1. Akshay Masand's Avatar


    It has been recently discovered that 17,000 + Macs worldwide have been infected by a new malware threat called ‘iWorm.’ Popular community website Reddit.com is involved in this infection as it was used as a go-between to obtain user information. Discovered by security researchers, ‘iWorm’ apparently allows hackers to have access to control the Mac device as well as data gathering. An operating file is created when iWorm is installed and asks for a list of control servers to connect to.

    The botnet server list is apparently retrieved as well via Reddit’s search service. The company has already shut down Reddit strings. The list of things ‘iWorm’ is enabled to do includes putting a Mac to sleep, send important private information, perform GET queries, ban nodes, and more. Dr. Web has found that the malware has already infected approximately 17,658 Macs as of September 26th. For those who would like to know if their device has been infected, simply to go ‘Go→ Go to Folder' then type /Library/Application Support/JavW into the Finder menu.

    Source: Dr. Web
    Last edited by Akshay Masand; 2014-10-04 at 09:47 AM.

    Twitter: @AkshayMasand
    2014-10-04 09:13 AM
  2. PaKi619's Avatar
    lol. i was scared to check, but i am definitely not one of the 17000 people.
    2014-10-04 01:15 PM
  3. dsg's Avatar
    Found a way to get notified if it does find its way onto your mac
    privacy isn't about having something to hide, another view here

    look here all grammar police, indulge me.
    2014-10-04 02:51 PM
  4. holyshnikes's Avatar
    17,000 worldwide? That's not that many.
    2014-10-04 02:56 PM
  5. quidam_brujah's Avatar
    Lots of info at DRWEB about what it does but very little on how it gets in to your Mac.
    The Safe Mac has some info on how you could get infected to begin with.
    Looks like there's 18+ thousand idiots that download untrusted pirateware.
    2014-10-04 11:23 PM
  6. AKCHRIS's Avatar
    Doesn't affect me because I'm not that stupid to accept USB Sticks from Strangers.
    2014-10-04 11:34 PM
  7. Silverado1987's Avatar
    yeah i agree 17,000 is not many at all lol
    2014-10-05 03:25 AM
  8. dsg's Avatar
    17,000 makes sense if you have to install it by yourself, it sucks that people do this kind of thing and for everybody that thinks these people get what they deserve, look at yourself and think; I've made some dumb a55 mistakes too
    privacy isn't about having something to hide, another view here

    look here all grammar police, indulge me.
    2014-10-05 04:31 AM
  9. Shady6's Avatar
    Another case of, "if you aren't a dumbass then this doesnt affect you". But hey, gotta have apple in the headlines because its the ultimate in click bait.
    2014-10-05 05:06 AM
  10. quidam_brujah's Avatar
    17,000 makes sense if you have to install it by yourself, it sucks that people do this kind of thing and for everybody that thinks these people get what they deserve, look at yourself and think; I've made some dumb a55 mistakes too
    Yes, I've made some dumb a55 mistakes. But that list doesn't include:
    1. 'Accidently' trawling pirate torrent sites
    2. Downloading a torrent file
    3. Downloading the file via bittorrent
    4. Opening the file
    5. Running the installer
    6. Running the crack
    7. Oh noes!!1!1!


    That's a pretty complicated set of mistakes. Akin to mistakenly cheating on your significant other. If you or anyone you know is making those kinds of 'mistakes' on a frequent basis, please seek immediate medical attention.

    If I've done something like that, it's most definitely not been a mistake. But, then, I've also opened it inside a non-persistent VM sandbox to see what it does to avoid such problems.
    2014-10-05 06:28 AM
  11. dsg's Avatar
    So you know 100% that that is the only way to get infected?

    Edit: or are you as ignorant as everybody else and trying to boost your ego by having a crack at me!!!

    Edit: just because one person found that you can install it yourself from downloading and installing a cracked program/app from a torrent, doesn't rule out any and all other ways of getting infected.

    Edit:
    If I've done something like that, it's most definitely not been a mistake. But, then, I've also opened it inside a non-persistent VM sandbox to see what it does to avoid such problems.
    I hope your still sandboxed, because it's early days and there maybe more than these directories that are compromised
    Last edited by dsg; 2014-10-05 at 07:10 AM.
    privacy isn't about having something to hide, another view here

    look here all grammar police, indulge me.
    2014-10-05 06:41 AM
  12. steve-z17's Avatar
    That's really not too many users at all! We've all done some dumb things in the past so we shouldn't judge those who did get it. Sure that is a pretty specific list of things one has to do to get infected (if it's the only way) but we all do dumb things from time to time.
    2014-10-05 09:57 PM
  13. Mr_X's Avatar
    not me
    2014-10-06 07:46 AM
LINK TO POST COPIED TO CLIPBOARD