 or 1% of mac computers worldwide. That's on par with the Conficker outbreak which is the largest outbreak in the history of Windows, AFAIK. Of course, many more Windows machines were infected but taking the total number of Windows machines into account the percentage of infected machines was around 1%.

Conficker was a fairly sofisticated worm with implementations of quite a lot of different attacks. In that light, 1% for the comparatively much simpler Flashback malware is actually very widespread. The two month delay in releasing the fix was probably a big contributing factor along with the widespread belief that Macs don't get viruses.

It great to see that the number has gone down but 100 000 infected is still nothing to sneeze at (excuse the punnage).
Score: 4 Votes (Like | Disagree)
chrono1081 Avatar
140 months ago
1% who has reported the issue, which is about the amount of mac users who join forums.
The other 99% may be infected and may not know because they have been told the mac is "safe" and protected from such things.
No the 1% is the actual number of infected whether they know it or not.

http://www.redmondpie.com/apple-releases-standalone-flashback-malware-removal-tool-for-non-java-mac-users-download-now/ (http://www.redmondpie.com/apple-releases-standalone-flashback-malware-removal-tool-for-non-java-mac-users-download-now/)

They don't measure it by the amount of people reporting it, they measure it by seeing what the trojan is doing.
Score: 4 Votes (Like | Disagree)

Popular Stories

iOS 16

Here's What's New in iOS 16.3 for Your iPhone So Far

Friday January 13, 2023 10:49 am PST by
Apple released the second beta of iOS 16.3 earlier this week, and so far only one new feature and two other minor changes have been discovered in the software update. It's possible that iOS 16.3 will also include various bug fixes and security updates. iOS 16.3 should be publicly released within the next month or so, and it is possible that more features will be added in later beta versions. ...
14 vs 16 inch mbp m2 pro and max feature 1

Next-Generation MacBook Pro Models With M2 Pro and M2 Max Chips Reportedly 'Delayed Once Again'

Wednesday January 11, 2023 6:53 pm PST by
Apple's next-generation 14-inch and 16-inch MacBook Pro models with M2 Pro and M2 Max chips were slated to hit the market in "early 2023," but the laptops are now expected to be "delayed once again," according to Taiwanese publication DigiTimes. The report does not offer a revised launch timeframe for the new MacBook Pros. In his newsletter last weekend, Bloomberg's Mark Gurman said Apple...
AirPods Max Gen 2 Feature Dark Red 2

Kuo: New AirPods Max and $99 AirPods to Launch as Early as Next Year

Wednesday January 11, 2023 7:38 pm PST by
Mass shipments of second-generation AirPods Max and more affordable AirPods will likely begin in the second half of 2024 or the first half of 2025, according to the latest information shared by Apple supply chain analyst Ming-Chi Kuo. In a series of tweets today, Kuo said Apple is aiming for a $99 price for the more affordable standard AirPods. Currently, the $129 second-generation AirPods...
tim cook macbook pro

Apple CEO Tim Cook Taking Substantial Pay Cut in 2023 After Earning Nearly $100 Million Last Year

Thursday January 12, 2023 2:17 pm PST by
Apple CEO Tim Cook's total compensation was $99.4 million in 2022, according to the company's proxy statement released today. His compensation included a $3 million salary, roughly $83 million in stock awards, and $13.4 million in other forms of compensation. Cook's total compensation in 2021 was $98.7 million. Cook will be taking a substantial pay cut in 2023, as noted by Bloomberg's Mark...
14 16 inch 2021 mbps back to back feature

Apple Reportedly Working on Touchscreen Macs, Including MacBook Pro

Wednesday January 11, 2023 1:32 pm PST by
Despite years of resistance, Apple is now working on adding touchscreens to Macs, according to a report today from Bloomberg's Mark Gurman. The report claims that a new MacBook Pro with an OLED display could be the first touchscreen Mac in 2025. Gurman said Apple engineers are "actively engaged in the project," indicating that the company is "seriously considering" producing touchscreen...
iphone 14 pro display issues

Apple Working on Fix for iPhone 14 Pro Horizontal Lines Display Issue

Friday January 13, 2023 1:17 am PST by
Apple has acknowledged that iPhone 14 Pro Max users may see flashing horizontal lines on their display when the device is being turned on. MacRumors forum user Infernoqt and Reddit user u/1LastOutlaw Last month, MacRumors reported that a growing number of iPhone 14 Pro customers described seeing green and yellow horizontal lines flash on their iPhone display when the device is being turned...
iPad Pro Deals Feature Yellow

Deals: Amazon Knocks $599 Off Apple's 2TB M1 11-Inch iPad Pro for an All-Time Low Price

Wednesday January 11, 2023 8:15 am PST by
Amazon today has Apple's 2021 11-inch iPad Pro (2TB Wi-Fi) for $1,299.97, down from its original price of $1,899.00. This is the lowest price we've ever tracked for this previous-generation M1 model of the iPad Pro. Note: MacRumors is an affiliate partner with Amazon. When you click a link and make a purchase, we may receive a small payment, which helps us keep the site running. You can get ...
iOS 16

Apple Releases Second Public Betas of iOS 16.3 and iPadOS 16.3

Wednesday January 11, 2023 10:14 am PST by
Apple today seeded the second betas of upcoming iOS 16.3 and iPadOS 16.3 updates to public beta testers, providing the new software to the general public. The public betas come one day after Apple provided the beta to developers, and nearly a month after the first public betas. Public beta testers who have signed up for Apple's free beta testing program can download the ‌iOS 16.3 and...
iPhone 14 Pro Purple Side Perspective Feature Purple

iPhone 15 Pro Expected Later This Year With These 6 Exclusive Features

Saturday January 7, 2023 2:18 pm PST by
Apple's next-generation iPhone 15 Pro and iPhone 15 Pro Max are expected to be announced in September as usual. Already, rumors suggest the devices will have at least six exclusive features not available on the standard iPhone 15 and iPhone 15 Plus. An overview of the six features rumored to be exclusive to iPhone 15 Pro models:A17 chip: iPhone 15 Pro models will be equipped with an A17...