New Apple macOS malware alters the operating system to subvert security measures

Exterminator

Exterminator

Community Manager
Thread author
Verified
Staff Member
Well-known
Oct 23, 2012
12,527
A recently-discovered macOS malware called OSX Dok, which alters the operating system to subvert the security measures put in place, has now started mirroring banking websites according to researchers, in an attempt to steal sensitive information from machines which are infected by it.

The malware which uses 'phishing' and 'man in the middle' attacks to sneak onto an unsuspecting user's computer, was discovered back in May by ESET. Initially, it only tricked people into allowing access to their keychain, but since then, has morphed and is now targeting their bank accounts. As Checkpoint explains:

"They are aiming at the victim's banking credentials by mimicking major bank sites. The fake sites prompt the victim to install an application on their mobile devices, which could potentially lead to further infection and data leakage from the mobile platform as well."

Apple, however, has continued to revoke the certificates that the malware used to gain access to the underlying system, but this seems to have had little to no effect on it so far. Researchers noted that the group behind the malicious program has continued to get new certificates; what they described as a 'surge in activity' with new compromised certifications being purchased daily.

Phishing, as it is generally known, tends to mimic a trusted source, such as a password reset email sent by Apple, or your bank. These redirect users to compromised websites where the victim is asked to enter their details, which are then used to gain access to your data or accounts.

Although companies like Google, Microsoft and Apple have continued the fight against these attacks, with Brad Smith from Microsoft calling for a 'Digital Geneva Convention'. It is ultimately up to the user to make sure that they only click on links from trusted sources. Many financial institutions update their respective websites with warnings about new threats, and it is generally recommended to keep yourself up to date with what is happening, especially with the recent increase in cyber-attacks. You can also read up on these telltale signs of spotting a suspicious email.

Source: IBTimes
Click to expand...
 
  • Like
Reactions: SumG, Solarquest and Vasudev
You must log in or register to reply here.

Similar threads

Gandalf_The_Grey
    • Like
    • +Reputation
Malware News New RustDoor macOS malware impersonates Visual Studio update
Replies
0
Views
827
Security News
Gandalf_The_Grey
Gandalf_The_Grey
vtqhtr413
    • Like
Technology Five takeaways from the US antitrust lawsuit against Apple
Replies
22
Views
1,031
Technology News
n8chavez
n8chavez
Lymphocyte
    • Like
    • +Reputation
Malware News SpectralBlur: New macOS Backdoor Threat from North Korean Hackers
Replies
1
Views
1,207
Security News
MuzzMelbourne
MuzzMelbourne

About us

  • MalwareTips is a community-driven platform providing the latest information and resources on malware and cyber threats. Our team of experienced professionals and passionate volunteers work to keep the internet safe and secure. We provide accurate, up-to-date information and strive to build a strong and supportive community dedicated to cybersecurity.

Quick Navigation

Forum Rules Warning System Welcome Guide Two-factor Authentication

User Menu

Login

Follow us

Follow us on Facebook or Twitter to know first about the latest cybersecurity incidents and malware threats.

Top