Tuesday, October 27, 16:45
Home security Apple: Fixes 6 malicious apps that appear as Flash installers!

Apple: Fixes 6 malicious apps that appear as Flash installers!

Creators malware managed to pass malicious apps that appear as Adobe Flash installers, from the Apple app notarization process, for the second time this year. The app notarization is a security protection officially released by Apple earlier this year. This is a process that requires application developers Poppy submit their applications to Apple for a series of automated security scans that check for malware or other malicious patterns code.

Applications that pass the scans are rated "notarized", which means they are added to a list of allowed within the Apple GateKeeper security service. Once added to the GateKeeper list of allowed, notarized apps can be opened and installed with a single click, without warnings or pop-ups. The app notarization is mandatory for all applications that want to run on newer ones publications Apple 's macOS, such as Catalina and Big Sur.

Apple: Fixes 6 malicious apps that appear as Flash installers!

The notarization process was accepted by users and developers as it removed some of the friction of installing macOS applications. However, like Bouncer, the automated security system that scans applications Android before uploading to Google Play Store, the Apple app notarization process was never expected to be perfect.

The first malicious apps that managed to pass the notarization process and enter the list of allowed in newer versions of macOS, were discovered at the end of August. In total, 40 applications were infected with Shlayer trojan and the adware BundleCore.

Apple: Fixes 6 malicious apps that appear as Flash installers!

In a report released last week, Joshua Long, chief security analyst for security software maker Intego, said his company had discovered six new applications that went through the notarization process. Long told ZDNet that the six notarized apps were introduced as Flash installers. Once installed, applications download and install adware OSX / MacOffers, which is known for modifying the search engine in the victim's browser.

It is unknown at this time what he will do after leaving the post. However, it is speculated that he may have received a warning from another malware researcher, or perhaps from a Mac user who came across this malicious activity.

As Adobe picks up Flash by the end of the year, Long urges users to stop downloading and installing Flash installers.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Pohackontas
Pohackontashttps://www.secnews.gr
Every accomplishment starts with the decision to try.

LIVE NEWS

How to enable the new Chrome Read more feature

The latest version of Google Chrome browser, v86, released earlier this month, contains a secret feature called Read ...

How to choose a custom color for the Start menu

Starting with the October 2020 update, Windows 10 is the default on a theme that removes bright colors from ...

NASA telescope discovers drinking water on the moon

Eleven years ago, a spacecraft changed our view of the moon forever. The data collected by ...

Microsoft: Enhances password spray attack detection capabilities

Microsoft has significantly improved the ability to detect password spray attacks in the Azure Active Directory (Azure AD) and has reached the point ...

How to prevent companies from finding our phone number

In the age of advertising, the more user information is known the more convenient it is for companies. And in particular, the ...

Violation in a psychotherapy clinic led to blackmail of patients

Two years ago, a cyber attack took place in a Finnish psychotherapy clinic, which resulted in data theft and ransom demand. Now,...

Australia: Enhances cybersecurity and privacy!

The Government of New South Wales in Australia has set up a task force to strengthen cybersecurity and protection ...

More than 100 irrigation systems were left exposed on the internet

More than 100 smart irrigation systems were left exposed on the internet without a password last month, allowing anyone to access ...

Violation in Nitro Software most likely affects Google, Apple, Microsoft

Nitro PDF (Nitro Software) service has suffered a data breach, which is said to affect many well-known companies, such as Google, ...

Hacker steals $ 24 million from cryptocurrency service Harvest Finance

A hacker has stolen "cryptocurrency assets" worth about 24 million dollars from the decentralized financing service (DeFi) Harvest Finance, a web portal ...