Official release Mac app Transmission contained ransomware




The official version of the Transmission bittorrent client for OS X devices contained ransomware. The ransomware KeRanger was in version 2.90. It is unknown how it could happen that Transmission has spread an infectious version through its own site.

Site Transmission gives currently a warning to download an update immediately to version 2.90 whom the client has put on his OS X device. Version 2.92 removes the ransomware named KeRanger. It is unknown how many people have been victims of malware that encrypts files on the device and is available again for a bitcoin, currently about 368 euros for users.

Security company Palo Alto Networks has the malware found . KeRanger came through Apple’s Gatekeeper security around because it used a valid developer certificate. The attackers have replaced the version on the site by its own variant containing KeRanger. This points to a hack of the site, but has not yet confirmed the developer of Transmission.

Apple withdrew the license of the infected version of Transmission, which allows users of OS X can not open the variant KeRanger. Because the infected version last Friday has been compiled and is put online and Palo Alto Networks, Apple has informed on the same day, the number of victims will be limited. Additionally struck the only users that have reached the .dmg file on the site, not the people who Transmission of an update have provided from the program itself. Moreover KeRanger according to Palo Alto still developing. There are not code in the malware used to encrypt Time Machine backups for example.

It is not the first discovered ransomware for OS X. Kaspersky discovered several years ago Filecoder, but which was not finished at the time of discovery and referred to the command and control server even to a local computer.


In: A Technology & Gadgets Asked By: [23633 Red Star Level]

Answer this Question

You must be Logged In to post an Answer.

Not a member yet? Sign Up Now »