Apple's Beats brand in April unveiled the Powerbeats Pro, a redesigned wire-free version of its popular fitness-oriented Powerbeats earbuds.
Windows 'Snake' Malware Ported to Mac, Imitates Adobe Flash Player Installer
Well-known Windows backdoor malware "Snake" has been ported to the Mac for the first time, according to MalwareBytes. Described as "highly-sophisticated," Snake (also called Turla and Uroburos) has been infecting Windows systems since 2008 and was ported to Linux systems in 2014 before making its way to the Mac.
The Snake malware was found earlier this week in an installer masquerading as Adobe Flash Player, buried inside a file named "Install Adobe Flash Player.app.zip." It is designed to look like a legitimate Adobe Flash installer, but is signed by an illegitimate certificate.
It does, actually, install Adobe Flash Player, but it is accompanied by additional software that is malicious and designed to provide a backdoor into the Mac. The malicious files are well hidden in the /Library/Scripts/ folder and disguised as an Adobe launch process.
Those infected by Snake are vulnerable to having data stolen, including login information, passwords, and unencrypted files.
To avoid malicious software, Apple recommends downloading content only from the Mac App Store or from trusted developers.
The Snake malware was found earlier this week in an installer masquerading as Adobe Flash Player, buried inside a file named "Install Adobe Flash Player.app.zip." It is designed to look like a legitimate Adobe Flash installer, but is signed by an illegitimate certificate.
It does, actually, install Adobe Flash Player, but it is accompanied by additional software that is malicious and designed to provide a backdoor into the Mac. The malicious files are well hidden in the /Library/Scripts/ folder and disguised as an Adobe launch process.
In all, this is one of the sneakier bits of Mac malware lately. Although it's still "just a Trojan," it's a quite convincing one if distributed properly. Although Mac users tend to scoff at Trojans, believing them to be easy to avoid, this is not always the case.Apple already revoked the certificate that the Snake malware was using to infect Mac machines, but another iteration could pop up, so Mac users should be aware of the possibility.
Those infected by Snake are vulnerable to having data stolen, including login information, passwords, and unencrypted files.
To avoid malicious software, Apple recommends downloading content only from the Mac App Store or from trusted developers.
Tag: malware
[ 144 comments ]
Top Rated Comments
(View all)
28 months ago
For all of those saying it's dumb to install flash, I have to for my homework and online classes for my university. I'd love to give it up, but some of us just don't have the option to.
28 months ago
I feel like the people that wrote this malware wasted their time, all they needed to do was force people to install Flash...there are already enough backdoors in that to do what you want with, without adding extra ones.
28 months ago
Amen to that, these days it's [Adobe Flash] just not necessary.
Sadly, I run into a number of Computer-based Training courses that still use it.
28 months ago
Mistake number one: installing Adobe Flash to begin with.
Amen to that, these days it's just not necessary.
28 months ago
Sadly, I run into a number of Computer-based Training courses that still use it.
It's better to just use Google Chrome for anything specific that still needs Flash. No need to run the installer.With the amount of people using mobile devices these days, requiring Flash is quite a handicap for web-based content. But certain areas are always behind in updating to newer standards.
28 months ago
Find a new line of work bro
Agreed. He should ditch his entire career and livelihood because sometimes he has to use Flash. Makes perfect sense.
[ Read All Comments ]
Google today announced several new features coming to YouTube, all of which are designed to give users more control over the kind of content that appears on the Homepage and in Up Next video...
Apple wanted to make a wireless charger, the AirPower, that could charge the iPhone, Apple Watch, and AirPods all at once no matter where the devices were placed on the charger, but ultimately, the...
Google in May announced a new privacy-focused auto-delete option for automatically removing Location History and Web & App Activity after a set period of time, and the feature is now rolling out...
Apple today released a new update for Safari Technology Preview, the experimental browser Apple first introduced three years ago in March 2016. Apple designed the Safari Technology Preview to test...
Shopify today announced that Apple Business Chat is now available to all of its over 800,000 merchants around the world.
As noted by Engadget, some Shopify merchants are already using...
Anker is back this week with a new collection of sales and discount codes on many of its charging accessories, including the all-new Soundcore Wakey Alarm Clock. This device is a bedside alarm clock...
Apple released a public beta of iPadOS for compatible iPad models, enabling users who aren't signed up for the Apple Developer Program to test the software update ahead of its official release in...
Apple today updated its line of iWork apps for iOS and macOS, bringing new features to Pages, Keynote, and Numbers on both iOS devices and Macs.
All of the apps have a new feature designed to...
