Breaking News

EnGenius Announces Affordable ECW520 Access Point KIOXIA Announces Industry’s First 245.76 TB NVMe SSD Built for the Demands of Generative AI Environments DeepCool Releases GENOME III, a Flagship Full-Tower Case for Extreme Cooling and Intelligent Monitoring CORSAIR Launches VENGEANCE 7000 AIR Series Gaming PC, Built with FRAME 4000D Case Elgato Brings 4K60 Game Capture to the Masses

logo

  • Share Us
    • Facebook
    • Twitter
  • Home
  • Home
  • News
  • Reviews
  • Essays
  • Forum
  • Legacy
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map

Search form

New OS X Targeted In Ransomware Campaign

New OS X Targeted In Ransomware Campaign

Enterprise & IT Mar 7,2016 0

Researchers with Palo Alto Networks have detected that the Transmission BitTorrent ailient installer for OS X was infected with ransomware. Ransomware encrypts data on infected machines, then typically asks users to pay ransoms in hard-to-trace digital currencies to get an electronic key so they can retrieve their data.

The research firm has named this Ransomware "KeRanger." As FileCoder was incomplete at the time of its discovery, the reseachers believe KeRanger is the first fully functional ransomware seen on the OS X platform.

Attackers infected two installers of Transmission version 2.90 with KeRanger on the morning of March 4.

Transmission is one of the most popular Mac applications used to download software, videos, music and other data through the BitTorrent peer-to-peer information sharing network. It’s possible that Transmission’s official website was compromised and the files were replaced by re-compiled malicious versions.

The KeRanger application was signed with a valid Mac app development certificate; therefore, it was able to bypass Apple’s Gatekeeper protection. If a user installs the infected apps, an embedded executable file is run on the system. KeRanger then waits for for three days before connecting with command and control (C2) servers over the Tor anonymizer network. The malware then begins encrypting certain types of document and data files on the system. After completing the encryption process, KeRanger demands that victims pay one bitcoin (about $400) to a specific address to retrieve their files. Additionally, KeRanger appears to still be under active development and it seems the malware is also attempting to encrypt Time Machine backup files to prevent victims from recovering their back-up data.

Palo Alto Networks reported the ransomware issue to the Transmission Project and to Apple on March 4. Apple has since revoked the abused certificate and updated XProtect antivirus signature, and Transmission Project has removed the malicious installers from its website.

Tags: Apple
Previous Post
Intel Simplifies Password Management with True Key
Next Post
Amazon to Bring Back Encryption to Fire Tablets

Related Posts

  • Apple unveils Mac Studio featuring M4 Max and new M3 Ultra

  • Apple introduces iPad Air with powerful M3 chip and new Magic Keyboard

  • Apple debuts iPhone 16e

  • Apple introduces M4 Pro and M4 Max and new MacBook Pro

  • Apple unveils the new iMac with M4, supercharged by Apple Intelligence and available in fresh colors

  • Apple introduces powerful new iPad mini built for Apple Intelligence

  • Apple expands Self Service Repair Diagnostics support to Europe

  • Canon developing new RF-S 7.8mm F4 STM DUAL lens for EOS R7 camera for recording spatial video for Apple Vision Pro

Latest News

EnGenius Announces Affordable ECW520 Access Point
Enterprise & IT

EnGenius Announces Affordable ECW520 Access Point

KIOXIA Announces Industry’s First 245.76 TB NVMe SSD Built for the Demands of Generative AI Environments
Enterprise & IT

KIOXIA Announces Industry’s First 245.76 TB NVMe SSD Built for the Demands of Generative AI Environments

DeepCool Releases GENOME III, a Flagship Full-Tower Case for Extreme Cooling and Intelligent Monitoring
Cooling Systems

DeepCool Releases GENOME III, a Flagship Full-Tower Case for Extreme Cooling and Intelligent Monitoring

CORSAIR Launches VENGEANCE 7000 AIR Series Gaming PC, Built with FRAME 4000D Case
Cooling Systems

CORSAIR Launches VENGEANCE 7000 AIR Series Gaming PC, Built with FRAME 4000D Case

Elgato Brings 4K60 Game Capture to the Masses
Consumer Electronics

Elgato Brings 4K60 Game Capture to the Masses

Popular Reviews

be quiet! Light Loop 360mm

be quiet! Light Loop 360mm

be quiet! Dark Mount Keyboard

be quiet! Dark Mount Keyboard

be quiet! Light Mount Keyboard

be quiet! Light Mount Keyboard

Noctua NH-D15 G2

Noctua NH-D15 G2

Soundpeats Pop Clip

Soundpeats Pop Clip

be quiet! Light Base 600 LX

be quiet! Light Base 600 LX

be quiet! Pure Base 501

be quiet! Pure Base 501

Terramaster F8-SSD

Terramaster F8-SSD

Main menu

  • Home
  • News
  • Reviews
  • Essays
  • Forum
  • Legacy
  • About
    • Submit News

    • Contact Us
    • Privacy

    • Promotion
    • Advertise

    • RSS Feed
    • Site Map
  • About
  • Privacy
  • Contact Us
  • Promotional Opportunities @ CdrInfo.com
  • Advertise on out site
  • Submit your News to our site
  • RSS Feed