Fixed iTunes and iCloud for Windows flaw that corrected malware

New ransomware for macOS is distributed via pirated apps

Apple fixed a serious flaw in the iTunes It’s from iCloud for Windows that made it possible to install ransomwares on PCs, as reported by Forbes. Ransomware, if you don’t know, is a type of malicious software that makes data stored on a machine inaccessible, usually through encryption. In this way, the hacker requires a «ransom» payment to re-establish user access.

The breach is the result of an unspecified flaw in Bonjour (Apple’s protocol that packages some of its software to install it on PCs) and basically allowed the malware to run on Windows, which identified it as a trusted app.

Such malware took advantage of the Apple certificate, provided by Bonjour, to go unnoticed by Windows – that is, both the user and the operating system believe that the software was developed by Apple. THE Morphisec, the security company that discovered the flaw, explained that the malware BitPaymer was using this attack scheme to infect systems.

When the flaw is in a trusted program – like those digitally signed by a developer known as Apple – attackers can exploit it to make the software run code that virus protection cannot flag as suspicious.

Users who previously uninstalled iTunes and iCloud from Windows are not necessarily out of danger. As everything is part of Bonjour, the tool must be removed separately, otherwise this route of contamination will remain open.

Morphisec waited for Apple to fix the bug so that it could detail it and found that BitPaymer is relatively recent, having been first seen in attacks on hospitals, universities and government agencies. In one case, the attackers demanded a ransom of 70 Bitcoins (about $ 570,000).

The fix is ​​now available in version 12.10.1 of iTunes and 7.14 of iCloud for Windows.

via 9to5Mac

Back to top button

Ad blocker detected

You must remove the AD BLOCKER to continue using our website THANK YOU