iWorm: Apple and Reddit fix the bug controlling thousands Mac computers

The malware which enabled hackers to control 17,000 Apple computers has been shut down

Zachary Davies Boren
Monday 06 October 2014 16:35 EDT
Comments
(Getty)

Your support helps us to tell the story

From reproductive rights to climate change to Big Tech, The Independent is on the ground when the story is developing. Whether it's investigating the financials of Elon Musk's pro-Trump PAC or producing our latest documentary, 'The A Word', which shines a light on the American women fighting for reproductive rights, we know how important it is to parse out the facts from the messaging.

At such a critical moment in US history, we need reporters on the ground. Your donation allows us to keep sending journalists to speak to both sides of the story.

The Independent is trusted by Americans across the entire political spectrum. And unlike many other quality news outlets, we choose not to lock Americans out of our reporting and analysis with paywalls. We believe quality journalism should be available to everyone, paid for by those who can afford it.

Your support makes all the difference.

The bug that used Reddit to infiltrate and control over 17,000 mac computers around the world has been fixed, with Apple updating its anti-malware system to detect the iWorm.

With this latest update, reported by MacRumours this weekend, Apple’s XProtect has enabled OSX to identify and block three types of iWorm – A, B, and C.

Meanwhile Reddit closed both the account and the phoney Minecraft community that the hackers were using to communicate with the iWorm bug.

Last week Russian security firm Dr Web discovered the Apple-exclusive malware, which was using Reddit search and comment functions to connect infected machines to botnet servers.

iWorm can now be blocked by Apple's XProtect
iWorm can now be blocked by Apple's XProtect (MacRumours)

Once a connection was established, the hacker could control the device – making it perform tasks, give up private information or introduce further malware.

Botnets are usually designed to send spam emails, direct website-crashing amounts of traffic or mine for Bitcoin.

Over 17,000 Mac computers were hacked using the iWorm malware, according to Dr Web, over 1200 of which were in the UK.

The Safe Mac website claims to have found the way in which the iWorm spreads: pirated software.

The bug derives from a PirateBay user called ‘aceprog’ who offers software programs such as Adobe Photoshop, Illustrator and Microsoft Office.

The installer for these programs had reportedly been altered, and so when a user would sign with the application, the iWorm malware would immediately be installed.

There is nothing to suggest that the hackers used their growing botnet before steps were taken to squash it.

Join our commenting forum

Join thought-provoking conversations, follow other Independent readers and see their replies

Comments

Thank you for registering

Please refresh the page or navigate to another page on the site to be automatically logged inPlease refresh your browser to be logged in