• Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
HackRead
  • January 28th, 2021
  • Home
  • Advertise
  • Privacy Policy
  • Contact Us
HackRead
  • Hacking News
    • Leaks
    • WikiLeaks
    • Anonymous
  • Tech
    • Android
    • Apple News
    • BlackBerry
    • Google News
    • Microsoft
    • Motorola
    • Nokia
    • Samsung
    • 3D
  • Cyber Crime
    • Phishing Scam
  • How To
  • Cyber Events
    • Censorship
    • Cyber Attacks
  • Security
    • Malware
  • Surveillance
    • Drones
    • NSA
    • Privacy
  • Explore
    • Gaming
    • Science
    • Viral
  • Follow us
    • Facebook
    • Twitter
    • Linkedin
    • Youtube
Home
Security
Malware

Mac malware from Iran targeting US defense industry, human rights activist

February 8th, 2017 Uzair Amir Malware, Security 0 comments
Mac malware from Iran targeting US defense industry, human rights activist
Share on FacebookShare on Twitter

There was a time when users believed that Mac machines are safe to be used since Apple’s security features are second to none in the market. However, the notion is about to change. According to the analysis of two security researchers Claudio Guarnieri and Collin Anderson, there is a Mac-based malware dubbed as MacDownloader that is apparently being used by Iranian hackers to launch attacks against the US defense industry and human rights communities, especially those focused on Iran.

They managed to identify the malware while researching cyber spying and surveillance activities of Iranian hackers. The researchers discovered this malware on an unauthentic US aerospace firm United Technologies’ website. The same site was used previously in another spear phishing email hack attack, but at that time it targeted Windows-based systems. During that campaign, researchers also identified involvement of Iranian hackers.

Must Read: 11 easy tips to secure your Mac against hackers

The malware is easily available for download via an Adobe Flash Installer and interested downloaders can choose from getting either Windows-based or Mac-based version. The malware is designed to spy on the targeted computer and obtain important credentials. To perform its task, the malware generates fake system login boxes, which it collects from Keychain, the password management system of Apple Inc. Researchers claim that the malware is not of superior quality and seems like the work of an “amateur developer.”

United Technologies targeted by Iranian malware

They were able to drive this conclusion because when the malware is installed, it creates a fake Adobe Flash Player dialog box just to announce that adware has been discovered on the computer and it can clean it up.

Researchers claim that these dialog boxes are full or “typos and grammatical errors,” which hints at the fact that the developer(s) didn’t pay enough attention to the quality of the malware at all. Moreover, malware cannot run a script to download other malware to the infected Mac. Still, the malware is regarded as a threat since it evaded detection from the antivirus scanning and aggregating engine VirusTotal.

Also Read: Iran’s Shamoon malware haunting Saudi Arabia again

The involvement of Iran was proven through circumstantial evidence; such as researchers discovered an exposed server uploaded by macDownloader that displayed names of wireless networks, which belonged to Iranian hacker groups. These systems included “Jok3r” and “mb_1986.” One of the networks’ associated hacker uses the name, Flying Kitten. This particular hacker is known for targeting US political dissidents and US defense contractors.

[fullsquaread][/fullsquaread]

In their report, researchers noted that: “While this [malware] is neither sophisticated nor full-featured, its sudden appearance is concerning given the popularity of Apple computers.”


DDoS attacks are increasing, calculate the cost and probability of a DDoS attack on your business with this DDoS Downtime Cost Calculator.

  • Tags
  • Apple
  • Cyber Warfare
  • hacking
  • internet
  • Iran
  • Mac
  • Malware
  • security
  • USA
Facebook Twitter LinkedIn Pinterest
Previous article Indian hackers hack Facebook groups for posting teen, revenge porn images
Next article Hackers deface thousands of website by exploiting WordPress vulnerability
Uzair Amir

Uzair Amir

I am an Electronic Engineer, an Android Game Developer and a Tech writer. I am into music, snooker and my life motto is 'Do my best, so that I can't blame myself for anything.'

Related Posts
World's Most 'Resilient Malware' Botnet Emotet Taken Down

World's Most 'Resilient Malware' Botnet Emotet Taken Down

Top Cybersecurity Threats to Watch in 2021

Top Cybersecurity Threats to Watch in 2021

Database of 176 million Pakistani mobile phone users sold online

Database of 176 million Pakistani mobile phone users sold online

Newsletter

Get the best stories straight into your inbox!



Don’t worry, we don’t spam

Latest Posts
NetWalker ransomware disrupted - Cryptocurrency and domain seized
Cyber Crime

NetWalker ransomware disrupted - Cryptocurrency and domain seized

43
Transferring Whatsapp data from iPhone to Android with MobileTrans
How To

Transferring Whatsapp data from iPhone to Android with MobileTrans

29
World's Most 'Resilient Malware' Botnet Emotet Taken Down
Cyber Crime

World's Most 'Resilient Malware' Botnet Emotet Taken Down

80

HACKREAD is a News Platform that centers on InfoSec, Cyber Crime, Privacy, Surveillance and Hacking News with full-scale reviews on Social Media Platforms & Technology trends. Founded in 2011, HackRead is based in the United Kingdom.

Follow us