macOS hit by 'MaMi' malware
By MYBRANDBOOK
Way back in 2012, we faced DNSChanger malware which affected millions of Windows PCs and in the first week of 2018 we have observed the emergence of a DNSChanger malware for MacOS. The threat was first discovered by Patrick Wardel and has been named as MaMi.
Similar to DNSChanger, MaMi's infection vector involves various recently registered domains from where it is downloaded and subsequently installed. Post infection, MaMi forcibly changes the DNS entry and also installs a root certificate. Furthermore, it is highly persistent and reverts back to malicious DNS entries, when victims manually try to change it.
Previously, there existed another malware which infected windows Systems "DNSUnlocker" incidentally used the same subnet. Furthermore, the root certificates which are installed on the victim’s systems too are similar.
How does MaMi function?
* Installs a local certificate – Installation of root certificate allows the threat to perform an effective MITM attack, which may range from stealing logon credentials to ad insertions.
* Set up custom DNS settings – The DNS IP added by MaMi are under the control of the criminals and they may resolve every request by the victims and redirect them to malicious domains or advertisements controlled by the criminals.
* Take screenshots – of the desktop
* Run AppleScripts – Ability to execute script allows the Trojan to execute tasks, as per the defined payload
* Get OS launch persistence – At system start-up load itself
* Download and upload files – Allows to steal sensitive files and in all probability download additional modules / scripts
BHIM to join e-commerce, competing with PhonePe and Google Pay
The government-supported payment software BHIM is getting ready to join t...
The latest version of X helps prevent deepfakes on social medi
To combat deepfakes and shallowfakes, Elon Musk revealed a new update t...
India and Namibia collaborate on a payment system similar to U
Once operational, the platform will enable digital transactions in Namibia,...
Sebi issues show-cause notices to six Adani group firms
Sebi issued show-cause notices to six Adani Group firms, including Adani ...
TAC SECURITY SOLUTIONS
AGGRESSIVE ELECTRONICS MANUFACTURING SERVICES PVT. LTD.
MATRIX COMSEC PVT. LTD.
SAFE SECURITY SERVICES PVT. LTD.
Technology Icons Of India 2023: Kulmeet Bawa
Kulmeet Bawa resides as President & Managing Director, SAP Indian subc...
Technology Icons Of India 2023: Rajendra Singh Pawar
Rajendra Singh Pawar is an entrepreneur and businessperson who founded...
Technology Icons Of India 2023: Anant Maheshwari
As President of Microsoft India, he is responsible for Microsoft’s o...
ITI Limited widening its focus area
ITI Limited is a public sector undertaking company, has manufacturing ...
INDIANOIL helps reach precious petroleum fuels to every nook and corner of the country
IndianOil, a diversified, integrated energy major with presence in alm...
ECIL continues to keep India ahead in the growth of Information Technology and Electronics
ECIL played a very significant role in the training and growth of high...
RAH INFOTECH
RAH Infotech is India’s fastest growing technology value added dist...
INTEGRA MICRO SYSTEMS PVT. LTD.
Integra is a leading provider of innovative hi-technology products an...
R P TECH INDIA
R P Tech is recognized for its diverse products portfolio, value-add...