M1 Macs Targeted by Additional Malware, Exact Threat Remains a Mystery

[gnasher729]

Any new CPU architecture and code contain a higher number of bugs so more vulnerabilities. That's why the military and security conscious organizations use mature (old as heck) systems for anything security critical.

In this case the “vulnerability” is an end user downloading an installer from an unknown source and running the installer. ARM is over 30 years old and mature. It runs MacOS 10 which is 30 years old and mature. Maybe they should only allow mature users.

 

[gnasher729]

Apparently Apple agrees. from the Ars Technica Article
" Apple has revoked the developer certificate for both bystander binary files."

Not removed for being a threat, but for being an annoyance and being in violation of their developer contract.

 

[ikir]

Think about when you want side loading on iOS. These hits Mac because you can install apps outside App Store. Easy for most readers here, just follow good internet advices but 99% of real world user are clueless

 

[Manzanito]

Malware coders are more diligent than Microsoft or Adobe.

 

[chachawpi]

Except for some security researcher making a big deal about it is also self-serving.

How is that?

 

[Wildkraut]

Let me call out for you, „Lock It Down!“.

Disallow brew.sh
Disallow installations of any Apps and Drivers from outside the MacAppStore
Remove all USB ports
Kill the terminal.
Remove DiskUtil
Disallow compilation of anything other than Swift
Kill Finder and replace it by a castrated version, just like iOS has
Isolate the home directory and lock all Apps in their own environment

This might help to safe the macOS from brainless usage, it’s just what people in here want. Security through obscurity, just like iOS, safety first!

 

[mpekar]

it’s Intel that tries to get people afraid to buy M1s

I wouldn't look at Intel - Zuckerburg recently stated "We need to inflict pain" ... he has the money and motivation to pay for something like this ...

it’s Intel that tries to get people afraid to buy M1s

 

[PinkyMacGodess]

I just read about this this morning, and I'm getting concerned. These kind of things could be all over the place, waiting to be triggered. The fact that it was updated for the M1 is proof that who ever is behind it is keeping it up to date to make sure it has a deep penetration and once triggered, it could be pretty epic if it continues to spread. Wow...

 

[sracer]

Interesting, but not surprising, that some of the very same people applauding MacOS devices as being more protective against malware are now saying that it is no big deal because everybody gets malware.

Underneath it all is the reality that the issue of "security" (or sense of security) is more of a marketing differentiator than a substantive difference. All this talk of Intel vs. AS, Windows vs. MacOS is the type of schoolyard trash-talk that these companies love... but is of no value to consumers.

By using (apparently not so) common sense practices the danger of being infected by malware is very low regardless of OS. Or perhaps to a finer point, using these common sense practices makes the differences in susceptibility to malware based on the OS much smaller.

I have a bunch of old systems... including some still running WinXP and Win 7 that all connect to the internet. None of them have been infected. With all the work I do using various systems over the years, I only encountered a virus once... that was about 25 years ago.

Now if someone wants to claim that these modern desktop operating systems are themselves a virus, they will get no argument from me.

Regardless of what our preferred OS or hardware manufacturer is, let's not succumb to fear-mongering when making purchasing decisions.

 

[pdoherty]

I just read about this this morning, and I'm getting concerned. These kind of things could be all over the place, waiting to be triggered. The fact that it was updated for the M1 is proof that who ever is behind it is keeping it up to date to make sure it has a deep penetration and once triggered, it could be pretty epic if it continues to spread. Wow...

Definitely appears to be a proof of concept. Just wondering why it announces itself once installed? Guess they’re measuring success by mentions of it being discovered rather than any “phone home” behavior.

 

[Grendelmon]

Nothing more than fear mongering. These are just existing Mac malware/adware exploits that are being ported to run on ARM. So, what? What would you expect? All this crap comes from Windows/x86/PCs to begin with. And then MR gives is front page status? It's the same stuff that ALREADY EXISTS on other Macs and Windows PCs, for crying out loud! Click bait. Boo.

Ignorance is bliss then, I guess?

New malware found on 30,000 Macs has security pros stumped :

Among the most impressive things about Silver Sparrow is the number of Macs it has infected. Red Canary researchers worked with their counterparts at Malwarebytes, with the latter group finding Silver Sparrow installed on 29,139 macOS endpoints as of Wednesday. That’s a significant achievement.

 

[jdclifford]

it’s Intel that tries to get people afraid to buy M1s

My M1 MBA is due back tomorrow from 2 week vacation at Apple repair facility in Texas for battery overheating problem. Problem coincidentially started right after upgrading to Big Sur 11.2.2 First time in over 30 yrs using Apple products that I've ever had to have a repair done. Not off to a good start.

 

[bbeagle]

The Intel Trolls are in full force here on MacRumors. If you actually READ THE ARTICLE, it states that this is an issue with ALL Mac computers, with an UNKNOWN (possibly ZERO) number of M1 Macs affected. But then there are lots of posters here who are laughing at the M1 and saying it's insecure - with no proof or even circumstantial evidence - because that's what they want people here to believe. Fake News at it's finest.

 

[Macbookprodude]

So much for Apple’s M1 at least on PowerPC this didn’t exist.

 

[Apple_Robert]

So much for Apple’s M1 at least on PowerPC this didn’t exist.

There is nothing wrong with the M1.

 

[sapbasis]

My M1 MBA is due back tomorrow from 2 week vacation at Apple repair facility in Texas for battery overheating problem. Problem coincidentially started right after upgrading to Big Sur 11.2.2 First time in over 30 yrs using Apple products that I've ever had to have a repair done. Not off to a good start.

"Vacation" I like that! What are the specs of your M1 MBA?

 

[Unregistered 4U]

If “security researchers” say it’s a big deal, the “security researchers” are trying to give the impression they are relevant. I see a lot of skepticism, and very justified. Why do you call skepticism “being defensive”? Do you have a secret agenda?

Very few researchers get to be the one to say "THIS IS ZERO DAY HAPPENING NOW YOU DON'T EVEN HAVE TO HAVE YOUR COMPUTER ON OR PLUGGED IN!!!" And those that do generally don't say anything because they don't want or need the publicity to make their pay. So, all of the rest of them are left saying, "if you enable sudo on your computer, switch to an admin user, then go to this website and download this package and bypass gatekeeper and ignore the warnings YOU WILL BE COMPROMISED!!!"

 

[ArPe]

Stay away from torrent sites 👏

Don’t install pirate apps 👏

Stay away from illegal streaming sites 👏

Stay away from crypto sites and crypto apps 👏

Always remember that open source apps on GitHub doesn’t mean they are malware free if all the devs are in on it 👏

Don’t click on shortened URLs sent or posted by anon accounts on social media 👏

Don’t install more apps than you really need 👏

Only use signed apps from well known developers 👏

Delete Facebook 👏

 

[Ian Richard Markham]

I thought that Apple devices and computers were unhackable!

 

[Apple_Robert]

I thought that Apple devices and computers were unhackable!

Malware and getting hacked are two different things. You failed big time with your post.

 

[wfulle]

Malware coders are more diligent than Microsoft or Adobe.

Welcome to the world of computers

 

[Macbookprodude]

So much for Apple’s M1 at least on PowerPC this didn’t exist.

You have no place to say since you not grow up with POWERPC.. most on here are teens.

 

[Macbookprodude]

There is nothing wrong with the M1.

I know, but then malware not exist as much as now.

 

[Ian Richard Markham]

Too lazy for the sources. How are Macs getting infected? Is it a trojan? I'm really surprised by this.

I heard that there is some kind of rogue app posing as a legit app in the app store but I’m not a professional. However I downloaded a few Apple apps from the app store for my phone and these apps claimed to work with some features on my 2019 Toyota Avalon Touring but the apps were so bogus and didn’t even connect to the car and were totally stupid. I figured that if crap like that was allowed on the app store it would be easy for something bad like malware or something like that to be on the app store posing as something good.

 

[topdrawer]

apple is spreading this malware to scare us into a fully walled in system.