Two more backdoor variants (Crisis and NetWeirdRC) have been described that target multiple platforms, including Mac OS X and (in the case of Crisis) VMWare virtual machines. Both appear derived from commercial remote access tools. While Crisis is disseminated as a Java archive file (.jar) posing as a Flash Player Java applet, it's not yet clear what the main vector for NetWeirdRC is. There is as yet no indication how widespread either one is, and the current threat level is low.
