Nearly 30,000 Macs have reportedly been infected with mysterious malware


According to scientists from the security company Red Canary, almost 30,000 Mac computers have been infected with mysterious malware worldwide. The problem was somewhat confusing for Red Canary scientists, who claim that it is not clear what the target of malware is. In a blog post, the company said it did not comply with malware that brings a “harmful payload” – essentially harmful actions against the device. The malware, which the company calls Silver Sparrow, doesn’t show “the behavior we came to expect from the usual adware that so often targets macOS systems,” wrote Tony Lambert, an analyst at Red Canary. Silver Sparrow contains a mechanism of self-destruction, which does not seem to have been used, scientists said, adding that it is not clear what would trigger the function. They are also not sure how the malware got into the infected computers, but they believe it may have been through malicious search results. The researchers found that Silver Sparrow contains code that runs natively on Apple’s own M1 chip, which was released in November, which is only the second known malware. However, this does not necessarily cause red flags on the chip. “Everyone will learn new technologies – good, bad, everyone in between – something will definitely happen,” said Red Canary Intelligence expert Tony Lambert. Although it is not clear what the malware is intended, Red Canary said it had decided to report the findings because its “prospective M1 compatibility, global reach, relatively high infection rate and operational maturity suggest that Silver Sparrow is a reasonably serious threat,” the researchers wrote. The researchers believe that Silver Sparrow appeared and began infecting the device sometime last year.Silver Sparrow infected 29,139 Macs in 153 countries as of February 17, with higher concentrations reported in the United States, the United Kingdom, Canada, France and France. Germany, according to Malwarebytes, a website that blocks ransomware attacks, although this number appears to be large, is a small fraction of the millions of Macs used worldwide, although it is possible that there are infected devices that researchers have not identified. Apple has revoked developer certificates used by malware, a company spokesman said, which will prevent future infections. malware infections so that they can take further action.

According to security firm researchers, nearly 30,000 Macs worldwide have been infected with mysterious malware Red canary.

This question was somewhat confusing for Red Canary scientists, who said it was not clear what the target of malware was. In a blog post, the company said it did not comply with malware that brings a “harmful payload” – essentially harmful actions against the device.

The malware, which the company calls Silver Sparrow, “doesn’t show the behavior we expected from conventional adware, which so often targets macOS systems,” wrote Tony Lambert, an analyst at Red Canary.

Silver Sparrow contains a mechanism of self-destruction, which does not seem to have been used, scientists said, adding that it is not clear what would trigger this function. They are also unsure about how malware got into infected computers, although they believe it may have occurred through malicious search results.

Researchers have found that Silver Sparrow contains code that runs natively on Apple internal chip M1 which was released in November, allowing only the second known malware. However, this does not necessarily raise the red flags on the chip.

“Everyone will learn new technologies – good, bad, everyone in between – something will definitely happen,” said Tony Lambert, an expert at Red Canary Intelligence.

Although it is not clear what the malware is intended, Red Canary said it had decided to report the findings because its “prospective M1 compatibility, global reach, relatively high infection rate and operational maturity suggest that Silver Sparrow is a reasonably serious threat,” the researchers wrote. .

Researchers believe that Silver Sparrow appeared and began infecting the device sometime last year.

As of February 17, Silver Sparrow has infected 29,139 Macs in 153 countries, with higher concentrations reported in the United States, the United Kingdom, Canada, France and Germany, according to data from Malwarebytes, which blocks ransomware attacks. While this number appears to be large, it is a small fraction of the millions of Macs used worldwide, although it is possible that there are infected devices that researchers have not identified.

Apple has revoked the developer certificates used by the malware, a company spokesman said, preventing any future infection. Revoking developer certificates also creates barriers to any existing malware infections so that they can take further action.


Like it? Share with your friends!

What's Your Reaction?

hate hate
0
hate
confused confused
0
confused
fail fail
0
fail
fun fun
0
fun
geeky geeky
0
geeky
love love
0
love
lol lol
0
lol
omg omg
0
omg
win win
0
win
admin

0 Comments

Your email address will not be published. Required fields are marked *