In-the-wild Mac malware kept busy in June—here’s a rundown

by
Dan Goodin
from Ars Technica - All content on (#4J67M)
mac_malware.png

June was a busy month for Mac malware with the active circulation of at least six threats, several of which were able to bypass security protections Apple has built into modern versions of its macOS.

The latest discovery was published Friday by Mac antivirus provider Intego, which disclosed malware dubbed OSX/CrescentCore that's available through Google search results and other mainstream channels. It masquerades as an updater or installer for Adobe's Flash media player, but it's in fact just a persistent means for its operators to install malicious Safari extensions, rogue disk cleaners, and potentially other unwanted software.

"The team at Intego has observed OSX/CrescentCore in the wild being distributed via numerous sites," Intego's Joshua Long wrote of two separate versions of the malware his company has found. "Mac users should beware that they may encounter it, even via seemingly innocuous sources such as Google search results."

Read 7 remaining paragraphs | Comments

index?i=h7XN_9jALSg:maQsnr7yIZE:V_sGLiPB index?i=h7XN_9jALSg:maQsnr7yIZE:F7zBnMyn index?d=qj6IDK7rITs index?d=yIl2AUoC8zA
External Content
Source RSS or Atom Feed
Feed Location http://feeds.arstechnica.com/arstechnica/index
Feed Title Ars Technica - All content
Feed Link https://arstechnica.com/
Reply 0 comments