Printer-friendly copy Email this topic to a friend
Lobby General Discussion topic #13424756

Subject: "Nearly 30,000 Macs reportedly infected with mysterious malware" Previous topic | Next topic
c71
Member since Jan 15th 2008
11448 posts
Sun Feb-21-21 01:24 PM

Click to send private message to this authorClick to view this author's profileClick to add this author to your buddy list
"Nearly 30,000 Macs reportedly infected with mysterious malware"


  

          

I'm only posting this because in the old Organix forum I posted an article on internet protection for computers and some Apple user got VERY smug........VERY smug


I wish he were around for this post. Really didn't like that guy.


https://www.cnn.com/2021/02/21/tech/mac-mysterious-malware/index.html

Nearly 30,000 Macs reportedly infected with mysterious malware

By Alexis Benveniste, CNN Business

Updated 12:29 PM ET, Sun February 21, 2021

New York (CNN Business)Nearly 30,000 Macs world-wide have been infected with mysterious malware, according to researchers at security firm Red Canary.

The malware, which the company calls Silver Sparrow, does not "exhibit the behaviors that we've come to expect from the usual adware that so often targets macOS systems," Tony Lambert, an intelligence analyst at Red Canary wrote.

It's not clear what the malware's goal is. Silver Sparrow includes a self-destruct mechanism that appears to have not been used, researchers said. It's also unclear what would trigger that function.

Notably, Silver Sparrow contains code that runs natively on Apple's in-house M1 chip that was released in November, making only the second known malware to do so, according to the news site Ars Technica.

"Though we haven't observed Silver Sparrow delivering additional malicious payloads yet, its forward-looking M1 chip compatibility, global reach, relatively high infection rate, and operational maturity suggest Silver Sparrow is a reasonably serious threat," researchers wrote.

Silver Sparrow infected Macs in 153 countries as of February 17, with higher concentrations reported in the US, UK, Canada, France and Germany, according to data from Malwarebytes, a website that blocks ransomware attacks.

  

Printer-friendly copy | Reply | Reply with quote | Top


Topic Outline
Subject Author Message Date ID
Republicans and Democrats are the same
Feb 21st 2021
1
^ :'(
Feb 21st 2021
2
let me guess.............
Feb 21st 2021
3
      Some truths
Feb 21st 2021
4
Posting a "told you so" to someone who's not even around anymore?
Feb 21st 2021
5
I didn't say he wasn't around anymore
Feb 21st 2021
7
      Lol
Feb 22nd 2021
10
VERY smug
Feb 21st 2021
6
fuck all this bullshit...what do we DO?
Feb 22nd 2021
8
I think MalwareBytes will detect and remove it
Feb 22nd 2021
9

handle
Charter member
17055 posts
Sun Feb-21-21 02:11 PM

Click to send email to this author Click to send private message to this authorClick to view this author's profileClick to add this author to your buddy list
1. "Republicans and Democrats are the same"
In response to Reply # 0


          

Something like 7 billion malware attacks a year for PCs (Republicans)
30,000 malware attacks for Macs (Democrats)

So it’s equal.

I wonder if you’re being smug running to the Internet to post this????

Just a thought

------------


Gone: My Discogs collection for The Roots:
http://www.discogs.com/user/tomhayes-roots/collection

  

Printer-friendly copy | Reply | Reply with quote | Top

    
Nopayne
Member since Jan 03rd 2003
52332 posts
Sun Feb-21-21 02:37 PM

Click to send email to this author Click to send private message to this authorClick to view this author's profileClick to add this author to your buddy listClick to send message via AOL IM
2. "^ :'("
In response to Reply # 1


  

          

---
Love,
Nopayne

  

Printer-friendly copy | Reply | Reply with quote | Top

    
c71
Member since Jan 15th 2008
11448 posts
Sun Feb-21-21 02:40 PM

Click to send private message to this authorClick to view this author's profileClick to add this author to your buddy list
3. "let me guess............."
In response to Reply # 1


  

          



>30,000 malware attacks for Macs (Democrats)
>


uh.........I'm supposed to believe (echoes of the smug guy) that....


30,000 (the number cited in the article for THIS particular type of malware)....


....is the ONLY malware infection for Macs (no 30,000 plus ...anything?)


right?

  

Printer-friendly copy | Reply | Reply with quote | Top

        
handle
Charter member
17055 posts
Sun Feb-21-21 03:07 PM

Click to send email to this author Click to send private message to this authorClick to view this author's profileClick to add this author to your buddy list
4. "Some truths"
In response to Reply # 3


          

NO ONE who knows ANYTHING about the Mac ever said "Mac's can not get malware or viruses and you're 100% safe at all times."

What is true "Macs are targeted 1000s of times LESS with Malware and Macs have some built-in security measure that may help limit the severity of some common malware."

So yes, EVERYTIME a malware targets a Mac someone posts a similar thing "Mac users are smug, but look you ain't shit!! Hahaha you're exactly the same as everyone else - and we suck - so now you suck too - but you suck more because I thought you were smug."

No one says mac are INVULENARBLE. They just aren't targeted AS MUCH.

Same with the iPhone - we know the Pegasus spyware has been used to target political dissidents and journalism in Saudi Arabia and China - it's just not very common so it's not really a problem the average user will ever have.

More about virus/spyware/malware/adware on the mac:
https://www.malwarebytes.com/mac-antivirus/
https://www.macworld.co.uk/feature/mac-viruses-list-3668354/

If Macs started to outsell Windows the malware targeting would shift to the Mac.

All computers can be hacked - ALL of them.

Note: I am NOT a Mac user. I do own a PowerMac G4 that's in storage.

------------


Gone: My Discogs collection for The Roots:
http://www.discogs.com/user/tomhayes-roots/collection

  

Printer-friendly copy | Reply | Reply with quote | Top

Boogie Stimuli
Member since Sep 24th 2010
13286 posts
Sun Feb-21-21 03:22 PM

Click to send email to this author Click to send private message to this authorClick to view this author's profileClick to add this author to your buddy list
5. "Posting a "told you so" to someone who's not even around anymore?"
In response to Reply # 0
Sun Feb-21-21 03:25 PM by Boogie Stimuli

          

Are you hoping to encounter more "smug" apple users?

Craving that iTension in your life?

~
~
~
~
~
"Until you get outta my way, I don't wanna hear what you say aye aye"

  

Printer-friendly copy | Reply | Reply with quote | Top

    
c71
Member since Jan 15th 2008
11448 posts
Sun Feb-21-21 06:15 PM

Click to send private message to this authorClick to view this author's profileClick to add this author to your buddy list
7. "I didn't say he wasn't around anymore"
In response to Reply # 5


  

          

...was like a wish for him to identify himself in this post

  

Printer-friendly copy | Reply | Reply with quote | Top

        
Boogie Stimuli
Member since Sep 24th 2010
13286 posts
Mon Feb-22-21 11:11 AM

Click to send email to this author Click to send private message to this authorClick to view this author's profileClick to add this author to your buddy list
10. "Lol"
In response to Reply # 7


          

>...was like a wish for him to identify himself in this post

~
~
~
~
~
"Until you get outta my way, I don't wanna hear what you say aye aye"

  

Printer-friendly copy | Reply | Reply with quote | Top

Mynoriti
Charter member
36236 posts
Sun Feb-21-21 03:29 PM

Click to send email to this author Click to send private message to this authorClick to view this author's profileClick to add this author to your buddy list
6. "VERY smug"
In response to Reply # 0


  

          

--------
http://ambitiondeficitdisorder.tumblr.com/

  

Printer-friendly copy | Reply | Reply with quote | Top

Damali
Member since Sep 12th 2002
34970 posts
Mon Feb-22-21 12:51 AM

Click to send email to this author Click to send private message to this authorClick to view this author's profileClick to add this author to your buddy list
8. "fuck all this bullshit...what do we DO?"
In response to Reply # 0


          

how do we know if we have it or not?

y'all stay focused on the dumbest shit, i swear..


d

"But rest assured, in my luxurious house built on the backs of people darker than me, I am sipping fine scotch and scoffing at how stupid you are." - bshelly

  

Printer-friendly copy | Reply | Reply with quote | Top

    
handle
Charter member
17055 posts
Mon Feb-22-21 03:58 AM

Click to send email to this author Click to send private message to this authorClick to view this author's profileClick to add this author to your buddy list
9. "I think MalwareBytes will detect and remove it"
In response to Reply # 8


          

No clear instructions yet, but here are files that indicate you have it

https://redcanary.com/blog/clipping-silver-sparrows-wings/

In Versions 1 & 2
~/Library/._insu (empty file used to signal the malware to delete itself)
/tmp/agent.sh (shell script executed for installation callback)
/tmp/version.json (file downloaded from from S3 to determine execution flow)
/tmp/version.plist (version.json converted into a property list)

Other versions
~/Library/Application Support/agent_updater/agent.sh (v1 script that executes every hour)
/tmp/agent (file containing final v1 payload if distributed)
~/Library/Launchagents/agent.plist (v1 persistence mechanism)
~/Library/Launchagents/init_agent.plist (v1 persistence mechanism)

------------


Gone: My Discogs collection for The Roots:
http://www.discogs.com/user/tomhayes-roots/collection

  

Printer-friendly copy | Reply | Reply with quote | Top

Lobby General Discussion topic #13424756 Previous topic | Next topic
Powered by DCForum+ Version 1.25
Copyright © DCScripts.com