Apple/Mac Users, Beware: Ransomware Attack Reveals Security Risk

Photo (cc) by wseltzer

You’re going to see a lot of headlines about a nasty ransomware program named KeRanger that tries to extort Apple/Mac users by encrypting their files and charging ransom for the unscrambling key. Infected users must pay the virus creators today or risk losing use of their data. Here’s what you need to know: The threat to you is almost certainly quite small, unless you believe Mac users are immune from this kind of thing. If that’s the case, the threat to you today is still quite small, but tomorrow …. I’d be worried.

First, who has to worry about KeRanger? At the moment, it appears the only users at risk are BitTorrent users who downloaded (and later installed) the “Transmission” torrent client from its official website after 11 a.m. PST on Friday and before 7 p.m. PST on Saturday. Those who installed anytime recently from a third-party site are also at risk. If you are one of those people, you probably know who you are. (Here’s a link to the Palo Alto Networks information page with instructions on how to find and remove KeRanger.)

As a subgroup of a subgroup, the number of real infections is probably quite low, and statistics posted by F-Secure’s Mikko Hypponen bear that out. At the moment, KeRanger isn’t among the most populous ransomware programs detected by F-Secure.

What’s the real threat from KeRanger? Complacency.

Mac OS users — Apple product users in general — have for a long time enjoyed what was undoubtedly a safer, more protected platform than that provided by competitors like Microsoft or Google. Apple keeps tighter control of the software that can run on its products, which is both a blessing and a curse. Essentially, Apple must bless all software from third parties before it can be installed on Apple products. That’s great, until it’s not.

Two things happened to make KeRanger a reality. First, the attackers somehow intercepted users trying to install the Transmission app and substituted their own booby-trapped, look-alike software — probably by hacking the download site. Second, and much more important, the attackers somehow obtained a digital certificate issued by Apple — the blessing — that the rogue software was safe. Without that certificate, the software would not have been installed on victims’ computers.

Now that the malware has been discovered, Apple has revoked that certificate and the danger for new consumers has been mitigated, because the software generally can’t be installed.

But criminals were able to get around Apple’s certificate process, which is really important. It will happen again.

Mac and iPhone users have long enjoyed the comfort of knowing that software they install on their computers is (probably) safe, because Apple is watching out for them. That’s still true, but if your confidence is shaken by this story, good. Criminals are almost certainly coming for you, warns Hypponen.

“Mac finally seems to have large enough market share so that ransom malware gangs feel like it’s worth their time to target it,” he wrote about the attack.

Third-party verification is a critical element of software security; fake third-party verification is a critical trick in a hacker’s toolbox. Criminals who want to attack Mac users have now shown, in the real world, that they can create malicious software that Apple “blesses” for installation. Most Internet consumers are smart enough to avoid installing random software from random places no matter what platform they use. But to be attacked when installing software from a known source that is approved by Apple? Well, that’s a pretty effective attack.

It should be obvious that this is an unavoidable problem of having a central authority that approves software (or anything). One scary reality of TSA Pre-check at an airport, for example, is that it works great until someone who wants to do harm gets approved for travel by TSA Pre-check. That would give the attackers carte blanche at any airport security checkpoint.

Certificate-based attacks have been around for a long, long time. Here’s a 2002 story (that’s 14 years ago) about VeriSign being tricked into issuing certificates in the name of Microsoft.

More recently, it’s obvious criminals are sniffing around the Apple app certificate ecosystem; here’s word of an attack last fall that managed to install software on iPhones tricking Apple’s program that allows corporations to issue third-party certificates for apps.

It’s important to note that, by all accounts, Apple has cleaned up this mess with great speed and effectiveness. But heed Hypponen’s warnings, Mac users. The criminals are coming. And now we know they have some way of getting around Apple’s certificate process. Choose your downloads carefully.

Disclosure: The information you read here is always objective. However, we sometimes receive compensation when you click links within our stories.

Read Next
10 Places Where Social Security Offers the Best Standard of Living
10 Places Where Social Security Offers the Best Standard of Living

These U.S. counties offer retirees a chance to stretch their benefit checks while enjoying their golden years.

14 Uses for WD-40 That Save Money, Time or Headaches
14 Uses for WD-40 That Save Money, Time or Headaches

WD-40 is handy in a lot more situations than you likely realize.

Watch This: Organize Your Home With Dollar Tree Products
Watch This: Organize Your Home With Dollar Tree Products

Here’s how to organize every corner of your home using only items from a dollar store.

Cut These 11 Expenses Now If You Hope to Retire Early
Cut These 11 Expenses Now If You Hope to Retire Early

Like the idea of financial independence? Part of the FIRE equation is cutting costs.

5 Home Improvements That Help You ‘Age in Place’
5 Home Improvements That Help You ‘Age in Place’

These safety-conscious home upgrades can help retirees stay in their home.

View this page without ads

Help us produce more money-saving articles and videos by subscribing to a membership.

Get Started

Most Popular
11 Things Retirees Should Always Buy at Costco
11 Things Retirees Should Always Buy at Costco

This leader in bulk shopping is a great place to find discounts in the fixed-income years.

Over 50? The CDC Says You Need These 4 Vaccines
Over 50? The CDC Says You Need These 4 Vaccines

Fall is the time to schedule vaccines that can keep you healthy — and even save your life.

9 Things You’ll Never See at Costco Again
9 Things You’ll Never See at Costco Again

The warehouse store offers an enormous selection, but these products aren’t coming back.

11 Senior Discounts for Anyone Age 55 or Older
11 Senior Discounts for Anyone Age 55 or Older

There is no need to wait until you’re 65 to take advantage of so-called “senior” discounts.

8 Things You Can Get for Free at Pharmacies
8 Things You Can Get for Free at Pharmacies

In this age of higher-priced drugs and complex health care systems, a trip to the pharmacy can spark worry. Freebies sure do help.

These Are the 4 Best Medicare Advantage Plans for 2020
These Are the 4 Best Medicare Advantage Plans for 2020

Medicare Advantage customers themselves rate these plans highest.

The 10 Most Commonly Stolen Vehicles in America
The 10 Most Commonly Stolen Vehicles in America

A new model parks atop the list of vehicles that thieves love to pilfer.

7 Ways to Boost Your Credit Score Fast
7 Ways to Boost Your Credit Score Fast

Your financial security might soon depend upon the strength of your credit score.

11 Household Items That Go Bad — or Become Dangerous
11 Household Items That Go Bad — or Become Dangerous

When you get the impulse to stockpile these everyday items, pay close attention to their expiration dates.

19 High-Paying Jobs You Can Get With a 2-Year Degree
19 High-Paying Jobs You Can Get With a 2-Year Degree

These jobs pay more than the typical job in the U.S. — and no bachelor’s degree is required.

5 Ways to Get Amazon Prime for Free
5 Ways to Get Amazon Prime for Free

Hesitant to drop $119 a year on an Amazon Prime membership? Here’s how to get it for free.

10 Reasons Why You Should Actually Retire at 62
10 Reasons Why You Should Actually Retire at 62

If you can, here are several good reasons to retire earlier than we’re told to.

3 Ways to Get Microsoft Office for Free
3 Ways to Get Microsoft Office for Free

With a little ingenuity, you can cut Office costs to zero.

14 Things That Are ‘Free’ With Medicare
14 Things That Are ‘Free’ With Medicare

These services could save you money and help prevent costly health problems.

5 Keys to Making Your Car Last for 200,000 Miles
5 Keys to Making Your Car Last for 200,000 Miles

Pushing your car to 200,000 miles — and beyond — can save you piles of cash. Here’s how to get there.

26 States That Do Not Tax Social Security Income
26 States That Do Not Tax Social Security Income

These states won’t tax any of your Social Security income — and in some cases, other types of retirement income.

5 Things That Make Life More Meaningful for Retirees
5 Things That Make Life More Meaningful for Retirees

Retirees agree: These are the things that give them purpose and fulfillment in their golden years.

10 Things You Should Never Do With Bleach
10 Things You Should Never Do With Bleach

Does the pandemic have you reaching for bleach more than ever before? Learn the ins and outs of using this powerful disinfectant.

15 Amazon Purchases That We Are Loving Right Now
15 Amazon Purchases That We Are Loving Right Now

These practical products make everyday life a little easier.

View More Articles

View this page without ads

Help us produce more money-saving articles and videos by subscribing to a membership.

Get Started

Add a Comment

Our Policy: We welcome relevant and respectful comments in order to foster healthy and informative discussions. All other comments may be removed. Comments with links are automatically held for moderation.