Iqela labaphangi abaziwa ukuba babengoyilo bohlaselo olwahlukeneyo ngaphambili ngokuchasene ne-US Defense Industrial Base., Kunye nezinye iinkampani ezibalulekileyo kwicandelo, kutshanje iqalile ukusebenzisa inkqubo ebandakanya indawo engaphandle yokuhlasela iinkqubo ezine-OS X.
Abaphandi bezokhuseleko kwiFireEye sele bephawulile ngebhlog ngoLwesine ukuba ikhowudi yangasemva yathunyelwa kwi-OS X Ukusuka kwifestile engasemva yeWindows ebisetyenziswa ngokubanzi kuhlaselo ekujoliswe kulo kule minyaka imbalwa idlulileyo, ihlaziyiwe amaxesha amaninzi kwinkqubo.
Inkqubo enobubi ibizwa ngokuba yi-XSLCmd kwaye iyakwazi ukuvula iqokobhe elingasemva kulawulo lwefayile kunye nokudlulisa, kunye nokufakwa kwezinye iinkqubo ezinobungozi kwikhompyuter eyosulelekileyo. Umahluko we-OS X unokubhalisa ukucofa iqhosha kunye nezikrini, Ngokwabaphandi beFireEye.
Xa ifakwe kwi-Mac, le malware iyazifaka kwi »/ Library / Logs / clipboardd» kunye ne "IKHAYA / iThala lencwadi / iiLaunchAgents / clipboardd«. Ikwayile com.apple.service.clipboardd.plist ifayile yokuqinisekisa ukuba iyasebenza emva kwenkqubo yokuqalisa kwakhona. I-malware iqulethe ikhowudi ejonga uhlobo lwe-OS X, kodwa hayi iinguqulelo ezingaphezulu kwe-OS X 10.8 (Intaba yeNgonyama). Oku kuphakamisa ukuba inguqulelo ye-10.8 yayiyeyona nguqulelo yokugqibela ye-OS X xa inkqubo ibhaliwe okanye ubuncinci yeyona ixhaphakileyo esetyenziselwa iinjongo zayo.
I-XSLCmd yangaphakathi yangasemva yenziwe kwaye yasetyenziswa liqela le-espionage leqela ebelikho isebenza ukusukela ubuncinci ngo-2009 Kwaye wabizwa ngokuba yi-GREF ngabaphandi be-FireEye. "Ngokwembali, i-GREF ikhokele uluhlu lwemibutho, kubandakanya i-United States Defence Industrial Base (DIB), iinkampani ze-elektroniki kunye nezobunjineli kwihlabathi liphela, kunye neziseko kunye neminye imibutho engekho phantsi kukarhulumente, ngakumbi abo banomdla eAsia.» .
Ngokwe-FireEye:
I-OS X ifumene ukuthandwa phakathi kwamashishini, kunye nabasebenzisi abangenamava abakhawulezileyo ukuziqhelanisa nenkqubo entsha kwaye bakufumanisa kulula ukusebenza, nditsho abasebenzisi beetekhnoloji ephezulu basebenzise izinto ezinamandla ngakumbi, kunye nabaphathi […] Abantu abaninzi bayayithatha njengeyona iqonga elikhuselekileyo lekhompyuter, elinokuthi likhokelele kwingozi yokuziva ungonwabanga kuwo omabini amasebe e-IT. Ngapha koko, ngelixa umzi mveliso wezokhuseleko sele uqalile ukubonelela ngemveliso ezininzi kwiinkqubo ze-OS X, ezi nkqubo ngamanye amaxesha zilawulwa kancinci kwaye zibekwe esweni kwimeko yecandelo kunabalingane babo beWindows.