More importantly, how do you detect it and remove it?
if [ -f ~/Library/._insu ]; then echo "Silver Sparrow detected\!"; else echo "All is ok."; fi
I use clean my Mac x and it works very well.They should include something like Windows Defender to allow the user to scan his system files on demand, when in doubt.
So do I and I run malware on all the time and also check my system with it.I use clean my Mac x and it works very well.
Malwarebytes makes a free downloadable scanner. If you are worried, download and run that.But how do we find out if our Macs have been infected?
If Apple really had automated detection and scanning, how did it manage to infect so many machines?
Apple already has active scanning. But there will always be something new to get around whatever security was in place. I remind myself no system is 100% secure. It's nearly impossible to engineer something that can't be infected if it is talking on a network. It's the same reason humans still get colds.I agree. Windows defender isn't great, but at least it's something. Some sort of basic built in scanner would be a nice feature.
Developer certificates…
“Since February 2020, for example, Apple has required all Mac software distributed with a Developer ID outside of the Mac App Store to be submitted to Apple's notary service, an automated system that scans for malicious content and code-signing issues.”
It seems Apples 3rd party s/w vetting and release system and its processes are ripe for rethinking.
So if I dont have these two files, that means my Macs are clean right? gosh, we have to deal with Covid-19 out there and Sparrow virus inside our Macs. what a world!@#$Saw this form another article in the comments:
"For those wondering, from the external blog post there are two scripts written to disk that should indicate if you have it, the locations are:
/tmp/agent.sh and ~/Library/Application Support/verx_updater/verx.sh"
No it's not been using it for many many years, maybe you should check it out before making such a statement......Malwarebytes makes a free downloadable scanner. If you are worried, download and run that.
AS FAR AS I KNOW the above recommend "Clean my Mac" IS MALWARE.
No, the notarization process worked as intended.Developer certificates…
“Since February 2020, for example, Apple has required all Mac software distributed with a Developer ID outside of the Mac App Store to be submitted to Apple's notary service, an automated system that scans for malicious content and code-signing issues.”
It seems Apples 3rd party s/w vetting and release system and its processes are ripe for rethinking.
Because the signature wasn't knownThis is going to end up the same way as all DRM - inconveniencing genuine users whilst bad guys find ways around it.
If Apple really had automated detection and scanning, how did it manage to infect so many machines?
Do we even know how this was able to infect over 30,000 M1 Macs?Something tells me that the issue, deep down, is not solved. Yeah, Apple has revoqued the certificate, so then what? Can this happen again? I’d say yes...
I agree!Red Canary vs. Silver Sparrow. It's time to call in reinforcement from Purple Owl and Green Chickadee!