New Apple, PC, UNIX Malware Doesn’t Need To Copy ANY Files to Your PC

“…The latest discovery was made by Kaspersky Lab, which received reports of a malware attack hitting a common Java vulnerability (CVE-2011-3544) on Russian Web sites, but without appearing to drop any files in order to instigate a conventional Trojan attack. In fact the attack turned out to run Javascript from an iFrame embedded on an infected Web site, injecting its encrypted .dll payload directly into the Javaw.exe process. The purpose of the unusual malware appears…