cancel
Showing results for 
Search instead for 
Did you mean: 

A new Mac OSX Malware to be aware of.

Anonymous
Not applicable

A new Mac OSX Malware to be aware of.

Janicab .app

A new piece of digitally signed spyware for Mac OS X uses a special Unicode character in its file name to hide its real file extension from users and trick them into installing it.
Opening the Janicab .app file will trigger a standard Mac OS X pop-up dialog warning the user that the file was downloaded from the Internet.
However, because of the RLO character in the file name, the entire warning text will be written right to left making it confusing and hard to read.
If users agree to open the file, the malware will install itself in a hidden folder in the user's home directory and will open a decoy PDF document containing what appears to be a news article in Russian.
Janicab continuously takes screenshots and records audio and uploads the collected data to command and control (C&C) servers that it finds by parsing the description of specific YouTube videos.
It also queries the C&C servers for commands to execute, the F-Secure researchers said in the blog post.

http://www.pcadvisor.co.uk/news/security/3457840/new-digitally-signed-mac-malware-confuses-users-wit...
17 REPLIES 17
HairyMcbiker
All Star
Posts: 6,792
Thanks: 266
Fixes: 21
Registered: ‎16-02-2009

Re: A new Mac OSX Malware to be aware of.

Again the users HAVE to install it, and it is not auto install like M$ virii.
Mac users should be a bit more savy about running strange apps.
dvorak
Moderator
Moderator
Posts: 28,397
Thanks: 6,226
Fixes: 1,453
Registered: ‎11-01-2008

Re: A new Mac OSX Malware to be aware of.

you'd have thought so wouldn't you...
Customer / Moderator
If it helped click the thumb
If it fixed it click 'This fixed my problem'
HairyMcbiker
All Star
Posts: 6,792
Thanks: 266
Fixes: 21
Registered: ‎16-02-2009

Re: A new Mac OSX Malware to be aware of.

But then again they have spent £1000's on their shiny mac, maybe they just like the colour? Wink
Oldjim
Community Veteran
Posts: 38,460
Thanks: 1,034
Fixes: 63
Registered: ‎15-06-2007

Re: A new Mac OSX Malware to be aware of.

You would be surprised - or perhaps not - that many Mac users are totally ignorant about malware etc. and only went for a Mac instead of a Windows PC because they had been convinced by the publicity that it just works out of the box and doesn't get malware.
You should have seen the problem a friend of my better half had who wanted to transfer pictures from her Mac to a USB stick. Eventually she brought the laptop round and I did it for her (it wasn't at all obvious how to do it for a complete noob on a Mac - Me.)
Windows Explorer for all its problems at least makes it easy to do
dvorak
Moderator
Moderator
Posts: 28,397
Thanks: 6,226
Fixes: 1,453
Registered: ‎11-01-2008

Re: A new Mac OSX Malware to be aware of.

disagree it's very obvious, i found it very intuitive and it does just work out of the box Wink
Customer / Moderator
If it helped click the thumb
If it fixed it click 'This fixed my problem'
Anonymous
Not applicable

Re: A new Mac OSX Malware to be aware of.

Quote from: Hairy
But then again they have spent £1000's on their shiny mac, maybe they just like the colour? Wink

£999 for my latest iMac !
Oldjim
Community Veteran
Posts: 38,460
Thanks: 1,034
Fixes: 63
Registered: ‎15-06-2007

Re: A new Mac OSX Malware to be aware of.

Quote from: dvorak
disagree it's very obvious, i found it very intuitive and it does just work out of the box Wink
So why did I find it very non intuitive
Answer - I have never ever used a Mac before and all I wanted to do was view the folder and copy the files to a USB stick
Also I never did find out how to copy the jpg pictures across I finished up using the export system which re-encodes them
Anonymous
Not applicable

Re: A new Mac OSX Malware to be aware of.

.jpg to USB, just Drag & Drop, is that what you need to do ?
Most of my USB transfers of images, files, folders etc I Drag & Drop.
Oldjim
Community Veteran
Posts: 38,460
Thanks: 1,034
Fixes: 63
Registered: ‎15-06-2007

Re: A new Mac OSX Malware to be aware of.

The odd thing is that she had already tried doing that by dragging the folder containing the files across but it didn't bring the files with it - it was empty on the USB stick
Apologies for taking this thread off topic - please let it drop as I no longer have any access to the Mac and so couldn't even try again.
By the way - also have problems doing anything on my better half's android tablet which is a problem when she gets stuck
Strat
Moderator
Moderator
Posts: 31,296
Thanks: 3,878
Fixes: 565
Registered: ‎14-04-2007

Re: A new Mac OSX Malware to be aware of.

Fortunately I have used iTunes in the past which put me firmly off anything Apple related.
I used iTunes for an iPhone 3 company phone which sadly just worked.
Malware writers will target anything if there's a profit in it.

Customer and Forum Moderator. Windows 10 Firefox 105.0.1 (64-bit (64-bit)


Anonymous
Not applicable

Re: A new Mac OSX Malware to be aware of.

Quote from: Oldjim
The odd thing is that she had already tried doing that by dragging the folder containing the files across but it didn't bring the files with it - it was empty on the USB stick
Apologies for taking this thread off topic - please let it drop as I no longer have any access to the Mac and so couldn't even try again.

One last thought, perhaps the USB stick needed formatting to a Mac format, via disc utility.
If it was formatted to Windows PC NTFS, it is not write-able to from iMac, unless an extra bit of software is used, which I use.
NTFS is extended FAT for Windows USB
Anonymous
Not applicable

Re: A new Mac OSX Malware to be aware of.

Here's another Apple mac dodgy trick to be aware of
Apple browsers targeted by simple JavaScript ransom scam
The attack noticed by security firm Malwarebytes is a mixture of sleight of hand and social engineering that the firm reports that it will work against several Mac-based browsers (using an OSX interpreter) with JavaScript enabled.

http://www.pcadvisor.co.uk/news/security/3458426/apple-browsers-targeted-by-simple-javascript-ransom...
PeeGee
Pro
Posts: 1,216
Thanks: 84
Fixes: 3
Registered: ‎05-04-2009

Re: A new Mac OSX Malware to be aware of.

Quote from: PlusComUK
NTFS is extended FAT for Windows USB

? ? ? ? ? ? ? ? ? Shocked
Plusnet FTTC (Sep 2014), Essentials (Feb 2013); ADSL (Apr 2009); Customer since Jan 2004 (on 28kb dial-up)
Using a TP-Link Archer VR600 modem-router.
VileReynard
Hero
Posts: 12,613
Thanks: 630
Fixes: 20
Registered: ‎01-09-2007

Re: A new Mac OSX Malware to be aware of.

Returning to the OP - why would a Mac use a "file extension" - I thought only Windows considered that the bit after the dot has any particular meaning?
I've never used any Apple fashion accessory, though.

"In The Beginning Was The Word, And The Word Was Aardvark."