Got a tip for us?
Let us know
Become a MacRumors Supporter for $50/year with no ads, ability to filter front page stories, and private forums.
Malware Uses Apple Developer Certificate to Infect MacOS and Spy on HTTPS Traffic
- Thread starter MacRumors
- Start date
- Sort by reaction score
autrefois
macrumors 65816
So you're saying there should be some IQ test or computer knowledge test before you use a computer? It sounds to me like Apple's certificate problem (the Malware uses a valid Apple certificate) is at least as much to blame for this situation as user cluelessness.
I love it, Appsore! Now I have something new to call the AppStore on my old non-retina MBP when I'm waiting and waiting for updates to load or install.
BEST PRACTICE:
People should never grant admin rights to their daily account.
They should have an admin account expressly for installing s/w, updates and other maintenance activity.
Would this malware need to ask for Admin password even if user is running Mac from Admin Account?
Yes. An administrator account is still, for most purposes, a normal user. Administrators can gain root privileges, which is what this malware needs to change network settings.
Nice one hey, I got it only when one poster pointed me towards it.
Yes.
Depends, why shouldn't you if you know your system?
Running as root is a different game though.
In that case you cannot be helped.
Under no circumstances is it necessary or even acceptable to run as root.
Have you forgotten the time a malware attack was launched against OS X right from these forums?
Someone attached a purportedly leaked image of an upcoming version of OS X. Instead, it held an Input Manager add-on that helped break into the OS.
https://www.macrumors.com/2006/02/16/the-first-mac-os-x-virus-a-new-os-x-trojan/
There are updates for tax applications. Many people trust Apple and trust the tax applications they have to a point that they might believe a message without reading and seeing the bad grammar.
Nice method since you know who company sold your email. I prefer to have a personal email for family and friends. Another I give to companies like Amazon or let's say your bank.
For anything else I use a disposable email. Use a long name so nobody reads it by mistake.
Can't infect anymore, my ***.
Anyway, as Apple gains popularity and mainstream use, this day was long time coming.. All we can do is be vigilant, that's it, and it is true for any OS, be it macOS or Windows or Linux.
Even if macOS had the same market share as Windows, Windows would likely still have more malware targeted at it. Windows is built on an overly complex foundation, while macOS is built on a far simpler and streamlined Unix foundation. With greater complexity, comes reduced stability, and security. Microsoft likes to overcomplicate things, and as a result, their software will likely always suffer from these issues. Take a look at RDP for another example of a piece of overly complex technology from Microsoft.
Apple takes reasonable precautions against this stuff with their digital certificates, warnings about installation from sources other than the App Store, Gatekeeper, etc. but there is always a level of users that has minimal understanding of how their computer operates and how security protections are typically exploited - it is just the way it is. There is no 100% protections from the stupid, ignorant, or careless.
Fixed.
This is not about Apps, it's about using Updates for the System, in the article above for security reasons, you should not use anything else than the Tab- Updates in the Appstore.
Gotcha' and agree.
What is it actually what you want to say?
But, I can tell you this, OS X/MacOs is much safer than windows ever was.
How many Mac Users have a virus scanner installed, and how many windows user have it installed?
There are tons of Indian scammers calling random people living in US claiming they are IRS officer and claim a payment because "you have large amount of unpaid tax". There are guys in YouTube spending their time to expose those fake IRS guys.
I have an Office 365 account and outlook account which supports setting up aliases. One of my aliases seem to be exposed to scammers and keep receiving emails from various scammers. I guess this (set up alias) is a cheaper way for regular email users to block spam emails.
Yeah, and if Linux goes popular in general public, they will be targeted too. Wish I could use a standard account in Mac OS X in the first place.
You give me a good laugh today!
Yeah, this is what I am doing when using my Windows 10. Looks great. Also, typing password is better than just clicking "yes" since it gives you longer time to realize "something ain't right".
Just need a couple of years and Mac users will NEED a virus scanner on their Mac just like windows user. Plus, Mac OS X is closed sources software.
I've never taken a look at the protocol itself but Remote Desktop on Windows is FAR superior to VNC on any Mac. If it is complex it doesn't appear to be negatively affecting the user experience. I wish there were an equivalent on macOS.
It kinda already has, it's build into OS X/MacOs since quite a bit of time (2009), it's called Xprotect and you can find it in :
/System/Library/Core Services/CoreTypes.bundle/Contents/Resources/XProtect.plist
And, there is more: https://www.apple.com/macos/security/
As noted in the article, the malware has been signed with an Apple-issued certificate so will run with default settings.
