- Apr 21, 2016
- 4,370
Hackers are now selling malware for Mac devices straight out on the dark web. They claim the malware is undetectable and provides hackers with the ability to take full control over MacOS devices by evading antivirus software.
Proton, as it has been named, the malware is a Remote Administration Tool that is currently being sold over Russian cybercrime message boards.
Discovered by Sixgill, a cyber intelligence company that is known for its work in detecting cyber attacks and sensitive data leaks originating from the Dark Web, Proton had an initial selling price of 100 BTC, which at current Bitcoin prices makes it worth more than $100,000, but it is now being sold at around 40 BTC with unlimited installations. If the hacker only wants to install it on a single Mac, he'd only have to pay 2 BTC.
Full control in one malware
The malware allows attackers to take full control of the targeted device, including keylogging, webcam/screen surveillance, file uploadings, and downloads and more. Hackers get notified every time data is entered on the infected device.
"Proton can present a custom native window requesting information such as a credit card, driver's license and more. The malware also boasts the capability of iClloud access, even with 2FA enabled," Sixgill notes in a blog post.
Proton is a real threat against Mac OS since hackers are selling this malware with genuine Apple code-signing signatures, indicating a sophisticated attack.
Read more: Undetectable Mac Malware Proton for Sale on the Dark Web for 40 BTC
Proton, as it has been named, the malware is a Remote Administration Tool that is currently being sold over Russian cybercrime message boards.
Discovered by Sixgill, a cyber intelligence company that is known for its work in detecting cyber attacks and sensitive data leaks originating from the Dark Web, Proton had an initial selling price of 100 BTC, which at current Bitcoin prices makes it worth more than $100,000, but it is now being sold at around 40 BTC with unlimited installations. If the hacker only wants to install it on a single Mac, he'd only have to pay 2 BTC.
Full control in one malware
The malware allows attackers to take full control of the targeted device, including keylogging, webcam/screen surveillance, file uploadings, and downloads and more. Hackers get notified every time data is entered on the infected device.
"Proton can present a custom native window requesting information such as a credit card, driver's license and more. The malware also boasts the capability of iClloud access, even with 2FA enabled," Sixgill notes in a blog post.
Proton is a real threat against Mac OS since hackers are selling this malware with genuine Apple code-signing signatures, indicating a sophisticated attack.
Read more: Undetectable Mac Malware Proton for Sale on the Dark Web for 40 BTC
