Tietoturvatutkijat ovat löytäneet salaperäisen Fruitfly-haittaohjelman, joka on pysytellyt tutkan alla vuosia saastuttaen satoja Mac-koneita, uutisoi Tivi.
Teknologiajulkaisu Motherboardin mukaan Fruitflyn ensimmäinen versio havaittiin vuonna 2015, ja nyt haitakkeesta on löytynyt uusi versio, Fruitfly 2.
Haittaohjelma Fruitfly 2 havaittu
Keskustelua tietoturvasta ja varmuuskopioinnista Mac-, iPhone- ja iPad -käyttäjien näkökulmasta
5 viestiä
• Sivu 1/1
-
- Ylläpitäjä
- Viestit: 50739
- Liittynyt: 30.12.2005 klo 21.24
- Paikkakunta: Tampere
Haittaohjelma Fruitfly 2 havaittu
Viesti Kirjoittaja amanita »
Iltalehti kertoo salaperäisestä Fruitfly-haittaohjelmasta Maceissa, onko meidän tietoturvaukkeleilla asiasta kommentoitavaa?
On mahdotonta olla masentunut, jos sinulla on ilmapallo! -Nalle Puh-
Apple-käyttäjät ry:n jäsen • http://appleusers.fi/
Apple-käyttäjät ry:n jäsen • http://appleusers.fi/
-
- Viestit: 3920
- Liittynyt: 2.5.2006 klo 13.48
Re: Haittaohjelma Fruitfly 2 havaittu
Viesti Kirjoittaja jeppe »
Järki käteen, Iltalehti repii taas otsikoita...
https://discussions.apple.com/thread/80 ... 0&tstart=0
https://discussions.apple.com/thread/80 ... 0&tstart=0
Mac Pro x 2, Mac Mini, Macbook Air M1, Macbook Pro, LED Cinema Display x 2
Airport Extreme, Airport Express x 3, AppleTV x 2
iPhone 12 Mini, iPad 1, iPad Mini, Apple Watch (20.11.2020)
Airport Extreme, Airport Express x 3, AppleTV x 2
iPhone 12 Mini, iPad 1, iPad Mini, Apple Watch (20.11.2020)
-
- Viestit: 3514
- Liittynyt: 22.7.2010 klo 0.14
Re: Haittaohjelma Fruitfly 2 havaittu
Viesti Kirjoittaja khaosaming »
Arsissa juttu.
https://arstechnica.com/security/2017/0 ... for-years/
https://arstechnica.com/security/2017/0 ... for-years/
A mysterious piece of malware that gives attackers surreptitious control over webcams, keyboards, and other sensitive resources has been infecting Macs for at least five years. The infections—known to number nearly 400 and possibly much higher—remained undetected until recently and may have been active for almost a decade.
Ledru-Rollin: "There go the people. I must follow them, for I am their leader."
-
- Viestit: 3920
- Liittynyt: 2.5.2006 klo 13.48
Re: Haittaohjelma Fruitfly 2 havaittu
Viesti Kirjoittaja jeppe »
Samassa jutussa myös seuraavaa:
"One of the interesting aspects of the latest Fruitfly variant is that it flew under the radar for so long. The malware relies on functions that were retired long ago and uses a crude method to remain installed once a Mac is infected. Compared to newer, more sophisticated malware, Fruitfly is much easier to detect. And yet, for whatever reason, no one caught it until recently. Two pieces of Mac software developed by Wardle would have given victims a strong indication they were infected. One, called BlockBlock, would have warned of the suspicious launch agent used by the malware. A second tool, called Oversight, provides notification anytime an app attempts to access a Mac's webcam or microphone. A recent submission to the VirusTotal malware detection service shows that 19 of the top 56 AV- and endpoint-protection products now detect the malware."
Miksi haittaohjelmaa löydetty aiemmin? No ehkä ihan vaan siksi ettei se ole levinnyt juuri minnekään.
Antivirus-yritykset hymyilevät taas lukiessaan näitä pelotteluja....
"One of the interesting aspects of the latest Fruitfly variant is that it flew under the radar for so long. The malware relies on functions that were retired long ago and uses a crude method to remain installed once a Mac is infected. Compared to newer, more sophisticated malware, Fruitfly is much easier to detect. And yet, for whatever reason, no one caught it until recently. Two pieces of Mac software developed by Wardle would have given victims a strong indication they were infected. One, called BlockBlock, would have warned of the suspicious launch agent used by the malware. A second tool, called Oversight, provides notification anytime an app attempts to access a Mac's webcam or microphone. A recent submission to the VirusTotal malware detection service shows that 19 of the top 56 AV- and endpoint-protection products now detect the malware."
Miksi haittaohjelmaa löydetty aiemmin? No ehkä ihan vaan siksi ettei se ole levinnyt juuri minnekään.
Antivirus-yritykset hymyilevät taas lukiessaan näitä pelotteluja....
Mac Pro x 2, Mac Mini, Macbook Air M1, Macbook Pro, LED Cinema Display x 2
Airport Extreme, Airport Express x 3, AppleTV x 2
iPhone 12 Mini, iPad 1, iPad Mini, Apple Watch (20.11.2020)
Airport Extreme, Airport Express x 3, AppleTV x 2
iPhone 12 Mini, iPad 1, iPad Mini, Apple Watch (20.11.2020)
-
- Viestit: 631
- Liittynyt: 9.7.2008 klo 17.44
Re: Haittaohjelma Fruitfly 2 havaittu
Viesti Kirjoittaja securapple »
Hei!
Lähde: https://www.cnet.com/news/mac-fruitfly- ... -the-wild/
"Wardle's early analysis was that as many as 90 percent of the victims were in the US, according to the article, with no obvious connection between the users. Based on the target victims, however, Wardle thought the malware was run by a single hacker "with the goal to spy on people for perverse reasons" than a nation state attacker. While he wouldn't comment on how many were affected by the malware, he suggested it wasn't widespread.
"I believe the attacker is MIA [missing in action]," Wardle told CNET, "so I don't think people are still being targeted with this malware. Also it likely required user interaction to infect a Mac computer (you'd have to be tricked into downloading/running something). But the malware itself still runs on MacOS," he added.
eli rauha maassa.
-Securapple
Lähde: https://www.cnet.com/news/mac-fruitfly- ... -the-wild/
"Wardle's early analysis was that as many as 90 percent of the victims were in the US, according to the article, with no obvious connection between the users. Based on the target victims, however, Wardle thought the malware was run by a single hacker "with the goal to spy on people for perverse reasons" than a nation state attacker. While he wouldn't comment on how many were affected by the malware, he suggested it wasn't widespread.
"I believe the attacker is MIA [missing in action]," Wardle told CNET, "so I don't think people are still being targeted with this malware. Also it likely required user interaction to infect a Mac computer (you'd have to be tricked into downloading/running something). But the malware itself still runs on MacOS," he added.
eli rauha maassa.
-Securapple
Kyberukkeli
iPhone 6,iPad Air,iPad Mini 3,rMBP-2014 twitter: http://twitter.com/securapple
iPhone 6,iPad Air,iPad Mini 3,rMBP-2014 twitter: http://twitter.com/securapple
5 viestiä
• Sivu 1/1
Palaa sivulle “Tietoturva ja varmuuskopiointi”
Hyppää
- Yleiset aiheet
- ↳ Ajankohtaista Apple-maailmasta
- ↳ Käyttöjärjestelmät
- ↳ Ohjelmat
- ↳ Yleiskeskustelu
- Mac ja oheislaitteet
- ↳ Yleiskeskustelu laitteista
- ↳ MacBook, MacBook Pro ja MacBook Air
- ↳ iMac
- ↳ Mac mini
- ↳ Mac Pro ja Mac Studio
- ↳ Ongelmia Macin kanssa?
- iPhone, iPad ja Apple Watch
- ↳ iPhone-, iPad- ja Apple Watch -laitekeskustelu
- ↳ iPhone-, iPad- ja Apple Watch -ohjelmat sekä iOS
- ↳ Ongelmia iPhonen, iPadin tai Apple Watchin kanssa?
- Huviksi ja hyödyksi
- ↳ Off-topic
- ↳ Kuva ja graafinen suunnittelu
- ↳ Audio ja musiikki
- ↳ Video, televisio ja elokuvat
- ↳ Pelit ja pelaaminen
- ↳ Ohjelmointi, skriptit ja palvelimet
- ↳ Tietoturva ja varmuuskopiointi
- ↳ Verkot, mobiilidata ja muut puhelimet
- ↳ Retronurkka
- ↳ Foorumin ylläpito
- Kauppapaikka
- ↳ Myydään Mac
- ↳ Myydään iPhone, iPad ja iPod
- ↳ Myydään muut Applen tuotteet
- ↳ Myydään muuta tietotekniikkaa
- ↳ Ostetaan Mac
- ↳ Ostetaan iPhone, iPad ja iPod
- ↳ Ostetaan muut Applen tuotteet
- ↳ Ostetaan muuta tietotekniikkaa
- ↳ Vaihdetaan, annetaan, työtä haetaan ja tarjotaan
- ↳ Kauppapaikan keskustelu ja hintavinkit