Michal Marek "Virus" yamtundu wa ransomware yafika pa Mac kwa nthawi yoyamba. Matendawa amagwira ntchito pobisa deta ya wogwiritsa ntchito, ndipo wogwiritsa ntchitoyo ayenera kulipira "dipo" kwa omwe akuukira kuti abwezeretse deta yawo. Malipiro nthawi zambiri amapangidwa mu bitcoins, zomwe ndi chitsimikizo cha kusapezeka kwa omwe akuukira. Gwero la matendawa linali kasitomala wotseguka kwa maukonde a bittorrent Kutumiza mu version 2.90.
Chosasangalatsa ndichakuti kachidutswa koyipa kotchedwa OSX.KeRanger.A adalowa mwachindunji mu phukusi lovomerezeka. Chifukwa chake, woyikirayo anali ndi satifiketi yakeyake yosaina ndipo adakwanitsa kudutsa Gatekeeper, chitetezo chodalirika cha OS X.
Pambuyo pake, palibe chomwe chingalepheretse kupanga mafayilo ofunikira, kutseka kwa mafayilo a wosuta, ndikukhazikitsa kulumikizana pakati pa makompyuta omwe ali ndi kachilombo ndi ma seva owukira kudzera pa netiweki ya Tor. Ogwiritsanso ntchito adatumizidwanso ku Tor kuti alipire bitcoin imodzi kuti atsegule mafayilo, bitcoin imodzi pakadali pano ndiyofunika $400.
Ndikwabwino kutchula, komabe, kuti data ya ogwiritsa ntchito imasungidwa mpaka masiku atatu mutayika phukusi. Mpaka nthawi imeneyo, palibe chomwe chikuwonetsa kukhalapo kwa kachilomboka ndipo chitha kupezeka mu Activity Monitor, pomwe njira yolembedwa "kernel_service" ikuchitika ngati mutadwala. Kuti muwone pulogalamu yaumbanda, yang'ananinso mafayilo otsatirawa pa Mac yanu (ngati muwapeza, Mac yanu ili ndi kachilombo):
/Applications/Transmission.app/Contents/Resources/General.rtf
/Volumes/Transmission/Transmission.app/Contents/Resources/General.rtf
Zomwe Apple sanachite sizinatenge nthawi yayitali ndipo satifiketi ya wopangayo inali yosavomerezeka kale. Choncho, pamene wogwiritsa ntchito tsopano akufuna kuyendetsa choyikiracho, adzachenjezedwa mwamphamvu za chiopsezo chotheka. The XProtect antivayirasi dongosolo lasinthidwanso. Anayankhanso poopseza Tsamba la Transmission, pomwe chenjezo lidayikidwa pakufunika kosinthira kasitomala wa torrent ku mtundu wa 2.92, womwe umakonza vutoli ndikuchotsa pulogalamu yaumbanda ku OS X. Komabe, woyikiratu woyipayo anali akadalipo kwa pafupifupi maola 48, kuyambira pa Marichi 4 mpaka 5.
Kwa ogwiritsa ntchito omwe adaganiza zothetsa vutoli pobwezeretsa deta kudzera pa Time Machine, nkhani yoyipa ndi yakuti KeRanger, monga momwe ransomware imatchulidwira, imaukiranso mafayilo osungidwa. Izi zikunenedwa, ogwiritsa ntchito omwe adayika choyikiracho ayenera kupulumutsidwa ndikuyika mtundu waposachedwa wa Transmission kuchokera patsamba la polojekiti.
Iwo omwe asinthidwa kukhala 2.90 kudzera pa pulogalamuyi sali pachiwopsezo ...
Iwo omwe amayamwa pamitsinje sakuyenera kanthu koma ransomware ...
Oo
Ndipo kachiwiri kutsutsidwa kopusa ndi mbama :(
Kodi mumaganiza kuti torrent protocol ingagwiritsidwe ntchito ndipo imagwiritsidwanso ntchito kugawa sw?
Hmmm, ndikatsitsa kugawa kwa Linux, ndizabwino kwambiri kudzera pa Torrent, zomwe ndizomwe protocol yoperekedwa idapangidwira poyambirira, kuti imachitiridwa nkhanza ndi nkhani yosiyana ...