The victim is barred from accessing any windows or using their machine in any way until they relent, enter the password and allow the malware to finish installing. It then waits for a while before presenting a fake macOS update window. It installs itself as a Login Item called AppStore, which means it automatically runs each time the machine is booted. This should, of course, immediately ring alarm-bells: no-one should ever open a zip file they aren’t expecting, even if it seems to be from a known contact.īut after that, the approach taken by the malware is extremely clever. Victims are sent an email claiming to be from a tax office regarding their income tax return, asking them to open an attached zip file for details. OSX/Dok does rely on a phishing attack as its initial way in. Security researchers at CheckPoint found something they’ve labelled OSX/Dok, which manages to go undetected by Gatekeeper and stops users doing anything on their Mac until they accept a fake OS X update … However, a newly-discovered piece of malware (via Reddit) falls into the ‘seriously nasty’ category – able to spy on all your Internet usage, including use of secure websites. We learned recently that macOS malware grew by 744% last year, though most of it fell into the less-worrying category of adware.
0 Comments
Leave a Reply. |