New Mac vulnerability – delivered through Microsoft Word documents

Brian L. Hill Innovation and Technology April 16, 2012 1 Minute

Costin Raiu, a lab expert at security firm Kapersky, reports that a new malware affecting Mac OS X is active and in the wild. The malware infects computers through Microsoft Word documents exploiting a known vulnerability.

At least two variants of the SabPub bot exist today.

The earliest version of the bot appears to have been created and used in February 2012.

The malware is being spread through Word documents that exploit the CVE-2009-0563 vulnerability.

SabPub is different from MaControl, another bot used in APT attacks in February 2012; SabPub was more effective because it stayed undetected for more than 1.5 months.

the APT behind SabPub is active at the time of writing.

Via SecureList

Published by Brian L. Hill

As Director of Consulting Services for Xpera Group, Brian L. Hill connects clients to the diverse range of experts, technical specialists, tools and other resources that the firm has to offer in order to solve complex building performance issues. He is also the editor and publisher of AECforensics.com, which dissects the latest news and information impacting quality and risk management in the built environment. View all posts by Brian L. Hill

Published April 16, 2012

Share this:

Published by Brian L. Hill