Subscribe / Unsubscribe Enewsletters | Login | Register

Pencil Banner

Researchers find more versions of digitally signed Mac OS X spyware

Lucian Constantin | May 27, 2013
The malware is connected to Indian cyberespioange operation and has been active since at least December 2012, researchers say.

Apple could use another malware protection feature called XProtect to blacklist the known KitM binary files. However, other versions that haven't been discovered yet might exist.

In order to prevent the execution of any digitally signed malware file on their computers, Mac users could modify the Gatekeeper security settings to only allow applications downloaded from the Mac App Store to be installed, security researchers from F-Secure said.

However, this setting would be inconvenient for users in corporate environments, who need to run custom software developed in-house, Botezatu said. Such custom applications are intended for internal use only and are not published on the Mac App Store, so a more restrictive Gatekeeper setting would likely complicate their deployment process, he said.

 

Previous Page  1  2 

Sign up for CIO Asia eNewsletters.