[Macworld]

Post your comments for Kaspersky fixes Flashback-fighting tool; Norton joins the fray here

[the_guy]

A quick look at the script on their original release shows it is totally brain dead. It scans all the applications on your computer for Java components and deletes them without warning or any log of its activity. In fact, even the UI is misleading as it states it will scan for trouble THEN offer to delete it, but when you proceed it simply starts the deletions. Truly brilliant code. Why would ANYONE ever use their software after such a screw up?

[k88dad]

The lesson here: Don't trust those with a conflict of interest (antivirus companies, in general.) Apple now has their own trojan cure. My advice for users:

1. Update your Java, if you haven't already
2. Use open source resources that are touted here on Macworld to check for infection, and (if necessary) remove the infection Apple is on the scene
3. Consider removing Java or not using Java in web browsers or (if you need Java in a browser for school or work) tweaking your security settings (Java Preferences, for one)
4. Consider removing Flash or running ClickToFlash and ClickToPlugin

Edited to note Apple's latest Java update for Snow Leopard and Lion.

This post has been edited by k88dad: 13 April 2012 - 09:00 AM

[Salvo]

k88dad, on 13 April 2012 - 08:53 AM, said:

The lesson here: Don't trust those with a conflict of interest (antivirus companies, in general.) Apple now has their own trojan cure. My advice for users:

1. Update your Java, if you haven't already
2. Use open source resources that are touted here on Macworld to check for infection, and (if necessary) remove the infection Apple is on the scene
3. Consider removing Java or not using Java in web browsers or (if you need Java in a browser for school or work) tweaking your security settings (Java Preferences, for one)
4. Consider removing Flash or running ClickToFlash and ClickToPlugin

Edited to note Apple's latest Java update for Snow Leopard and Lion.

I would go so far as to avoid Flash and the ClickTo… variants completely.

Use Chrome for the few occasions where you actually do need Flash, but use Safari for everything else.

[MattSwainston]

I don't agree with people who suggest uninstalling Java or Flash. Sure they both present risks but I got my computer to use, not to be an ornament in my study because something might go wrong. It's like owning a car and not using 4th gear cos someone once crashed in 4th gear and died. I also have ClickToFlash installed in Safari which at least means that the only Flash routines that run are the ones that I choose.

There's absolutely no danger of me installing any of the garbage being pedalled by the AV companies, after all none of them would have safe-guarded me from flashback in the first place (I didn't actually get flashback anyway). I too have a healthy dis-trust of them as the people with the most to gain out of any Mac virus outbreak.