Dridex targets Macs

AppleInsider might earn an affiliate fee on purchases made by way of hyperlinks on our web site.

Safety researchers at Pattern Micro stated on Thursday that the malware beforehand focused Home windows, however now the cybercriminals have modified their technique to go after macOS.

The Dridex malware pattern Pattern Micro analyzed takes the type of a Mach-O file, an executable file that may run on macOS and iOS. File extensions they use embrace .o, .dylib, and .bundle.

The Mach-O file incorporates a malicious doc that runs mechanically as soon as a consumer opens it. It then overwrites all Microsoft Phrase recordsdata within the macOS consumer listing and contacts a distant server to obtain extra recordsdata, together with a Home windows executable file (.exe) that runs the Dridex malware.

These executables cannot run on macOS. However, if a consumer’s Phrase recordsdata are overwritten with malicious variations, Mac customers might unwittingly infect others once they share the recordsdata on-line.

For now, Mac customers are protected from the Dridex malware. Pattern Micro says it is potential that attackers might modify it to run on macOS sooner or later.

Before everything, with Dridex, the easiest way to guard your self is to not open attachments the place the provenance is unclear. Verify who the sender is, not simply by the displayed title of the sender, but in addition the e-mail deal with.

For example, your bank card firm will not ship you a receipt from a Gmail account.

Apple consists of safety instruments resembling Gatekeeper and the XProtect antivirus software program which might be constructed into macOS. Customers may also select to obtain antivirus software program from a third-party firm.

A web-based instrument known as VirusTotal can scan URLs and recordsdata that individuals add and detect if it incorporates malware. For instance, if an electronic mail has a Microsoft Phrase doc or a Mach-O file as an attachment, it could be a good suggestion to scan it with the web site.

AppleInsider will likely be protecting the 2023 Client Electronics Present in individual on January 2 by way of January 8 the place we’re anticipating Wi-Fi 6e units, HomeKit, Apple equipment, 8K displays and extra. Sustain with our protection by downloading the AppleInsider app, and comply with us on YouTube, Twitter @appleinsider and Fb for stay, late-breaking protection. You can too take a look at our official Instagram account for unique photographs all through the occasion.