Michal Marek Iyo inoshanda ransomware-mhando "hutachiona" yasvika paMac kekutanga. Chirwere ichi chinoshanda nekuvharira data remushandisi, uye mushandisi anobva abhadhara "rudzikinuro" kune vanorwisa kuti vadzoserwe data ravo. Kubhadhara kunowanzoitwa mu bitcoins, inova vimbiso yekusaverengeka kune vanorwisa. Kwakabva hutachiona hwaive mutengi wakavhurika weiyo bittorrent network kufamba mushanduro 2.90.
Chinhu chisingafadzi ndechekuti chidimbu chekodhi chinodanwa OSX.KeRanger.A yakapinda zvakananga mune yepamutemo yekuisa package. Iyo yekuisa saka yaive neyayo yakasainwa yekuvandudza chitupa uye nekudaro yakakwanisa kudarika Gatekeeper, iyo neimwe nzira yakavimbika system yekudzivirira yeOS X.
Mushure meizvozvo, hapana chaigona kudzivirira kusikwa kwemafaira anodiwa, kuvharika kwemafaira emushandisi, uye kumisikidzwa kwekutaurirana pakati pekombuta ine hutachiona uye maseva evanorwisa kuburikidza neTor network. Vashandisi vakadzoserwa zvakare kuTor kuti vabhadhare mubhadharo webitcoin imwe chete kuvhura mafaera, neimwe bitcoin parizvino inokosha madhora mazana mana.
Zvakanaka kutaura, zvisinei, kuti data remushandisi rakavharirwa kusvika mazuva matatu mushure mekuisa package. Kusvika panguva iyoyo, hapana chinoratidza kuvepo kwehutachiona uye hunogona kungoonekwa muActivity Monitor, apo chirongwa chakanzi "kernel_service" chiri kuita kana paine hutachiona. Kuti uone malware, tsvagawo mafaera anotevera paMac yako (kana ukaawana, Mac yako inogona kunge ine hutachiona):
/Applications/Transmission.app/Contents/Resources/General.rtf
/Volumes/Transmission/Transmission.app/Contents/Resources/General.rtf
Kuita kweApple hakuna kutora nguva yakareba uye chitupa chemugadziri changa chatove chisisashande. Saka kana mushandisi ave kuda kumhanyisa mugadziri ane hutachiona, anozoyambirwa zvakanyanya nezve njodzi inogona kuitika. Iyo XProtect antivirus system yakagadziridzwa zvakare. Akapindurawo kutyisidzira Transmission webhusaiti, apo yambiro yakatumirwa pamusoro pekudiwa kwekugadzirisa torrent client kune shanduro 2.92, iyo inogadzirisa dambudziko uye inobvisa malware kubva ku OS X. Nekudaro, iyo yakashata yekuisa yaive ichiripo kweanoda kusvika maawa makumi mana nemasere, kubva munaKurume 48 kusvika 4.
Kune vashandisi vakafunga kugadzirisa dambudziko iri nekudzoreredza data kuburikidza neTime Machine, iyo yakaipa nhau inyaya yekuti KeRanger, sekudaidzwa kunoitwa rudzikinuro, zvakare inorwisa mafaera akatsigirwa. Izvo zviri kutaurwa, vashandisi vakaisa iyo inoshungurudza installer inofanirwa kuchengetwa nekuisa yazvino vhezheni yeTransmission kubva kune webhusaiti yeprojekiti.
Avo vakagadziridza kusvika 2.90 kuburikidza nekushandisa havasi panjodzi ...
Avo vanoyamwa nemunzizi havakodzeri chimwe chinhu kunze kwerununuro...
wow
Uye zvakare kutongwa kweupenzi nembama :(
Waifunga here kuti torrent protocol inogona kushandiswa uye inoshandiswawo kugovera sw?
Hmmm, pandinorodha kugovera kweLinux, zviri nani kuburikidza neTorrent, inova iyo protocol yakapihwa yakagadziridzwa pakutanga, chokwadi chekuti inoshungurudzwa imwe nyaya ...