toggle

AAPL Stock: 123.25 ( -0.99 )

Printed from http://www.macnn.com

New OS X 'KitM.A' malware discovered, mostly impotent

updated 04:01 pm EDT, Thu May 16, 2013

App dumps screenshots into a folder, command and control servers inactive

A new semi-functional malware has been found for OSX. Discovered on a computer at the Oslo Freedom Forum by researcher Jacob Appelbaum, the OSX/KitM.A is a backdoor application which launches on boot and captures screenshots on a regular basis, which are then dumped in a folder.

The malware has two command and control servers, with one nonfunctional and one delivering a 403 - public access forbidden warning. It is unknown if the servers were ever put into service, or will be running in the future.

The malware is signed with a legitimate Apple Developer ID, which can bypass Apple's built-in malware installation block. The source of the malware is under investigation by anti-virus company F-Secure. Apple has not as of yet revoked the developer's signature.




by MacNN Staff

POST TOOLS:

TAGS :

toggle

Comments

Login Here

Not a member of the MacNN forums? Register now for free.

toggle

Network Headlines

toggle

Most Popular

Advertisement

Recent Reviews

Seagate Wireless

It seems like no matter how much internal storage is included today's mobile devices, we, as users, will always find a way to fill th ...

Brother HL-L8250CDN Color Laser Printer

When it comes to selecting a printer, the process is not exactly something most people put a lot of thought into. Printers are often t ...

Moshi iVisor AG and XT for iPad Air 2

Have you ever tried to put in a screen protector that relies on static to cling to the screen? How many bubbles and wrinkles does it h ...

toggle

Most Commented