{"id":200822,"date":"2022-12-30T17:04:00","date_gmt":"2022-12-30T14:04:00","guid":{"rendered":"https:\/\/howtogeek.inform.com.de\/?p=200822"},"modified":"2022-04-04T03:24:31","modified_gmt":"2022-04-04T00:24:31","slug":"murettekitav-macos-i-pahavara-leiti-enam-kui-30-000-masinast-sh-m1-macid","status":"publish","type":"post","link":"https:\/\/howtogeek.inform.com.de\/et\/murettekitav-macos-i-pahavara-leiti-enam-kui-30-000-masinast-sh-m1-macid\/","title":{"rendered":"Murettekitav macOS-i pahavara leiti enam kui 30 000 masinast (sh M1 Macid)"},"content":{"rendered":"<p><a href=\"https:\/\/www.shutterstock.com\/image-photo\/toronto-ontario-canada-september-13th-2019-1503222614\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">canadianphotographer56\/Shutterstock<\/a><\/p>\n<p><a href=\"https:\/\/redcanary.com\/blog\/clipping-silver-sparrows-wings\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">Red Canary turvateadlased<\/a> on avastanud peaaegu 30 000 Macis uue salap\u00e4rase pahavara, kuigi tegelik nakatunud arvutite arv on t\u00f5en\u00e4oliselt palju suurem. N\u00e4ib, et pahavara, h\u00fc\u00fcdnimega Silver Sparrow, ootab \u00f5iget hetke, et saata oma hostseadmetesse pahatahtlik koormus. See on \u00fcks esimesi viiruseid, mis t\u00f6\u00f6tab nii Inteli kui ka M1 Maci puhul.<\/p>\n<p>Silver Sparrow pole veel \u00fchtegi arvutit kahjustanud, kuid kontrollib iga tunni tagant juhtserverit uusi k\u00e4ske. Ilma juurdep\u00e4\u00e4suta sellele juhtserverile ei saa me Silver Sparrowi eesm\u00e4rki teada. Sellegipoolest on t\u00f5siasi, et keegi ootab pahavara &quot;aktiveerimist&quot;, murettekitav.<\/p>\n<p><a href=\"https:\/\/howtogeek.inform.com.de\/wp-content\/uploads\/2022\/03\/post-152877-623c8da88ad8d.png\" data-rel=\"lightbox\"><img decoding=\"async\" class=\"SDStudio-light-box-enable SDStudio-editor-tools-md-imp\" src=\"https:\/\/howtogeek.inform.com.de\/wp-content\/uploads\/2022\/03\/post-152877-623c8da88ad8d.png\" alt=\"Murettekitav macOS-i pahavara leiti enam kui 30 000 masinast (sh M1 Macid)\" ><\/a><\/p>\n<p><a href=\"https:\/\/redcanary.com\/blog\/clipping-silver-sparrows-wings\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">Punane Kanaari<\/a><\/p>\n<p>Teine murettekitav tegur on Silver Sparrow ainulaadne, geniaalne disain. Seda levitatakse kahes unikaalses pakendis, pealkirjaga <code>updater.pkg<\/code>ja <code>update.pkg<\/code>. Kui macOS-i pahavara toetub k\u00e4skude t\u00e4itmiseks tavaliselt eelinstalli v\u00f5i -j\u00e4rgsetele skriptidele, t\u00e4idavad need paketid k\u00e4ske v\u00e4hem l\u00e4bipaistva JavaScripti API kaudu. K\u00f5ikidest pahavaradest, millega Red Canary on kokku puutunud, \u00fctleb see, et Silver Sparrow on ainus, mis kasutab JavaScripti API-d.<\/p>\n<p>Installimisel otsib Silver Sparrow \u00fcles URL-i, kust see alla laaditi, et aidata selle disaineritel j\u00e4lgida, millised nakkusmeetodid on k\u00f5ige t\u00f5husamad. Huvitaval kombel tugineb Silver Sparrow failide levitamisel AWS S3 ja Akamai CDN pilveteenustele, mis viitab sellele, et selle disainerid on kogenud veebiserverite ja pilvandmet\u00f6\u00f6tlusega. Pilvejaotus on vastupidavam kui \u00fche serveri levitamismeetodid ja populaarse pilveinfrastruktuuri (nt AWS) kasutamine v\u00f5imaldab pahavara disaineritel &quot;sulanduda&quot; tavalise veebiliiklusega.<\/p>\n<p>Red Canary tegi koost\u00f6\u00f6d MalwareBytesiga ja leidis Silver Sparrow viiruse ligi 30 000 arvutist. Loomulikult on see ainult nakatunud arvutite arv, millele MalwareBytesel juurdep\u00e4\u00e4s on, tegelik nakatunud arvutite arv on t\u00f5en\u00e4oliselt palju suurem. Kerige Red Canary <a href=\"https:\/\/redcanary.com\/blog\/clipping-silver-sparrows-wings\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">aruande<\/a> l\u00f5ppu, kui soovite oma Macis Silver Sparrow&#8217;t jahtida v\u00f5i kasutada arvuti viiruse kontrollimiseks <a href=\"https:\/\/www.malwarebytes.com\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">viiruset\u00f5rjetarkvara MalwareBytes .<\/a><\/p>\n<p>Allikas: <a href=\"https:\/\/redcanary.com\/blog\/clipping-silver-sparrows-wings\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">Red Canary<\/a> <a href=\"https:\/\/arstechnica.com\/information-technology\/2021\/02\/new-malware-found-on-30000-macs-has-security-pros-stumped\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external external_icon\">Ars Technica<\/a> kaudu<a href=\"https:\/\/arstechnica.com\/information-technology\/2021\/02\/new-malware-found-on-30000-macs-has-security-pros-stumped\/\" target=\"_blank\" rel=\"noopener nofollow\" class=\"external\"><\/a><\/p>\n<p><div id=\"PostUnique_PostSource\" style=\"padding-top: 50px\">:  <a target=\"_blank\" rel=\"noopener nofollow\" href=\"\/\/www.reviewgeek.com\" class=\"external external_icon\">www.reviewgeek.com<\/a><\/div><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Red Canary turvateadlased on avastanud peaaegu 30 000 Macis uue salap\u00e4rase pahavara, kuigi tegelik nakatunud arvutite arv on t\u00f5en\u00e4oliselt palju suurem. N\u00e4ib, et pahavara, h\u00fc\u00fcdnimega Silver Sparrow, ootab \u00f5iget hetke, et saata oma hostseadmetesse pahatahtlik koormus. See on \u00fcks esimesi viiruseid, mis t\u00f6\u00f6tab nii Inteli kui ka M1 Maci puhul.<\/p>\n","protected":false},"author":1,"featured_media":152878,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_wp_rev_ctl_limit":""},"categories":[],"tags":[],"class_list":["post-200822","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry"],"_links":{"self":[{"href":"https:\/\/howtogeek.inform.com.de\/et\/wp-json\/wp\/v2\/posts\/200822","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/howtogeek.inform.com.de\/et\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/howtogeek.inform.com.de\/et\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/howtogeek.inform.com.de\/et\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/howtogeek.inform.com.de\/et\/wp-json\/wp\/v2\/comments?post=200822"}],"version-history":[{"count":0,"href":"https:\/\/howtogeek.inform.com.de\/et\/wp-json\/wp\/v2\/posts\/200822\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/howtogeek.inform.com.de\/et\/wp-json\/wp\/v2\/media\/152878"}],"wp:attachment":[{"href":"https:\/\/howtogeek.inform.com.de\/et\/wp-json\/wp\/v2\/media?parent=200822"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/howtogeek.inform.com.de\/et\/wp-json\/wp\/v2\/categories?post=200822"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/howtogeek.inform.com.de\/et\/wp-json\/wp\/v2\/tags?post=200822"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}