If you need another reminder that you shouldn’t download software from pirating sites, heed this warning: According to Russia-based security firm Kaspersky (translation), there’s a new trojan malware bundled with apps posing as popular premium macOS apps.
Kaspersky explains that the app downloaders are offered as package (PKG) files rather than the usual disk image (DMG) file that launches and mounts a volume on the desktop containing the application installer. The site’s researchers uncovered the malware hidden inside 35 image editing, video compression and editing, data recovery, and network scanning tools, including numerous popular Mac apps:
- 4K Video Donwloader Pro
- Aiseesoft Mac Video Converter Ultimate
- Aissessoft Mac Data Recovery
- AnyMP4 Android Data Recovery for Mac
- Artstudio Pro
- AweCleaner
- Downie 4
- FonePaw Data Recovery
- MacDroid
- MacX Video Converter Pro
- NetShred X
- Path Finder
- Project Office X
- Sketch
- SQLPro Studio
- Vellum
- Wondershare UniConverter 13
Kaspersky says Attackers can use the malware to create a proxy network on an infected Mac and to commit various crimes on behalf of the victim: from attacks on sites, companies, and other users to the purchase of weapons, drugs, and other illegal goods. The trojan masks itself as a WindowServer system file, which is a common GPU task responsible for drawing elements on the screen. Once installed, it blends in with the system unbeknownst to macOS security and the user.
How to protect yourself
If you’ve already downloaded one of these apps, there isn’t much you can do other than a complete wipe and reinstall of your system. Otherwise, stay away from warez sites and download software only from official sources. Catching these types of malware and viruses before they reach your machine is always the best method but we’ve also rounded up the best Mac antivirus software that will stop viruses from infecting your Mac.
Source : Macworld
