toggle

AAPL Stock: 130.28 ( + 0.61 )

Printed from http://www.macnn.com

New OS X 'KitM.A' malware discovered, mostly impotent

updated 04:01 pm EDT, Thu May 16, 2013

App dumps screenshots into a folder, command and control servers inactive

A new semi-functional malware has been found for OSX. Discovered on a computer at the Oslo Freedom Forum by researcher Jacob Appelbaum, the OSX/KitM.A is a backdoor application which launches on boot and captures screenshots on a regular basis, which are then dumped in a folder.

The malware has two command and control servers, with one nonfunctional and one delivering a 403 - public access forbidden warning. It is unknown if the servers were ever put into service, or will be running in the future.

The malware is signed with a legitimate Apple Developer ID, which can bypass Apple's built-in malware installation block. The source of the malware is under investigation by anti-virus company F-Secure. Apple has not as of yet revoked the developer's signature.




by MacNN Staff

POST TOOLS:

TAGS :

toggle

Comments

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

Advertisement

Recent Reviews

Brother HL-3140CW Color Laser Printer

It's inevitable, at some point somebody needs a hardcopy of a document. Paper never runs out of battery charge, after all. Our Mom, j ...

Linksys WRT1200AC Wi-Fi Router

Once upon a time, a brand-new Linksys router showed up on our doorstep. So we gathered some network-minded friends together, and hooke ...

Rapoo A300 Mini Bluetooth NFC Speaker

The Rapoo Bluetooth Mini NFC Speaker is a little metallic box about the size of a baseball. In spite of its small size, we were very p ...

toggle

Most Commented