Researchers from F-Secure, Webroot, and Avast have uncovered Janicab.A, a new trojan that was discovered as a threat to Macs last week and Windows users on Monday, with findings being published recently.
For OS X users, Janicab.A was signed with a valid Apple Developer ID and also uses a special unicode character known as a "right-to-left override" (RLO) that is used in email malware attacks. From there, the trojan uses a YouTube page to hijack infected computers, directs them to command-and-control (C&C) servers, and then leaves the server and hides the infection by making the malware appear as a harmless PDF or DOC file.
Webroot writes:
For OS X users, Janicab.A was signed with a valid Apple Developer ID and also uses a special unicode character known as a "right-to-left override" (RLO) that is used in email malware attacks. From there, the trojan uses a YouTube page to hijack infected computers, directs them to command-and-control (C&C) servers, and then leaves the server and hides the infection by making the malware appear as a harmless PDF or DOC file.
Webroot writes:
After a relatively long lag period without seeing any particular new and exciting Mac malware, last week we saw the surfacing of a new and interesting method of compromising the OSX system. Malware authors have taken a new approach by altering file extensions of malicious .app packages in order to trick users into thinking they are opening relatively harmless .pdf or .doc files. Changing file extensions in Mac OSX can be tricky due to a built in security feature of the OS that detects attempts to change the extension and automatically annexes the extension of its correct file or package type.This news comes after Apple updated security definitions to combat 'Yontoo', an adware trojan this past March, while also regularly dealing with Java-related vulnerabilities. Apple introduced Gatekeeper in OS X Mountain Lion in order to better deal with security threats, offering a way for users to restrict installation of apps to those signed by Apple-issued Developer IDs.
20 comments
All three 2019 iPhones will feature 12-megapixel single-lens front cameras, up from 7-megapixels on the iPhone XS, iPhone XS Max, and iPhone XR, according to the latest research note from well-known...
Apple has opened a new lab that will study how it can expand upon its current recycling processes through machine learning and robotics. The company announced the news today, along with other...
Samsung this week provided reviewers with Galaxy Fold devices for some hands-on time, and it appears the folding smartphone may be suffering from some serious flaws. Three of the reviewers who...
Apple is facing a class action lawsuit accusing the company of securities fraud for making false statements and failing to disclose adverse information regarding its business prospects. These actions...
Following yesterday's surprise announcement of a settlement between Qualcomm and Apple, Qualcomm CEO Steve Mollenkopf sat down with CNBC to share a few more details about the new agreement...
Apple is developing a new app that combines Find My iPhone and Find My Friends into a single package, according to 9to5Mac's Guilherme Rambo. The report cites sources familiar with ongoing...
Apple has held talks with at least four potential suppliers of LiDAR sensors for self-driving vehicles, providing fresh evidence of the company's renewed ambitions to enter the autonomous vehicle...
Apple this morning shared a new video in its ongoing "Shot on iPhone XS" series, this time focusing on awe-inspiring natural scenes caught on Apple's smartphone camera by artist group...
