Tech
Mysterious Malware has infected 30000 M1-Based Macs Worldwide with concentrations in the US, UK, Canada, France, and Germany – Patently Apple
A previously undetected piece of malware has been discovered on almost 30,000 Macs worldwide according to a new research report. It’s generating intrigue in security circles, which are still trying to understand precisely what it does and what purpose its self-destruct capability serves.
Once an hour, infected Macs check a control server to see if there are any new commands the malware should run or binaries to execute. So far, however, researchers have yet to observe delivery of any payload on any of the infected 30,000 machines, leaving the malware’s ultimate goal unknown. The lack of a final payload suggests that the malware may spring into action once an unknown condition is met.
Also curious, the malware comes with a mechanism to completely remove itself, a capability that’s typically reserved for high-stealth operations. So far, though, there are no signs the self-destruct feature has been used, raising the question why the mechanism exists.
Besides those questions, the malware is notable for a version that runs natively on the M1 chip that Apple introduced in November, making it only the second known piece of macOS malware to do so. The malicious binary is more mysterious still, because it uses the macOS Installer JavaScript API to execute commands. That makes it hard to analyze installation package contents or the way that package uses the JavaScript commands.
The malware has been found in 153 countries with detections concentrated in the US, UK, Canada, France, and Germany. Its use of Amazon Web Services and the Akamai content delivery network ensures the command infrastructure works reliably and also makes blocking the servers harder. Researchers from Red Canary, the security firm that discovered the malware, are calling the malware Silver Sparrow.
Red Canary researchers wrote in a blog post published on Friday: “Though we haven’t observed Silver Sparrow delivering additional malicious payloads yet, its forward-looking M1 chip compatibility, global reach, relatively high infection rate, and operational maturity suggest Silver Sparrow is a reasonably serious threat, uniquely positioned to deliver a potentially impactful payload at a moment’s notice. Given these causes for concern, in the spirit of transparency, we wanted to share everything we know with the broader infosec industry sooner rather than later.”
Patrick Wardle, a macOS security expert, wrote in an Internet message: “To me, the most notable [thing] is that it was found on almost 30K macOS endpoints… and these are only endpoints the MalwareBytes can see, so the number is likely way higher. That’s pretty widespread… and yet again shows the macOS malware is becoming ever more pervasive and commonplace, despite Apple’s best efforts.”
For those who want to check if their Mac has been infected, Red Canary provides indicators of compromise at the end of its report. Source: Ars Technica
Apple’s M1 processor has created equal buzz and fear in the traditional PC market. Intel’s campaign against Apple new M1 processor has been ongoing and now an attack with malware for the new processor that seems to be waiting for more M1’s to infect over time before delivering its payload. The mystery payload could slow sales of M1 Macs until this has been dealt with. The faster Apple deals with this, the better.
Facebook parent company Meta today announced the upcoming expansion of Meta Horizon OS, a virtual and augmented reality operating system that will be available to third-party hardware manufacturers that want to design their own headsets.
Right now, Meta sells the Quest line of headsets, but the company wants to provide the software for third-party VR and AR products in the future, much like Microsoft offers Windows for all manner of third-party PCs.
Meta Horizon OS is the mixed reality operating system that Meta created for its own Quest headsets, and it has support for eye, face, hand, and body tracking along with passthrough, spatial anchors, scene understanding, and other features. There is a “social layer” that will allow the identities, avatars, and friends of users to move between virtual spaces on different devices.
According to Meta, multiple companies are working on devices that will use Meta Horizon OS. ASUS ROG is developing a performance gaming headset and Lenovo is working on mixed reality devices for productivity, learning, and entertainment. Meta says that it is also creating a limited edition version of Meta Quest in partnership with Xbox.
With the expansion of Meta Horizon OS to third-party hardware manufacturers, Meta is making it easier for any developer to ship VR software on the platform by removing barriers between the Horizon Store and App Lab.
By creating an operating system that can be used by other hardware manufacturers, Meta is inserting itself into the growing AR/VR ecosystem and creating opportunities for it to outpace Apple in mixed reality development. Apple launched the Vision Pro headset earlier this year, but software is lacking given the high price and limited distribution of the device.
According to a report from earlier today, interest in the Vision Pro is already waning at Apple’s retail locations with fewer people requesting demos.
There have been more launches in the past two weeks than any other two-week period I can remember since I started sweeping floors at Freedom Bike Shop back in 2001. Yes, that means I’m very old. It also means that after several years of delayed product releases, some brands have finally cleared out enough inventory to share what they’ve been working on.
The Pinkbike team came down to Sea Otter this year with mixed expectations, and there were definitely some weird vibes. Everyone is concerned for the remaining Kona employees, and more than one brand expressed that their plan is to #surviveto2025. But overall we loved catching up with everyone, the weather was great, and somehow there was even more gear to cover. The industry might be going through a tough time, but ultimately riding bikes is still ridiculously fun and bike tech is as interesting as ever.
And on that note, here are a few of the random things that caught my eye during the show.
OutsideBrendan works smarter not harder, and dog Bubbie(?) is awesome.
I mistakenly thought it was a garage project kind of thing, but it’s a real brand with a promo video and everything.
And with that, it’s time to face my expense report. Until next year, Sea Otter!
Reviews and recommendations are unbiased and products are independently selected. Postmedia may earn an affiliate commission from purchases made through links on this page.
Article content
Skin Caviar Eye Lift Serum
They say: A luxury serum that firms, smooths and lifts the eye area. The dual-chamber product features the Swiss skin-care brand’s Cellular Complex to ‘restore youthfulness to the eye contour,’ along with a blend of caviar components.
We say: Our tester applied one pump of this serum to the eye area daily. Gently dabbed onto skin, the serum gave an instant boost of hydration. The liquid-serum formula was lightweight and non-sticky, providing an easy base for any additional skin-care or makeup products. With use, our tester reported fine lines and firmness were noticeably improved.
Article content
$760 | Holt Renfrew, holtrenfrew.com
Marc Anthony
Strictly Curls Curl Envy Leave-In Conditioner
They say: A leave-in hair conditioner formulated for curly hair. Boasting strand-smoothing ingredients such as avocado oil, Vitamin E and shea butter, the spray can be used on course, fine, thick or thin curls to promote softness, fight frizz and lock in hydration.
We say: Our tester spritzed this conditioner on her ultra-curly, frizz prone coif. The spray format makes application easy and mess-free. Used both as a de-tangler on freshly washed hair and as a curl pick-me-up in between washes, she found it left curls looking formed, smooth and not stiff.
$12.97 | Mass retailers, walmart.ca
Ghlee
Lip Balm
They say: A nourishing lip balm that features antioxidant-rich ghee, along with mango seed butter and Vitamin E to hydrate lips. Available in Original, Rose, Chai, Mango-Papaya and Mint.
We say: This lip balm gives a dose of smoothing hydration with one swipe. Our tester loved the rose iteration, which boasted the scent of a fresh bloom. It’s the kind of balm you keep reaching for in your bag, she reports.
Share this article in your social network
We're still stockpiling reusable bags. Big grocers have adopted solutions, but experts have concerns – CBC News
Proposed Toronto condo complex seeks gargantuan height increase – blogTO
Vaughn Palmer: Brad West dips his toes into B.C. politics, but not ready to dive in – Vancouver Sun
Silver investment demand jumped 12% in 2019
12 Bizarre Things People Did Just To Make Social Media Content
Global Media Markets, 2015-2020, 2020-2025F, 2030F – TV and Radio Broadcasting, Film and Music, Information Services, Web Content, Search Portals And Social Media, Print Media, & Cable – GlobeNewswire
-
Business10 hours ago
Honda to build electric vehicles and battery plant in Ontario, sources say – Global News
-
Science10 hours agoWill We Know if TRAPPIST-1e has Life? – Universe Today
-
Investment13 hours ago
Down 80%, Is Carnival Stock a Once-in-a-Generation Investment Opportunity?
-
News15 hours ago
Honda expected to announce multi-billion dollar deal to assemble EVs in Ontario
-
Business22 hours ago
Elon Musk comments on Tesla’s pricing strategy following cuts – TESLARATI
-
Sports20 hours ago
Jets score 7, hold off Avalanche in Game 1 of West 1st Round – NHL.com
-
Tech14 hours ago
Indigenous Craft and Vendors Market a success in Halifax
-
News14 hours ago
Can Canada have an effective climate action policy without a carbon tax?
