9to5Mac declares Apple must fix this Mac security flaw "asquickly as possible"

On 2020-06-30 11:24 p.m., Arlen Holder wrote:
Dateline today
(all verbatim since apologists habitually call all facts lies)

"Apple must fix this security flaw as quickly as possible
since this malicious code can be included in more apps
distributed outside the App Store."

o New EvilQuest Mac ransomware found in pirated apps encrypts users files
https://9to5mac.com/2020/06/30/new-evilquest-mac-ransomware-found-in-pirated-apps-encrypts-users-files/

"Mac users are now exposed to a new EvilQuest ransomware that encrypts
files and causes multiple issues to the operating system."

See also:
o New Mac ransomware spreading through piracy
https://blog.malwarebytes.com/mac/2020/06/new-mac-ransomware-spreading-through-piracy/
"After setting it ahead three days, disconnecting from the network,
and restarting the computer a couple times, it finally began
encrypting files."


What exactly is the "security flaw" that Apple has to fix, Arlen?

You've discovered that downloading software from untrusted sources isn't
necessarily bright...

....so sort of like you.

On 2020-07-01 14:08, Not Arlen wrote:

What exactly is the "security flaw" that Apple has to fix, Arlen?

You've discovered that downloading software from untrusted sources isn't
necessarily bright...

Quote
The malicious code was first found in a *pirate* copy of the
Little Snitch app available on a *Russian* forum with *torrent*
links. The downloaded app comes with a PKG installer file,
unlike its original version.
End quote.

Can almost play keyword bingo here.

On 01 Jul 2020, Alan Browne wrote
(in article ):

On 2020-07-01 14:08, Not Arlen wrote:

What exactly is the "security flaw" that Apple has to fix, Arlen?

You've discovered that downloading software from untrusted sources isn't
necessarily bright...

Quote
The malicious code was first found in a *pirate* copy of the
Little Snitch app available on a *Russian* forum with *torrent*
links. The downloaded app comes with a PKG installer file,
unlike its original version.
End quote.

Can almost play keyword bingo here.

Gee. It’s almost as if the way to avoid this particular Trojan is to,
y’know, not use pirate versions, and that criminality is it’s own reward.
Why I’m reminded of another Trojan, this one from the days of Office 2004.
Someone created what was supposed to be the installer for Office 2004 and put
it on various peer-to-peer sharing sites. It was about 120 kB in size; Office
was over 600 MB. I’m not quite sure what magic compression was supposed to
have been used to achieve _that_. In any case, should someone who was totally
innumerate as well as criminal download it and run it, it would erase the
hard drive. Microsoft denied having anything to do with it.I do have my
suspicions, though.

On 2020-07-01 19:23:43 +0000, Wolffan said:
On 01 Jul 2020, Alan Browne wrote
(in article ):
On 2020-07-01 14:08, Not Arlen wrote:

What exactly is the "security flaw" that Apple has to fix, Arlen?

You've discovered that downloading software from untrusted sources isn't
necessarily bright...

Quote
The malicious code was first found in a *pirate* copy of the
Little Snitch app available on a *Russian* forum with *torrent*
links. The downloaded app comes with a PKG installer file,
unlike its original version.
End quote.

Can almost play keyword bingo here.

Gee. It's almost as if the way to avoid this particular Trojan is to,
y'know, not use pirate versions, and that criminality is it's own reward.
Why I'm reminded of another Trojan, this one from the days of Office 2004.
Someone created what was supposed to be the installer for Office 2004 and put
it on various peer-to-peer sharing sites. It was about 120 kB in size; Office
was over 600 MB. I'm not quite sure what magic compression was supposed to
have been used to achieve _that_. In any case, should someone who was totally
innumerate as well as criminal download it and run it, it would erase the
hard drive. Microsoft denied having anything to do with it.I do have my
suspicions, though.

"... download it and run it, it would erase the hard drive."

Isn't that what all Microsoft installers always do?!? ;-)