Share And Earn! Click Security firms have warned users of Mac of new Trojan that masks as PDF document. Spotted by Sophos and Finnish antivirus vendor F-Secure, which is based in UK the malware use a process that is long practiced by Windows hackers.
F-Secure said, “This malware may be attempting to copy the technique implemented by Windows malware, which opens a PDF file containing a ‘.pdf.exe’ extension and an accompanying PDF icon.”
The Mac malware utilizes two-step process, made with Trojan “dropper” utility that downloads the second element and Trojan “backdoor” that connects to remote server which is controlled by attacker that is used as communication channel to send information gathered from infected Mac and receiving added instructions from hackers.
As the malware doesn’t exploit the vulnerability in Mac OS X or other software then it must dupe users to downloading and opening the masked PDF file that is an executable.
Once malware runs, the dropper downloads second-stage backdoor and opens Chinese language PDF. “(The dropper component) drops a PDF file in the /tmp folder, then opens it to distract the user from noticing any other activity occurring.”
Mac users faced biggest malware threat early this year when series of fake security programs called “scareware” aimed. Antivirus companies like F-Secure, Sophos and Intego offer Mac security software.
Related News / Articles:
- Latest Android Malware Records Phone Calls
- Pegel Trojan is back in Top Malware programs
- New Android Virus Able To Record Your Phone Calls
- The Coming of Mobile Malware Is Inevitable If You Use A Mobile
- More Malware Targeting Android
- Microsoft Criticized for Warning New Mac Malware
DISCUSS THIS ARTICLE ON OUR FORUM!
