New Mac Ransomware Appears in Hacked Applications
In the last days new ransomware called EvilQuest has been discovered that is behind hacked applications. This malware encrypts files on the computer so that they are inaccessible unless an amount is paid, at least in theory.
Ransomware, the malware that demands ransoms
Ransomware is malicious program that « hijacks » files from a computer and demands a ransom (ransom) so that the user can recover them. Before the ransom notice, the ransomware encrypts all the content it can with a random key which is necessary to regain access to the files.
EvilQuest is the latest ransomware variant capable of affecting Mac computers that Malwarebytes has discovered on the Internet. A discovery born of a Russian forum where a hacked (free) version of the Little Snitch app was offered.
The hacked application comes in a generic installer that, in addition to installing Little Snitch, installs a small executable called Patch in the / Users / Shared path and a post-install script that activates the malware. The script moves the Patch file to a new location and renames it CrashReporter, a common name on Mac computers. From there, Patch automatically installs to various places on the computer.
This ransomware is capable of encrypting a large number of computer files including configuration files and keychain files, making iCloud Keychain inaccessible and Finder constantly giving errors. After the attack, the ransomware charges $ 50 to decrypt the files, although, according to Malwarebytes, does not respect the decryption although the amount is paid.
As if that were not enough, the malware also installs a keylogger, a small application that logs all keystrokes on a computer. An attack that is access to passwords, bank details and other information, although, at this time, the use of this data is unknown.
Is my Mac safe?
Faced with this type of attack, what can we do? All. The security of our computer depends on how we use it. This class of malicious applications cannot affect a computer without consent. In this case, consent involves downloading an application from an untrusted source and, most importantly, entering the computer password during installation, with which the ransomware meets little resistance.
The precautions to be taken in the situation are simple. The first and most important is that never install any apps except from trusted sites like the App Store or from websites of trusted companies (Adobe, Microsoft, etc.). The second precaution is to have a backup of the data, where it is particularly useful to use Time Machine.
How to improve the security of our Mac through the system firewall
App hijacking, i.e. being able to use apps that cost money for free, is a practice that is falling more and more into disuse, but it is still the main goal of malware entering the market. devices.
Related Posts:
- [REVIEW] : Desktop Mac buying guide: Mac mini, Mac Studio or Mac Pro?
- What’s new in Mac OS X applications
- Mac mini with 50 applications running simultaneously
- What applications to use on mac
- Mac OS X with support for Windows applications in the future?
- New to Mac? Let’s learn the basics of the Mac App Store
- How to change the MAC address of our Mac using the terminal
- Mac ARMs defy skeptics: Early Mac mini developer tests let Surface Pro X bite the dust
- How to change the MAC address of our Mac using Terminal
- How to put a Mac mini in a Mac SE / 30
- My First Mac, tips for getting started with a mac
- There are already more Mac Intel than Mac PowerPC
- New Chip, New Era: Myths and Realities of Apple’s Switch to Mac ARM (Clear X # 101)
- Main advantages and disadvantages of the new M1 processor in Mac
- The 31 hidden tips and tricks to get your new Mac off to a good start
- Dell’s new Ultrasharp 40 is the go-to monitor for everyone with a good desktop and bigger ambitions for their Mac
- The new iPad mini will have an 8.4-inch screen and will be presented in March, according to sources at Mac Otakara.
- One more thing… Do not disturb mode on HomePod, iPad apps on Mac, and what’s new in iOS 14.4
- The new iPad Air lowered next to the Mac with M1 chip: Hunting Bargains
- New to the Mac? So we can decide with which apps our files are opened
- Deals on the new M1-chip Mac computers and iPhone 12: Hunting Bargains
- date of the new operating system for Mac
- all about the new Mac with Apple Silicon chip
- This is how the new Mac mini with Apple Silicon remains compared to the previous model with Intel
- Five new Mac models appear in the EEC database
- the new season of Fortnite will not be available on the iPhone, iPad and Mac
- New Get a Mac ad featured in the keynote
- New Mac Pro, Cinema Displays, and iPods, today?
- New Get a Mac Announcement : Office Posse
- 3 new ads for the “Get a Mac” campaign
- The new Mac with transparent screen
- New version of CrossOver for Mac
- More rumors about the new portable Mac with Flash memory
- What’s new in Mac OS X Leopard Server
- A new “Photoshop” for Mac?
- New “halo” effect in the sale of Mac computers
- A New TV receiver for Mac: Elgato eyeTV 250 Plus
- New Mac Pro RAID card
- New version of NeoOffice with support for Office 2007 and Mac OS X spell checker
- New version of Google Desktop for Mac, with support for 9 more languages (Spanish among them)
- How to install new fonts on Mac
- Microsoft abandons Messenger for Mac, promising a “really amazing” new program
- Rumors of a new “Mac nano” with a radical design change, at the end of October
- New Yahoo Messenger for Mac
- Flip4Mac new version 2.2 improved for Mac OS X Leopard
- New Mac mini? Accompany him with one of these 10 monitors!
- [HOT] : OWC Launches New "Thunderbolt to Dual DisplayPort Adapter" for Mac and iPad
- [HOT] : Adobe Brings New AI-Based Masking Tools to Lightroom on iPhone, iPad and Mac
- [HOT] : Hyper unveils new "Dual 4K HDMI" dongles for the use of multiple external displays with Mac M1
- The Elder Scrolls Online: Greymoor is the new expansion available now on PC and Mac
