Rocksolid Light

Welcome to novaBBS (click a section below)

mail  files  register  newsreader  groups  login

Message-ID:  

According to the latest official figures, 43% of all statistics are totally worthless.


computers / comp.sys.mac.misc / New Mac Malware: OSX.WildPressure

SubjectAuthor
* New Mac Malware: OSX.WildPressureDavid Brooks
+- Re: New Mac Malware: OSX.WildPressureYour Name
`- Re: New Mac Malware: OSX.WildPressureShadow

1
New Mac Malware: OSX.WildPressure

<sd8gmn$br2$1@hunterbd.eternal-september.org>

 copy mid

https://www.novabbs.com/computers/article-flat.php?id=398&group=comp.sys.mac.misc#398

 copy link   Newsgroups: comp.sys.mac.system uk.comp.sys.mac comp.sys.mac.misc alt.computer.workshop
Path: i2pn2.org!i2pn.org!eternal-september.org!reader02.eternal-september.org!hunterbd.eternal-september.org!.POSTED!not-for-mail
From: Dav...@nomail.invalid (David Brooks)
Newsgroups: comp.sys.mac.system,uk.comp.sys.mac,comp.sys.mac.misc,alt.computer.workshop
Subject: New Mac Malware: OSX.WildPressure
Date: Wed, 21 Jul 2021 08:00:38 +0100
Organization: A noiseless patient Spider
Lines: 29
Message-ID: <sd8gmn$br2$1@hunterbd.eternal-september.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Date: Wed, 21 Jul 2021 07:00:39 -0000 (UTC)
Injection-Info: hunterbd.eternal-september.org; posting-host="440d3a74cdd9500f1950730af0cac773";
logging-data="12130"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1+ufdYBhSCjzgQKXJP2kQUi"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:78.0)
Gecko/20100101 Thunderbird/78.12.0
Cancel-Lock: sha1:SiCMJXzgRGYhWDMIXMzN+tsTUxM=
Content-Language: en-GB
X-Mozilla-News-Host: news://news.eternal-september.org:119
 by: David Brooks - Wed, 21 Jul 2021 07:00 UTC

Copy/Paste
==========

Unsurprisingly as Macs continue to grow in popularity, so too does
malicious code targeting this platform.

Today, we have a new Mac malware specimen named "WildPressure".

It was discovered by researchers at Kaspersky, who posted a detailed
writeup on the malware: "WildPressure targets the macOS platform" (
https://securelist.com/wildpressure-targets-macos/103072/ ).

Currently the persistent macOS component is not detected by any of the
anti-virus engines on VirusTotal.

More: https://www.patreon.com/posts/53462690

Worried if you're already infected?

You can run KnockKnock, which enumerates persistently installed
software, including the malware!

https://objective-see.com/products/knockknock.html

HTH

--
Regards,
David

Re: New Mac Malware: OSX.WildPressure

<sd8h1h$1tim$2@gioia.aioe.org>

 copy mid

https://www.novabbs.com/computers/article-flat.php?id=399&group=comp.sys.mac.misc#399

 copy link   Newsgroups: comp.sys.mac.misc
Path: i2pn2.org!i2pn.org!aioe.org!iN/pRn3+axQKOaudIdnHFw.user.46.165.242.75.POSTED!not-for-mail
From: YourN...@YourISP.com (Your Name)
Newsgroups: comp.sys.mac.misc
Subject: Re: New Mac Malware: OSX.WildPressure
Date: Wed, 21 Jul 2021 19:06:25 +1200
Organization: Aioe.org NNTP Server
Message-ID: <sd8h1h$1tim$2@gioia.aioe.org>
References: <sd8gmn$br2$1@hunterbd.eternal-september.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1; format=flowed
Content-Transfer-Encoding: 8bit
Injection-Info: gioia.aioe.org; logging-data="63062"; posting-host="iN/pRn3+axQKOaudIdnHFw.user.gioia.aioe.org"; mail-complaints-to="abuse@aioe.org";
User-Agent: Unison/2.2
X-Notice: Filtered by postfilter v. 0.9.2
 by: Your Name - Wed, 21 Jul 2021 07:06 UTC

On 2021-07-21 07:00:38 +0000, David Brooks said:
>
> Copy/Paste
> ==========
>
> Unsurprisingly as Macs continue to grow in popularity, so too does
> malicious code targeting this platform.
>
> Today, we have a new Mac malware specimen named "WildPressure".
>
> It was discovered by researchers at Kaspersky,
<snip>

Gee, what a surprise. The people selling an anti-malware app has
"discovered" a supposed new piece of malware and just had to tell
everyone. :-\

Another theoretical one that yet again won't actually be found on any
Mac in the real world.

Re: New Mac Malware: OSX.WildPressure

<uibgfgpn5imo7tp6ed11o5c9uikfpl1tmv@4ax.com>

 copy mid

https://www.novabbs.com/computers/article-flat.php?id=402&group=comp.sys.mac.misc#402

 copy link   Newsgroups: comp.sys.mac.system uk.comp.sys.mac comp.sys.mac.misc alt.computer.workshop
Path: i2pn2.org!i2pn.org!weretis.net!feeder6.news.weretis.net!4.us.feeder.erje.net!3.eu.feeder.erje.net!feeder.erje.net!newsfeed.xs4all.nl!newsfeed8.news.xs4all.nl!news-out.netnews.com!news.alt.net!fdc2.netnews.com!peer02.ams1!peer.ams1.xlned.com!news.xlned.com!peer03.iad!feed-me.highwinds-media.com!news.highwinds-media.com!spln!extra.newsguy.com!newsp.newsguy.com!news2
From: Sh...@dow.br (Shadow)
Newsgroups: comp.sys.mac.system,uk.comp.sys.mac,comp.sys.mac.misc,alt.computer.workshop
Subject: Re: New Mac Malware: OSX.WildPressure
Date: Wed, 21 Jul 2021 11:27:06 -0300
Organization: A noiseless patient Shadow
Lines: 23
Message-ID: <uibgfgpn5imo7tp6ed11o5c9uikfpl1tmv@4ax.com>
References: <sd8gmn$br2$1@hunterbd.eternal-september.org>
NNTP-Posting-Host: p012daf8785b09b8f85397b974cfd2c2024105c4ede3ea5ac.newsdawg.com
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Newsreader: Forte Agent 3.3/32.846
X-Received-Bytes: 1385
 by: Shadow - Wed, 21 Jul 2021 14:27 UTC

On Wed, 21 Jul 2021 08:00:38 +0100, David Brooks
<DavidB@nomail.invalid> wrote:

>Copy/Paste

Isn't it always?
A little research and a post IN YOUR OWN WORDS works wonders,
or is this ANOTHER phishing trip?

------------------------------------
BD: I want people to "get to know me better. I have nothing to
hide".
I'm always here to help, this page was put up at BD's request,
rather, he said "Do it *NOW*!":

<https://tekrider.net/pages/david-brooks-stalker.php>

86 confirmed #FAKE_NYMS, most used in cybercrimes!
Google "David Brooks Devon"
[]'s
--
Don't be evil - Google 2004
We have a new policy - Google 2012

1
server_pubkey.txt

rocksolid light 0.9.7
clearnet tor