macOS malware

macOS malware includes viruses, trojan horses, worms and other types of malware that affect macOS, Apple's current operating system for Macintosh computers. macOS (previously Mac OS X and OS X) is said to rarely suffer malware or virus attacks,^[1] and has been considered less vulnerable than Windows.^[2] There is a frequent release of system software updates to resolve vulnerabilities. Utilities are also available to find and remove malware.^[1]

History[]

Early examples of macOS malware include Leap (discovered in 2006, also known as Oompa-Loompa) and RSPlug (discovered in 2007).

An application called MacSweeper (2009) misled users about malware threats in order to take their credit card details.

The trojan MacDefender (2011) used a similar tactic, combined with displaying popups.

In 2012, a worm known as Flashback appeared. Initially, it infected computers through fake Adobe Flash Player install prompts, but it later exploited a vulnerability in Java to install itself without user intervention. The malware forced Oracle and Apple to release bug fixes for Java to remove the vulnerability.

Bit9 and Carbon Black reported at the end of 2015 that Mac malware had been more prolific that year than ever before, including:^[2]

Lamadai – Java vulnerability^[3]
Appetite – Trojan horse targeting government organizations
Coin Thief – Stole bitcoin login credentials through cracked Angry Birds applications

A trojan known as Keydnap first appeared in 2016, which placed a backdoor on victims' computers.

Adware is also a problem on the Mac, with software like Genieo, which was released in 2009, inserting ads into webpages and changing users' homepage and search engine.

Malware has also been spread on Macs through Microsoft Word macros.

Ransomware[]

In March 2016 Apple shut down the first ransomware attack targeted against Mac users, encrypting the user's confidential information.^[4] It was known as KeRanger. After completing the encryption process, KeRanger demanded that victims pay one bitcoin (about US$400 at the time, about US$51,801.90 as of February 18, 2021) for the user to recover their credentials.^[5]

References[]

^ ^a ^b "Mac OS X Malware details". Retrieved 2015-03-12.
^ ^a ^b "2015 Mac OS X Malware". Retrieved 2016-03-21.
^ "Lamadai Mac Operating System Attack". Retrieved 2016-03-21.
^ "Mac OS X Attack March 2016". Retrieved 2016-03-07.
^ "Apple Shuts down First ever ransomware". Retrieved 2016-03-07.

This malware-related article is a stub. You can help Wikipedia by .

[macworld-1] "Mac OS X Malware details". Retrieved 2015-03-12.

[bgr-2] "2015 Mac OS X Malware". Retrieved 2016-03-21.

[3] "Lamadai Mac Operating System Attack". Retrieved 2016-03-21.

[4] "Mac OS X Attack March 2016". Retrieved 2016-03-07.

[5] "Apple Shuts down First ever ransomware". Retrieved 2016-03-07.

[1]

[2]

[3]

[4]

[5]

v t Malware topics
Infectious malware	Comparison of computer viruses Computer virus Computer worm List of computer worms Timeline of computer viruses and worms
Concealment	Backdoor Clickjacking Man-in-the-browser Man-in-the-middle Rootkit Trojan horse Zombie computer
Malware for profit	Adware Botnet Crimeware Fleeceware Form grabbing Fraudulent dialer Malbot Keystroke logging Privacy-invasive software Ransomware Rogue security software Scareware Spyware Web threats
By operating system	Android malware Classic Mac OS viruses iOS malware Linux malware MacOS malware Macro virus Mobile malware Palm OS viruses HyperCard viruses
Protection	Anti-keylogger Antivirus software Browser security Data loss prevention software Defensive computing Firewall Internet security Intrusion detection system Mobile security Network security
Countermeasures	Computer and network surveillance Honeypot Operation: Bot Roast

v t Software distribution
Licenses	Beerware Floating licensing Free and open-source Free Open source Freely redistributable Proprietary Public domain Source-available
Compensation models	Adware Commercial software Retail software Crippleware Crowdfunding Freemium Freeware Pay what you want Careware Donationware Open-core model Postcardware Shareware Nagware
Delivery methods	Digital distribution File sharing On-premises Pre-installed Product bundling Retail software Sneakernet Software as a service
Deceptive and/or illicit	Unwanted software bundling Malware Spyware Trojan horse Worm Ransomware Scareware Shovelware Vaporware list
Software release life cycle	Abandonware End-of-life Long-term support Software maintenance Software maintainer Software publisher
Copy protection	Digital rights management Software protection dongle Hardware restrictions License manager Product activation Product key Software copyright Software patent Torrent poisoning