Da alama masu haɓaka watsa shirye-shiryen sune masu satar bayanai, tunda ba wannan bane karo na farko ta wannan software don saukar da fayiloli wasu sauran malware sun shiga cikin Mac inda aka sanya su. A wannan lokacin, an rarraba malware ta hanyar saukar da wannan aikace-aikacen tsakanin Agusta 28 da 29. Wannan kunshin shigarwar yana da Keydnap malware a ciki. Siffar da ta gabata ta wannan malware ta buƙaci masu amfani su danna kan fayil ɗin ɓarna, wanda ya buɗe Terminal kai tsaye. Sannan malware ya jira a aiwatar da aikace-aikacen kuma ya nuna mana taga tana neman tabbaci.
Amma a cikin wannan sabon sigar, wannan malware baya buƙatar aikace-aikace na biyu don gudana ko mai amfani don gaskatawa, kawai shigar hade tare da Transmission. Tunda Apple ya sanya hannu a kan aikace-aikacen, Mai tsaron ƙofa yana ba da izinin aiwatar da wannan aikace-aikacen ba tare da dubawa a kowane lokaci ba idan ya haɗa da malware ko a'a.
Da zarar an shigar kuma kun mallaki Mac ɗin ku, wannan sabon sabuntawar sabunta Keydnap ɗin zai iya ana amfani da damar samun damar maballin inda muke adana dukkan kalmomin shiga masu alaƙa da shafukan yanar gizo, bisa ma'ana gami da waɗanda ke samun damar zuwa asusun bankunanmu. Amma bai takaita da samun damar ba, da sauri ta zazzage fayil din zuwa cikin sabobin da suka bunkasa wannan cutar.
Sa hannun da aka samo a cikin kunshin girkawa mai wayo Ba wanda yake na halal masu haɓaka bane, An sanar da Apple ya soke damar shiga wannan kamfanin tunda ba shine wanda ya kebanta da masu kirkirar ba. Waɗanda suka ci gaba a cikin sauri sun ci gaba da cire kwayar da ke ɗauke da cutar daga sabobin su da zarar an sanar da su wannan matsalar.
Da alama tsaron sabobin kamfanin koyaushe suna da ƙofa a buɗe, saboda wannan shine karo na biyu da masu fashin kwamfuta suka shigo ciki suka canza asalin fayil din zazzagewa don kwafi tare da malware. A baya can, malware ɗin da suka ɓoye cikin fakitin shigarwa shine KeRanger. Duk da binciken da suke yi kowane lokaci, masu satar bayanai suna sake shiga ciki. Da alama cewa lallai ne su sadaukar da kansu ga wani abu dabam ko zaɓar canza sabobin. A halin yanzu an riga an adana sabon kwafin akan sabobin Github.
Yadda za a cire Keynap daga Mac ɗinmu da Transmission
Binciken na ESET ya ba da shawarar cewa duk masu amfani da suka sauke kuma suka sanya iTransmission tsakanin 28th da 29th nemo da share ɗayan waɗannan fayiloli ko kundayen adireshi akan Macs ɗinku:
- /Aikace-aikace / Transmission.app/Contents/Resources/License.rtf
- /Volume/Transmission/Transmission.app/Contents/Resources/License.rtf
- $ HOME / Library / Taimako Aikace-aikacen / com.apple.iCloud.sync.daemon / icloudsyncd
- $ HOME / Library / Taimako na Aikace-aikace / com.apple.iCloud.sync.daemon / process.id
- $ HOME / Library / LaunchAgents / com.apple.iCloud.sync.daemon.plist
- / Library / Taimako Aikace-aikacen / com.apple.iCloud.sync.daemon /
- $ HOME / Library / LaunchAgents / com.geticloud.icloud.photo.plist
Nan gaba dole ne mu je zuwa Kulawar Ayyuka kuma gurgunta duk wani tsari da ya shafi fayiloli masu zuwa:
- cikakana
- Lasisi.rtf
- iclysyncd
- / usr / libexec / icloudsyncd -launchd netlogon.bundle
Sannan cire aikace-aikacen daga tsarinmu kuma zazzage Sake watsawa daga sabobin Github, inda suka shirya shi saboda yana bayar da tsaro sama da na su sabobin.
