“Here’s how the malware works. According to Objective-See, the blog where Synack security researcher Patrick Wardle analyzes macOS malware,” Marshall Honorof reports for Tom’s Guide. “Mac users get an email. It includes a Word document called ‘U.S. Allies and Rivals Digest Trump’s Victory — Carnegie Endowment for International Peace.’ But when you click on it, it’s not about Trump.”
“The Word document tells users that it contains macros and that you’ve got to activate them. But the macros don’t do anything in Word; they open up a binary file instead,” Honorof reports. “This launches a function called Fisher, which runs a Python code to download a payload from a site called ‘SecurityChecking.’ But the cybercriminals don’t have an active payload up and running right now, so it’s impossible to tell what kind of malware it might be.”
“If you see a Word file with Donald Trump’s name in it — especially from an email address you don’t know — just ignore it,” Honorof reports. “If you download an Office file and it asks you for permission to run macros, just ignore it, unless you know what the macros do.”
Read more in the full article here.
MacDailyNews Take: Don’t trust email messages, especially those with attachments, from people or entities you do not know. Certainly, don’t run Word macros from them!
Of course it would. Rump supporters use Samsung
Will you libtards get it through your thick skulls:
YOU HAVE NO POWER.
The American people took it away from you.
No, sad bot. The Electoral College elected the Trump, NOT the American people. The Trump LOST that election by around 2.6 MILLION votes. But you don’t care, don’t hear, don’t perceive. So this is for those who actually care about my country’s future.
Definition: TrumpTard
of course I don’t care, I follow the constitution not mob rule, you dipwad.
Yes it infected MDN forums quite a while ago. The virus’ code name is “botvinnik”.
Yes, the “botvinnik” virus is a nasty payload. Based on the name, it also looks like it is a Russian, obviously pro-Trump, virus.
More “double speak.”
No, poor sad bot. The actual term is:
Doublethink
“Double speak” is when people like you talk out of two sides of your mouth at the same time. It’s akin to schizophrenia.
I know that, Derek, it was a dig on our local Duke University English lit major’s”Voice Of Treason” misquote. Try and keep up.
…see the quote marks around the phrase, nincompoop?
The Hilderbeast supporter version has been very successful, they will fall for all kinds of BS!
What do you expect from deplorables?
It’s 2017. People are still opening email attachments from people they don’t know.
Who uses Word on a Mac these days?!
Sadly, a lot. The problem is, what Mac user is ignorant enough to run Word with Macros turned on. Open the gates of malware hell.
Go figure. Mac malware requires… Microsoft.