The only thing protecting your Mac from viruses is their tiny install base vs PCs. That and the creative class insisting on macs doesn’t have any IP worth stealing.
Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Common Windows Malware Can Now Infect Macs
- Thread starter MacRumors
- Start date
- Sort by reaction score
Apple is already working on this. Breathe - Breathe - Breathe says the AppleWatch, and someday when it stop saying Breathe - Breathe - Breathe, their users black out.Brilliant. So we better hand the world over on a silver platter and let robots to control every single aspect of our lives.
I replied to the same poster you did, read that post carefully, she mentions viruses.
So, now I know this thing exists and I know how to check for it (/Library/LaunchAgents), but I still don't know how one actually gets this thing? Isn't that the crucial information that should be the first step? Prevention?
I've been around the internet long enough to know not to open suspicious/random email attachments, downloads, links, ... but I'd like to know whether this remains true for this one or whether there are other ways to potentially get infected.
Really not a helpful article. At all.
(But sure, keep having philosophical debates on whether Malware is a Virus or not, in the comments here... )
I've been around the internet long enough to know not to open suspicious/random email attachments, downloads, links, ... but I'd like to know whether this remains true for this one or whether there are other ways to potentially get infected.
Really not a helpful article. At all.
(But sure, keep having philosophical debates on whether Malware is a Virus or not, in the comments here... )
Malware is not the same thing as a virus. If your Mac got infected with this Malware and you didn't know it, you could be at risk for identity theft and other online account take-overs that were not 2FA protected.
There are probably many different ways being used by bad actors. I found the following.
"Victims are tricked into downloading XLoader via spoofed emails that contain malicious Microsoft Office documents."
threatpost.com
"Victims are tricked into downloading XLoader via spoofed emails that contain malicious Microsoft Office documents."
MacOS Being Picked Apart by $49 XLoader Data Stealer
Cheap, easy and prolific, the new version of the old FormBook form-stealer and keylogger has added Mac users to its hit list, and it’s selling like hotcakes.
threatpost.com
People still download movies? I thought there's Popcorn time.
I'd like to say that one of the reasons why people download movies is also because region locks and not being able to buy the movies.
Have you seen the security issues recently fixed? It can happen to you before you know that anything has happened to you.
Good thing I only use Microsoft Office on my work computer.There are probably many different ways being used by bad actors. I found the following.
"Victims are tricked into downloading XLoader via spoofed emails that contain malicious Microsoft Office documents."
MacOS Being Picked Apart by $49 XLoader Data Stealer
Cheap, easy and prolific, the new version of the old FormBook form-stealer and keylogger has added Mac users to its hit list, and it’s selling like hotcakes.
Yes, it needs to be truly scary for people to take malware as a real threat.
If it's possible to get infected by just visiting a website, that's a security flaw in your browser or OS.
If you want a GUI application that can show all of the tasks that will run as Agents and Daemons as well as any Application or Login Items in a single page, there is a decent app called Lingon X that displays and allows you to edit them.
https://peterborgapps.com/lingon
https://peterborgapps.com/lingon
But it does not need to be as bad as trypophobia-inducing...
Full instructions are listed here.
This is pretty clueless from that article:There are probably many different ways being used by bad actors. I found the following.
"Victims are tricked into downloading XLoader via spoofed emails that contain malicious Microsoft Office documents."
MacOS Being Picked Apart by $49 XLoader Data Stealer
Cheap, easy and prolific, the new version of the old FormBook form-stealer and keylogger has added Mac users to its hit list, and it’s selling like hotcakes.
I'm not sure if it is Check Point that doesn't know anything about macOS or ThreatPost. Either way the bolded quote is particularly windows centric that most Mac users won't be able to decipher. Luckily they actually gives steps to check.
Anyone caught by this is pretty unsophisticated. I'm not saying it isn't a problem but this isn't something that will catch most experienced Mac users. I'd love a demonstration of how many dialogs the clueless user has to accept before this trojan will install.
Safari is usually the first to fall, due to security issues.
MacOS comes has several lines of defense built in. Unless you are running an old Mac, you don't really need a third party app.
Well how does one become infected with malware like this in the first place?
I am not so sure I buy all the hype on XLoader. it apparently steals passwords from "from web browsers and some email clients (Chrome, Firefox, Opera, Edge, IE, Outlook,Thunderbird, Foxmail)". No mention of the keychain or Safari or 1Password or the like. I would need to see the professional analysis by Check Point Software to know more.
Most of this stuff doesn't use an exploit it relies on the user granting it permissions to install and run.
The worst stuff is nation-state such as that Messages attack that an Israeli security firm developed and only sells to governments. This is an active ZeroDay that Apple has yet to discover and patch. All they have to do is text message an iOS/iPadOS/macOS and they own your device. But mostly those targeted are activists and journalists, etc.
- You pirated software
- You installed shareware from disreputable places
- You pirated software
- You fell victim to phishing emails or text messages
- You pirated software
- A rogue advertisement convinced you to install some fake cleaner or antivirus app
- You pirated software
- You installed a weird game you downloaded from a weird website
- You pirated software
- You don't run an adblocker
I am not so sure I buy all the hype on XLoader. it apparently steals passwords from "from web browsers and some email clients (Chrome, Firefox, Opera, Edge, IE, Outlook,Thunderbird, Foxmail)". No mention of the keychain or Safari or 1Password or the like. I would need to see the professional analysis by Check Point Software to know more.
Most of this stuff doesn't use an exploit it relies on the user granting it permissions to install and run.
The worst stuff is nation-state such as that Messages attack that an Israeli security firm developed and only sells to governments. This is an active ZeroDay that Apple has yet to discover and patch. All they have to do is text message an iOS/iPadOS/macOS and they own your device. But mostly those targeted are activists and journalists, etc.
These days, it’s quite hard to be infected by just visiting a website. Even those PWN contests have to lower the requirements or no one would win