A new browser based cross-platform malware can give hackers remote access to your computer, be it a OS X, Windows, or Linux based computer.
The multi-platform backdoor malware was disclosed this week by security firm F-Secure. It was originally discovered on a Colombian Transport website, and relies on social engineering to trick users into running a Java Archive file, meaning it is not likely to be a major threat.
The cross-platform design is unique. If a user grants permission, the malware will determine whether the user is running a Mac, Windows, PC, or a Linux box. If it is running on a Mac, it will remotely connect to an IP address through port 8080 to obtain additional execution code.
“Once it has found out which operating system you are running, the Java class file will download the appropriate flavor of malware, with the intention of opening a backdoor that will give hackers remote access to your computer,” explained Graham Cluley, senior technology consultant with Sophos.
The new malware is defined on a Mac as: “Backdoor:OSX/GetShell.A.” The binary is a PowerPC binary, so users of modern Macs (Intel based) must also have Rosetta installed.
