Perhaps they’re just testing the thing out there and will eventually do really nasty things like intercept bank account logins to facilitate the sort of scams that involve fake refunds, where prospective marks are shown doctored versions of their bank statements.
Malware spotted doing unspeakable, filthy things to infected Macs – injecting Bing results into Google searches
A devious and baffling new strain of malware intercepts and tampers with internet traffic on infected Apple Macs to inject Bing results into users' Google search results, we're told. A report out this month by security house AiroAV details how its bods apparently spotted a software nasty that configures compromised macOS …
COMMENTS
-
Tuesday 4th June 2019 20:50 GMT Anonymous Coward
Baffling new strain of malware?
“security house AiroAV details how its bods apparently spotted a software nasty that configures compromised macOS computers”
The most important bit is how does this baffling malware get onto the Mac in the first place. does it require visiting a compromised repository and downloading and installing the malware or opening an email attachment or clicking on a malicious link.
“In this latest case, it is claimed, the malware masquerades as an installer for an Adobe Flash plugin – delivered perhaps by email or a drive-by download”
Thanking you, so, a total non-story ..
-
-
-
-
Wednesday 5th June 2019 12:59 GMT Joe Gurman
Re: Adobe Flash plugin ... that the user is tricked into running
Not likely to appeal to most fanboys, unless they’re of the idle mega rich variety who can afford a US$5K (or $6K) display to it on the mount. Actual pro device, affordable only by the professional video and sound editing industry and the owners of super yachts. The US$1K for the stand is in the noise of 28-core, 4 graphics chip, 1.5 Tbyte of memory kit.
-
-
-
Wednesday 5th June 2019 09:31 GMT Al fazed
No Flash involved
Unfortunately I have come across this little blighter twice. Two seperate MAC's with the same unauthorised Proxy sitting on the network filtering away.
However this little bugger had convinced the MAC that there were no OS or software updates available for the last couple of years. Everything was fine, even with Sophos antivirus installed, it wasna working.
How was it done ?
Something took over DHCP side of the WiFi component ! Badda Boom !
All search results were being manipulated.
Trying to update Sophos returned no results via it's software.
Searching for Sophos with Google on Safari brought in dead pages with the links pointing to more search results, or Sophos pages where the links are all dead.
Meanwhile, accessing eMails and Internet shopping trips were unaffected
Clever stuff ????
I fixed the devils by dishing out fixed IP addresses for the devices and deleting the Proxy configurations and clearing caches of the browsers and temp directories on the systems. The bugger just disappeared on both devices and hasn't returned yet. Updating to the latest OS releases may have prevented re infection.
I get the feeling it was a router compromise in teh first place as the logs had all vanished. A Talk Talk router on one system and Virgin Media router on the other. Sadly I am not experienced enough to know for sure how this happened in the first place. It was aided and abetted by the User's indifference/lack of technical know how, when it comes to maintaining a device properly, or even just running anti virus software.
So many end users are in the same boat I fear.
-
Wednesday 5th June 2019 09:49 GMT Al fazed
Flash is still required
Don't know if anyone here watches UK Television, but it is still the case that in order to watch anything on Channel 4 via the Internet, you need to have Flash Player installed, or it won't work.
It used to be the same with BBC iPlayer, but I haven't even tried to see if things have improved, so I am just one more lost consumer.
It is still out there and some developers are still arranging for the delivery of their clients web content via Flash ??????
Go figure that out if you can.
-
Wednesday 5th June 2019 11:10 GMT RichardBarrell
Re: Flash is still required
Try using Chrome or Safari but changing the user-agent so that it reports itself as being an iPad?
I've seen this work before on e.g. the BBC's website a couple years ago. They were doing UA sniffing to decide whether to try to show you the news video via a dirty dirty SWF or a nice cleanHTML5 video tag.
-
Wednesday 5th June 2019 12:35 GMT bombastic bob
Re: Flash is still required
so the problem is that ti's not recognizing HTML5 capable browsers, then?
you might see if there's a custom user-agent thing you can use, modify in about:config (for FF, not sure if Chrome "lets you" that filthy little dictator of a web browser)
/me just reminded I need to finish my X11 toolkit, port webkit to use it, and write my OWN browser with built-in no script, memory-only cookies, customizable user agent, and NO 2D FLATTY or flash plugins!
-
Wednesday 5th June 2019 14:53 GMT jbuk1
Re: Flash is still required
I think it's more to do with the DRM that they can wrap around the flash version.
There use to be (may still be) a Windows command line utility for downloading videos from the BBC iPlayer which spoofed it's user agent as an iPad so that the BBC would return a drm free video stream which the tool could intercept.
-
-
-