Kubonakala ngathi abaphuhlisi boGqithiso ziithagethi zabagculi, kuba ayiloxesha lokuqala ngale software ukukhuphela iifayile enye i-malware ityibilika kwi-Mac apho ifakwe khona. Ngesi sihlandlo, i-malware yasasazwa ngokukhutshelwa kwesi sicelo phakathi kuka-Agasti 28 no-29. Le fayile yokufaka yayine-Keydnap malware ngaphakathi kuyo. Inguqulelo yangaphambili yale malware ifuna ukuba abasebenzisi bacofe kwifayile enobungozi, ethi ivule ngokuzenzekelayo iTheminali. Emva koko i-malware ilinde ukuba isicelo senziwe kwaye isibonisa iwindow ecela ukungqinisisa.
Kodwa kule nguqulo intsha, le malware ayifuni isicelo sesibini ukuba sisebenze okanye umsebenzisi aqinisekise, ngokulula ifakwe ngokudibeneyo noThumelo. Ukusukela ukuba isicelo sasayinwa yi-Apple, uMgcini-sango uvumela ukwenziwa kwesi sicelo ngaphandle kokujonga nangaliphi na ixesha ukuba ngaba i-malware ibandakanyiwe okanye hayi.
Nje ukuba ufake kwaye unolawulo kwi-Mac yakho, olu hlaziyo lwe-malware lwe-Keydnap entsha lunakho esetyenziselwa ukufikelela kwi-keychain apho sigcina khona onke amagama agqithisiweyo enxulunyaniswa namaphepha ewebhu, ngokufanelekileyo kubandakanya nezo zokufikelela kwiiakhawunti zethu zebhanki. Kodwa ayizikhawuleli ekubeni ibe nokufikelela, ikhuphela ngokukhawuleza ifayile kwiiseva eziye zaphuhlisa le malware.
Utyikityo olufunyenwe kwiphakheji yokufaka yokuhambisa ngokufanelekileyo Ayisiyiyo eyabaphuhlisi abasemthethweniU-Apple wazisiwe ukuba arhoxise ukufikelela kule nkampani kuba ayisiyiyo eyonjiniyela. Abaphuhlisi bakhawuleze basusa ikopi esulelekileyo kwiiseva zabo nje ukuba baziswe ngale ngxaki.
Kubonakala ngathi ukhuseleko lweeseva zenkampani luhlala luvulekile ucango, kuba lixesha lesibini ukuba imigewu ingena kubo kwaye batshintshe ifayile yoqobo yokukhuphela ikopi ene-malware ebandakanyiweyo. Ngaphambili, i-malware ethe yangena kwiphakheji yokufaka yayiyi-KeRanger. Ngaphandle kophando abalwenzayo ixesha ngalinye, imigewu ingena iphindaphindeka. Kubonakala ngathi kuza kufuneka bazinikele kwenye into okanye bakhethe ukutshintsha iiseva. Okwangoku ikopi entsha sele igcinwe kwiiseva zeGithub.
Uyisusa njani i-Keynap kwi-Mac yethu yosulele nge-Transmission
Uphando lwe-ESET lucebisa ukuba bonke abasebenzisi abakhuphele kwaye bafake iTransmission phakathi komhla wama-28 nowama-29 fumana kwaye ucime nayiphi na kwezi fayile okanye imikhombandlela kwiiMacs zakho:
- /Applications/Transmission.app/Contents/Resource/License.rtf
- /Volume/Transmission/Transmission.app/Contents/Resource/License.rtf
- $ IKHAYA / Ithala lencwadi / Inkxaso yesicelo / com.apple.iCloud.sync.daemon / icloudsyncd
- $ IKHAYA / Ithala lencwadi / Inkxaso yesicelo / com.apple.iCloud.sync.daemon / process.id
- $ IKHAYA / Ithala leencwadi / iLaunchAgents / com.apple.iCloud.sync.daemon.plist
- / Ithala lencwadi / Inkxaso yesicelo / com.apple.iCloud.sync.daemon /
- $ IKHAYA / Ithala leencwadi / iLaunchAgents / com.geticloud.icloud.photo.plist
Okulandelayo kufuneka siye kuLuhlu loMsebenzi kwaye khubaza nayiphi na inkqubo enxulumene nezi fayile zilandelayo:
- icloudproc
- Ilayisenisi.rtf
- icloudsinc
- / usr / libexec / icloudsyncd -launchd netlogon.bundle
Ke khipha usetyenziso kwinkqubo yethu kwaye ukhuphele kwakhona ukuhambisa kwakhona kwiiseva zeGithub, apho bazibambe khona kuba zibonelela ngokhuseleko olukhulu kuneseva zabo.
