Multinational technology company and world's most valuable company, Apple, unknowingly approved a malware that injects advertisements on its Mac Operating System (MacOS) browser until a college student reported it to them. Apple's promise of a safe environment in their computers just had its security checked.
Apple has made a virus or malware-free environment on their macOS compatible PCs and laptops since its release. The technology company promised a user-friendly environment with nothing to worry about, tightening down on its security features from foreign malicious objects that aim to attack.
However, Apple recently had a problem in these kinds of attack with the accidental approval of the 'Shlayer' malware that inserts itself on browsers installed on the Macs, prompting an array of annoying advertisements popping-up almost every time.
According to Wired, Apple began to notarize all software they release and even third-parties to strengthen their systems more and track down all that comes into the macOS. Apple has been doing this since February, and unknowingly, a malware slipped right under their noses and was even notarized.
College Student's Discovery of Mac Malware
The malicious malware was spotted by a college student, Peter Dantini, who was browsing his Mac-enabled device. The version he saw was notarized on Apple and is roaming freely on his device. Dantini is scanning the renowned Mac open-source developer tool called Homebrew.
The college student incorrectly typed the URL of Homebrew, brew.sh, and its engagement began when he was redirected to a website that prompt users a free Adobe Flash page update. These pages are presumed to be fake and will engage in more adware and malware to be installed on the Mac devices.
Dantini reportedly downloaded some out of sheer curiosity with the macOS warning about the payload. Warnings and such did not stop the college student from downloading the item and did not even block him despite its harmful state. This is a surprise for Mac users because Apple does not allow to continue these warned programs from being downloaded.
This event goes to show that it is trusted and notarized by the operating system without Apple knowing so.
Report to macOS Security Researcher
Dantini reported this phenomenon to a macOS security researcher, Patrick Wardle, who was then surprised at how simple adware penetrated Apple's devices. Wardle explained that Apple's macOS would have blocked those kinds of installation from untrusted software, but the fact that it was allowed, means it was notarized.
Wardle reported this to Apple on August 28, and the company took care of the problem by revoking Shlayer's notary certifications. Apple's move would now ensure users to a safer environment in the Mac devices by preventing all future downloads of the adware.
Adware: The Dangers and Knowledge Behind
Adwares are a type of malware that pops-up and prompts users to see advertisements, mainly concerned with gathering funds or money-making for selected companies who sponsor them. However, adware become threats to users when it prompts to download a promising software or program but delivers a different kind of product.
Here users will have their desktop flooded with all the annoying advertisements that are potentially unsafe to the computer and the device. Kaspersky says that there are different kinds of adware and some are safe, just in the money-generating business of ad campaigns.
Manipulators took advantage of the adware and inserted their harmful malware in them to deceive people and take something of theirs once the program is installed. The public is advised to only download and install from trusted developers and distributors to avoid harm.
ALSO READ: Zoom Hits 458% Revenue Jump Despite Previous Security Threats: Highest Record Ever
This article is owned by Tech Times
Written by Isaiah Alonzo