Hackers have attempted to infect Mac computers through a new vulnerability in the computer clock. The existence of the virus was revealed by the US Department of Homeland Security last week.
But Apple has now hit back with a more aggressive move pushing the latest update into new versions of Mac machines without even asking for users’ permission.
The new update is specifically aimed at taking on the recently discovered security vulnerability CVE-2014-9295.
The 1.4MB update was pushed into all systems running Yosemite. Those using the older versions such as Lion and Snow Leopard can manually download the update by visiting link - http://support.apple.com/en-us/HT1222
The network time protocol (NTP) vulnerability allows hackers to take control of a computer remotely through the computers clocks.
The US National Vulnerability Database points out that multiple stack-based buffer overflows in ntpd in NTP allowing remote attackers to execute arbitrary code via a crafted packet, when the Autokey Authentication feature is used.
According to Apple, “This update addresses a critical security issue with the software that provides the Network Time Protocol service on OSX, and is recommended for all users.”