Transmission, a very popular and respected Old BitTorrent ten years customer became the the first OSX app being infected with malware. The handy malware is ransomware.
True to its name, the malware encrypts user data and strength requires a bitcoin (about $ 400) in ransom for the user to regain control of the computer. If the user does not comply, their data is at risk.
Ransomware is a popular malware on Windows, but so far it has not entered the mac scene.
Ryan Olson, of Palo Alto Networks, told Reuters that ransomware is one "most the most popular models of criminal cases. The fact that Mac has not shown that he had a great amount of success on the Windows side. But the fact that [the malware] was distributed by a legitimate application shows we'll see that again. "
users began noticing problems with the last transmission customer on the site bulletin board. The reports explained that ransomware malware has been detected in malware 2.0.The version of was identified as "OSX.KeRanger.A".
Researchers at Palo Alto Networks has confirmed this suspicion and provided details on their website. "The implementation KeRanger signed with a Mac developer certificate of valid applications; therefore, he was able to bypass Gatekeeper Apple's protection If a user installs the application. infected, an embedded executable file is executed to system. KeRanger then waits for three days before connecting with the command and control (C2) servers on the Tor anonymizer network. "
Apple has since removed the abused certificate and updated XProtect virus signature.
Transmission also removed malicious installers to their website providing a warning detailing the measures necessary to prevent any ransom ransomware:
" all the world 2.0 running on OS X should immediately upgrade to 2.92 because they may have downloaded an infected malware file. This new version will ensure that the 'OSX.KeRanger.A' ransomware is properly removed from your computer. "
0 Komentar