Explore the latest news and trends  

Sign up for our weekly security newsletter


Be the first to receive important updates on security





Send

Trojan Komplex a Fresh Malware for Mac OS X


Researchers from Palo Alto Networks the security company recently discovered one fresh malware created for Mac OS X which seemingly attacks the aerospace sector. Known as Komplex, the malicious program, a Trojan virus, is capable of downloading, running as well as deleting files saved on the infected Mac. Incidentally, the Trojan relates itself with Russia's space program by planting a PDF file concerning it on the infected computer.

Intelligence Director Ryan Olson at Palo Alto Networks' Unit 42 explains that as the victim follows the web-link or views the file, one decoy document containing an icon that looks like a PDF emerges. The malware uses socially-engineered tactics and abuses a much familiar security flaw within security software named MacKeeper for acquiring admission into PCs.

Olson further explains that Komplex controller group called 'Fancy Bear," "Pawn Storm" and "Sofacy" understandably is responsible for the assaults resulting in seizure and leakage of research documents and e-mails of DNC. The group, understandably, also invaded the systems of European and NATO military organizations.

Further, Trojan Komplex being a creation of Sofacy and employed for attacking OS X of Mac computers showcases the group's persistent evolution in carrying out multi-platform assaults, Olson states. Theregister.co.uk posted this, September 27, 2016.

The Komplex tainted e-mails have a file attached which binds the executable's payload in encrypted form and also contains PDF and scripts. Opening this file attachment gives an impression to the user that he's merely clicking on a PDF file. Victims' suspicion is further lowered with Komplex installing one PDF document of 17 pages on the target Mac system.

Moreover, there are dual Internet domains which Komplex utilizes- itunes-helper.net and apple-iclouds.net, which bear connection with other Internet assaults by the Russia-situated hackers' gang.

Lately, Fancy Bear was condemned for attacking more refined targets, albeit locating the real hackers executing any of the attacks can be hard. However, Fancy Bear has been designated an extremely well hacking team worldwide.

Palo Alto stated while it didn't know what number of computers Trojan Komplex infected; it also didn't believe why it should think the malware was part of an assault occurring widely.

» SPAMfighter News - 9/30/2016

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!

Go back to previous page
Next