April 13, 2017 by

Mac Malware Rises as Ransomware Extortionists Target Apple Users

A survey by security software firm Malwarebytes’ analysis of malware and cybercrime in the first quarter of 2017 has revealed an increasing number of attacks targeting Apple users using Mac-targeting malware.

Notable malware strains leading this surge include the FindZip Mac ransomware, which is particularly annoying for two reasons. After leaving the unfortunate Mac user no option but to pay the ransom, the malware then leaves the user completely at bay due to the developers’ complete lack of programming decryption keys for their encryption-based malware.

Locky, a prominent and notorious ransomware malware has “dropped off the map” this year, the report reveals, while the Cerber ransomware-as-a-service is now leading the charts for distributed ransomware strains.

The report explains:

Its spread is largely because the creators have not only developed a superior ransomware with military-grade encryption, offline encrypting, and a slew of new features, but by also making it very easy for non-technical criminals to get their hands on a customized version of the ransomware.

Cerber’s capabilities of adapting and evolving means that the sophisticated variant is now responsible for nine out of ten ransomware infections. New Cerber variants are even known to trick anti-virus solutions that are based on machine learning. Due to the technical proficiency and know-how of its developers, the malware is aware of the setting of its execution – even if it is within a virtual machine or a sandbox.

This particular strain of Cerber is distributed via phishing emails that include a link to a Dropbox older that contains a self-extracting archive file. This archive contains three files. Individually, these files aren’t dangerous but their design to work together makes them execute the dreaded Cerber malware.

Ransomware continues to dominate the malware landscape, totaling for over 60% of all malware distributed in March 2017. Already, this is up 10% compared to January this year, underlining the continuing threat and growth of ransomware strains.

Image credit: Pixabay.

About the author

Image of Author

LIFARS is the global leader in Digital Forensics and Cyber Resiliency Services. Our experience spans two decades working on high profile events, often in concert with Law Enforcement Agencies around the world. Our proprietary methodology derives directly and indirectly from our experience working with and for U.S. Intelligence Agencies, Interpol, Europol, and NATO. We are solely dedicated to Cyber Resiliency and thus pay close attention to all aspects of our clients’ engagements experience while providing a strategic and integrated array of services to minimum risk and disruption while protecting your brand.

Related articles

Robots are Now Vulnerable to Ransomware Attacks

Security researchers have put the spotlight on malware affecting humanoid robots with the first...

Read more arrow_forward

Free Decryption Tool Brings Respite to Victims of Aggressive Ransomware

A new and unusual family of ransomware has met its match after a ransomware tool backed by Europol...

Read more arrow_forward

Ransomware is ‘Modern-Day Extortion’, Says McAfee CEO

The chief executive of cybersecurity firm McAfee has labelled ransomware as the modern day answer to...

Read more arrow_forward