However, there is still a slight chance of someone downloading Snake by accident if they've found it through dubious channels.
It's important to note that Apple has already revoked this fake or stolen developer certificate, so Gatekeeper will block it. VPN Deals: Lifetime license for $16, monthly plans at $1 & more Similar to the Dok trojan that we heard about earlier this week, Snake popped up with an authenticated developer certificate, which means the Mac's built-in security system, Gatekeeper, would consider it legit and allow the installation process to complete. Now, Fox-IT has identified a version of Snake targeting Mac OS X.Īs this version contains debug functionalities and was signed on February 21st, 2017 it is likely that the OS X version of Snake is not yet operational.įox-IT expects that the attackers using Snake will soon use the Mac OS X variant on targets. Its certificate has already been revoked by Apple, but it's good to be aware of your enemies.Īccording to Fox-IT, Snake, a malware framework that has been infecting Windows software since 2008, and more recently Linux, is now targeting Mac. Once permission is granted, it hides itself deep inside macOS folders. The exploit appears as an Adobe Flash Player installer.
A decade-old Windows malware trojan wormed its way into the macOS ecosystem, complete with a signed (likely stolen) Apple developer certificate.
