CONFERENCE NOW LIVE: Threat Detection & Incident Response (TDIR) Summit - Join the Event In-Progress
Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Malware & Threats

Apple Updates Anti-Malware After Installer Attack

Apple has updated the anti-Malware signatures for Mac OS X after a new SMS installer scam was detected online by Russia’s Dr. Web earlier this week.

The attack, while not majorly malicious or panic inducing, would have scammed users via mobile subscriptions.

Apple has updated the anti-Malware signatures for Mac OS X after a new SMS installer scam was detected online by Russia’s Dr. Web earlier this week.

The attack, while not majorly malicious or panic inducing, would have scammed users via mobile subscriptions.

“These are fake installers available on various sites disguised as distributions of legitimate software. When a user starts such an installer, they see the interface that imitates the installation wizard of a corresponding application. In order to continue the ‘installation’ fraudsters ask that the victim enter their cell phone number into an appropriate field and then specify the code found in a reply SMS. By performing these actions the user agrees to terms of a chargeable subscription and a fee will be debited from their mobile phone account on a regular basis,” Dr. Web explained

In response to the latest scam targeting Apple’s darling, they added the installer’s signature to their Xprotect.plist blacklist during one of the daily updates. Mac OS X users are protected as of this evening. Going forward, it is recommended that users avoid using SMS as a means to authenticate any program.

Written By

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this event as we dive into threat hunting tools and frameworks, and explore value of threat intelligence data in the defender’s security stack.

Register

Learn how integrating BAS and Automated Penetration Testing empowers security teams to quickly identify and validate threats, enabling prompt response and remediation.

Register

People on the Move

Jeremy Koppen has left Mandiant after 13 years to become the CISO of Equifax.

Engineering and technology solutions provider Amentum has appointed Max Shier as its CISO.

PAM provider Keeper Security has appointed Shane Barney as its Chief Information Security Officer.

More People On The Move

Expert Insights

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest cybersecurity news, threats, and expert insights. Unsubscribe at any time.