Windows 'Snake' Malware Ported to Mac, Imitates Adobe Flash Player Installer

[macsrcool1234]

Amen to that, these days it's just not necessary.

How else will I watch porn?

 

[RickeshPatel]

To all the readers saying why even use flash, unfortunately McGraw-Hill (majority of my classes in my university have books with this textbook publisher) requires flash for homework, viewing lectures, and even viewing the book. This is something we face even when viewing lectures through our university's hosting.

 

[GreatDrok]

But wait, I thought Macs don't get viruses???

Apple is doomed. Steve never would have allowed this!

I know you're being facetious but this is a trojan, not a virus. Macs don't get viruses and even Windows rarely gets them today but trojans are a problem with the meat sack sitting between the chair and keyboard and it is important that the meat sack is sufficiently aware that unless the machine is locked down to not install anything that isn't signed (as is the default on Macs anyway) that they have to be cautious about what they install. Mac malware doesn't propagate well due to the defaults so it is barely worth the time for the malware developers to invest in it but we'll keep seeing the odd one come up like this one. Worst piece of malware I've encountered was MacKeeper which my Father-in-Law paid for and installed. That was really nasty.

 

[allanfries]

It's 2017, and people still use flash??

 

[dschulian]

Websites still require it. Youtube still runs better with it. Chrome (very common browser) still comes with it by default - which means it will continue to be utilized. Having it come built in can help avoid this type of situation to some degree.

"Websites require it". You mean "****** websites from the 60s require it"

"Chrome comes with it" but keeps it updated, so no need to install it SYSTEM WIDE.

Modern browsers have native h264 support. Hardware accelerated. YouTube runs very nice without Flash.

Flash is a ****** software that needs to get an EOL.

 

[CarlJ]

It's a shame that this awful malware is going to tarnish Flash's stellar reputation on the Mac.

 

[MH01]

People still installing Flash?

Many sites still use it. Until they update, many people still use it.

these constant jokes about flash and people who use it still, is ignorance .

 

[otternonsense]

There's really no reason in 2017 to install Flash anymore.

 

[MH01]

"Websites require it". You mean "****** websites from the 60s require it"

"Chrome comes with it" but keeps it updated, so no need to install it SYSTEM WIDE.

Modern browsers have native h264 support. Hardware accelerated. YouTube runs very nice without Flash.

Flash is a ****** software that needs to get an EOL.

Wow.... just wow.

Flash is something us old farts used in the stone ages.... 60s..... thumbs up mate

 

[dschulian]

Many sites still use it. Until they update, many people still use it.

these constant jokes about flash and people who I still it are ignorance .

WTF? Please read my other post snd get rid of this ****. Thanks.

 

[neoelectronaut]

My wife installed a fake adobe flash player a few weeks back on her iMac and promply started freaking out when things started popping up that she didn't recognize. I did my best to uninstall everything that had been installed in the last hour, ran malware bytes and otherwise tried to clean things up but who knows if I got it all.

I immediately turned the software gate back on to try to avoid it in the future.

 

[dschulian]

Flash is something us old farts used in the stone ages.... 60s..... thumbs up mate

https://en.m.wikipedia.org/wiki/Hyperbole

✌️

 

[Solomani]

Mistake number one: installing Adobe Flash to begin with.

Ummm, you realize that the malware creators could have easily disguised it as any other "legit-looking" established software, right?

Not that I'm defending Flash, which is turd software. But Flash was just a convenient "disguise". The malware makers could have just as easily disguised it as Open Office download. Or even a free demo game from Aspyr Media.

 

[Isamu Tyson]

mmmm is this worst than installing Flash?

 

[Master-D]

Malwarebytes for macOS worked for me.

Where did you get it?

 

[Solomani]

p.s Is that Malwarebytes "anti-viral" thing legit itself? Or does it do more harm to your Mac than good? Not sure what to think of it.

 

[Figment4]

Apparently nobody here has a parent with a Mac who his constantly being phished and hunted by these types of scams.

 

[brujaz]

p.s Is that Malwarebytes "anti-viral" thing legit itself? Or does it do more harm to your Mac than good? Not sure what to think of it.

Malwarebytes is legit. They are a trusted name in the Windows anti-malware game, and recently started supporting macOS.

 

[macsba]

Where did you get it?

See this post earlier in this thread: #10

Enjoy.

 

[mi7chy]

To all the readers saying why even use flash, unfortunately McGraw-Hill (majority of my classes in my university have books with this textbook publisher) requires flash for homework, viewing lectures, and even viewing the book. This is something we face even when viewing lectures through our university's hosting.

Can't you use Chrome since it has Flash built in but secured via sandboxing?

 

[MacsRuleOthersDrool]

SO how do we find and remove it?

I would imagine that Apple will have this blocked by sundown.
[doublepost=1494017204][/doublepost]

I would have thought by now there would have been AI routines that could be used in the OS to help block this sort of thing. Also, it doesn't help that programmers have a tradition of naming files in an inscrutable way. Some sort of naming convention should be required, so that picking up malware is easier.

PEBKAC.

When macOS puts up that "This was downloaded from the internet..." Warning, but you ignore it, AND when MacOS has default GateKeeper settings that won't even ALLOW installation of stuff that isn't from the Mac App Store, but you Defeat it, then no amount of "AI" is going to save you, sorry!
[doublepost=1494017337][/doublepost]

Apple should take a page out of Microsoft's book and lock down macOS to be App Store only like Windows 10 S.

/s

They sort of have. But unlike MS, they respect their users, and expect them to have brains, so they let them circumvent those measures in macOS.

And I prefer it that way.
[doublepost=1494017440][/doublepost]

So I've talked to people about this in the past, but I wonder how much of an issue this malware would be if PowerPC was still around. I wonder how much trouble it would have been to port to a RISC architecture.

Depending on how the malware was written, anywhere from a "complete rewrite", to "switching some compiler options", and anywhere in-between.

 

[bluechipBMW]

Run Malwarebytes.

Thank you!

 

[MacsRuleOthersDrool]

Default is "App Store and identified developers", so signed apps can be installed from outside the App Store.

But freeware developers who can't pay the $99/year fee for a certificate still get screwed by that, unfortunately. I suppose it can be argued the increased security is worth it for average Mac users, but I always have mine set to allow from anywhere.

Apple will assign Developers who ask a FREE signing certificate. All they have to have is information like a Credit Card to link it to (so they are "traceable").

 

[69Mustang]

https://en.m.wikipedia.org/wiki/Hyperbole

✌️

https://en.wikipedia.org/wiki/Poe's_law
Applies to your hyperbolic quote.

 

[MacsRuleOthersDrool]

How else will I watch porn?

Pick a different site. They almost all use HTML 5 now.
[doublepost=1494017889][/doublepost]

I know you're being facetious but this is a trojan, not a virus. Macs don't get viruses and even Windows rarely gets them today but trojans are a problem with the meat sack sitting between the chair and keyboard and it is important that the meat sack is sufficiently aware that unless the machine is locked down to not install anything that isn't signed (as is the default on Macs anyway) that they have to be cautious about what they install. Mac malware doesn't propagate well due to the defaults so it is barely worth the time for the malware developers to invest in it but we'll keep seeing the odd one come up like this one. Worst piece of malware I've encountered was MacKeeper which my Father-in-Law paid for and installed. That was really nasty.

I prefer the term "Ugly bag of mostly water", thank you!
[doublepost=1494018186][/doublepost]

My wife installed a fake adobe flash player a few weeks back on her iMac and promply started freaking out when things started popping up that she didn't recognize. I did my best to uninstall everything that had been installed in the last hour, ran malware bytes and otherwise tried to clean things up but who knows if I got it all.

I immediately turned the software gate back on to try to avoid it in the future.

Not that I'm an MS fan (quite the opposite!); but there's one thing that Windows has that macOS doesn't (well not in the same way). "System Restore Points".

With "System Restore", if the malware isn't TOO nasty, you can "roll-back" a Trojan install and quite possibly un-infect your Windows machine.

And yes, I know that Time Machine can provide a similar function for our Macs.