Rocksolid Light

Welcome to RetroBBS

mail  files  register  newsreader  groups  login

Message-ID:  

19 May, 2024: Line wrapping has been changed to be more consistent with Usenet standards.
 If you find that it is broken please let me know here rocksolid.nodes.help

computers / comp.sys.mac.system / Re: New Mac Malware: OSX.WildPressure

SubjectAuthor
* New Mac Malware: OSX.WildPressureDavid Brooks
`- Re: New Mac Malware: OSX.WildPressureShadow

1
New Mac Malware: OSX.WildPressure

<sd8gmn$br2$1@hunterbd.eternal-september.org>

  copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=12538&group=comp.sys.mac.system#12538

  copy link   Newsgroups: comp.sys.mac.system uk.comp.sys.mac comp.sys.mac.misc alt.computer.workshop
Path: i2pn2.org!i2pn.org!eternal-september.org!reader02.eternal-september.org!hunterbd.eternal-september.org!.POSTED!not-for-mail
From: DavidB@nomail.invalid (David Brooks)
Newsgroups: comp.sys.mac.system,uk.comp.sys.mac,comp.sys.mac.misc,alt.computer.workshop
Subject: New Mac Malware: OSX.WildPressure
Date: Wed, 21 Jul 2021 08:00:38 +0100
Organization: A noiseless patient Spider
Lines: 29
Message-ID: <sd8gmn$br2$1@hunterbd.eternal-september.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=utf-8; format=flowed
Content-Transfer-Encoding: 7bit
Injection-Date: Wed, 21 Jul 2021 07:00:39 -0000 (UTC)
Injection-Info: hunterbd.eternal-september.org; posting-host="440d3a74cdd9500f1950730af0cac773";
logging-data="12130"; mail-complaints-to="abuse@eternal-september.org"; posting-account="U2FsdGVkX1+ufdYBhSCjzgQKXJP2kQUi"
User-Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:78.0)
Gecko/20100101 Thunderbird/78.12.0
Cancel-Lock: sha1:SiCMJXzgRGYhWDMIXMzN+tsTUxM=
Content-Language: en-GB
X-Mozilla-News-Host: news://news.eternal-september.org:119
 by: David Brooks - Wed, 21 Jul 2021 07:00 UTC

Copy/Paste
==========

Unsurprisingly as Macs continue to grow in popularity, so too does
malicious code targeting this platform.

Today, we have a new Mac malware specimen named "WildPressure".

It was discovered by researchers at Kaspersky, who posted a detailed
writeup on the malware: "WildPressure targets the macOS platform" (
https://securelist.com/wildpressure-targets-macos/103072/ ).

Currently the persistent macOS component is not detected by any of the
anti-virus engines on VirusTotal.

More: https://www.patreon.com/posts/53462690

Worried if you're already infected?

You can run KnockKnock, which enumerates persistently installed
software, including the malware!

https://objective-see.com/products/knockknock.html

HTH

--
Regards,
David

Re: New Mac Malware: OSX.WildPressure

<uibgfgpn5imo7tp6ed11o5c9uikfpl1tmv@4ax.com>

  copy mid

https://www.rocksolidbbs.com/computers/article-flat.php?id=12539&group=comp.sys.mac.system#12539

  copy link   Newsgroups: comp.sys.mac.system uk.comp.sys.mac comp.sys.mac.misc alt.computer.workshop
Path: i2pn2.org!i2pn.org!weretis.net!feeder6.news.weretis.net!4.us.feeder.erje.net!3.eu.feeder.erje.net!feeder.erje.net!newsfeed.xs4all.nl!newsfeed8.news.xs4all.nl!news-out.netnews.com!news.alt.net!fdc2.netnews.com!peer02.ams1!peer.ams1.xlned.com!news.xlned.com!peer03.iad!feed-me.highwinds-media.com!news.highwinds-media.com!spln!extra.newsguy.com!newsp.newsguy.com!news2
From: Sh@dow.br (Shadow)
Newsgroups: comp.sys.mac.system,uk.comp.sys.mac,comp.sys.mac.misc,alt.computer.workshop
Subject: Re: New Mac Malware: OSX.WildPressure
Date: Wed, 21 Jul 2021 11:27:06 -0300
Organization: A noiseless patient Shadow
Lines: 23
Message-ID: <uibgfgpn5imo7tp6ed11o5c9uikfpl1tmv@4ax.com>
References: <sd8gmn$br2$1@hunterbd.eternal-september.org>
NNTP-Posting-Host: p012daf8785b09b8f85397b974cfd2c2024105c4ede3ea5ac.newsdawg.com
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Newsreader: Forte Agent 3.3/32.846
X-Received-Bytes: 1385
 by: Shadow - Wed, 21 Jul 2021 14:27 UTC

On Wed, 21 Jul 2021 08:00:38 +0100, David Brooks
<DavidB@nomail.invalid> wrote:

>Copy/Paste

Isn't it always?
A little research and a post IN YOUR OWN WORDS works wonders,
or is this ANOTHER phishing trip?

------------------------------------
BD: I want people to "get to know me better. I have nothing to
hide".
I'm always here to help, this page was put up at BD's request,
rather, he said "Do it *NOW*!":

<https://tekrider.net/pages/david-brooks-stalker.php>

86 confirmed #FAKE_NYMS, most used in cybercrimes!
Google "David Brooks Devon"
[]'s
--
Don't be evil - Google 2004
We have a new policy - Google 2012

computers / comp.sys.mac.system / Re: New Mac Malware: OSX.WildPressure

1
server_pubkey.txt

rocksolid light 0.9.81
clearnet tor