Brazilian Coders Are Pioneering the First Cross-OS Malware Using JAR Files

An anonymous reader writes: Criminal gangs in Brazil are experimenting with the first malware families that are packaged as JAR files, capable of being deployed to Windows, Linux, Mac, and even Android from the same codebase, instead of relying on 4 different versions. Right now, only the malware dropper, a component used to infect computers with banking trojans, seems to have been coded in Java, but security experts expect a full-blown banking trojan to soon follow.

So using Java exactly what it was designed for?

Guess all those memories of viruses from the 80's containing executable code valid on multiple processors are all my fevered imagination. Who knew that the first cross-OS malware was definitely only being written now, in 2016, in Java.

Wait, no, just the dropper. Congrats guys, you've discovered a platform-independent way of opening a stream from somewhere on the internet and dumping it to a file. Definitely pushing the envelope of Java to do that, I mean it's not like it comes with any sockets or file API specifically designed for stuff like that.

Give me a break. I was hoping to hear about something actually creative, like PDF or jpeg with multiple exploits for common Windows/Mac/Linux viewers or decode libraries, that causes a jump into the appropriate shellcode for each platform depending on what it's viewed on. This story is a non-event.

First?

I don't think so.

http://virus.wikidot.com/esperanto

First? My ass...

[evilviper]

2008: http://citeseerx.ist.psu.edu/v...

2009: https://en.wikipedia.org/wiki/...

2010: https://nakedsecurity.sophos.c...

Look what some moron said about the same subject back in 2011:
http://www.developers.slashdot...

2012: https://www.intego.com/mac-sec...

2012: http://www.zdnet.com/article/c...

2012: http://www.infosecisland.com/b...

etc., etc.