![]() The researchers said the ransomware appears to still be under active development and is also attempting to encrypt Apple’s Time Machine backup files to prevent victims from recovering their backup data. After completing the encryption, KeRanger demands victims pay one bitcoin-currently worth about $400-to retrieve their files. Palo Alto Networks said KeRanger, which attackers infected Transmission with on March 4, begins encrypting files three days after infecting a computer, making them inaccessible. An alert on the app’s website warned customers and advised that they immediately upgrade. ![]() ![]() Transmission, an open-source project, has already released a new version of the app without the infection. ![]() Palo Alto Networks, which has dubbed the ransomware “KeRanger,” said the only previous known ransomware for OS X was dubbed “FileCoder,” but since it was incomplete when discovered in 2014, the researchers believe this is the first fully functional ransomware on the platform.Ī representative for Transmission said the affected software was downloaded about 6,500 times, though he said many users may have been unable to run it because of Apple’s swift removal of the certificate. Historically, Apple products, which have a much smaller share of the market, have been considered mostly safe from viruses and other digital attacks. These types of cyberattacks-which typically target Microsoft Corp.’s Windows operating system as it has by far the biggest market share-are expected to grow in 2016 as hackers target more companies and advanced software is able to compromise more types of data, according to a report from Intel Corp.’s McAfee Labs released late last year. Doing so essentially lets hackers hold user data or a system hostage. Ransomware is malicious software that allows a hacker to access an individual or company’s computers, encrypt sensitive data and then demand some form of payment to decrypt it. Palo Alto said it believes this is the first such ransomware issue to affect Apple customers. An Apple spokesman confirmed the attack and said the company had pulled the developer certificate so no user can install the affected app. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |