Mac security takes another hit as OS X is affected by ransomware

Cybercriminals

Ransomware has now extended its encrypting tentacles to ensnare Mac users with the news that Transmission, the BitTorrent client for Apple's desktop operating system, has been infected with KeRanger.

This is the first time the Mac has been hit with ransomware, which as the name suggests, locks files on the computer by encrypting them, and then demands a payment to unlock that encryption.

KeRanger charges some $400 (around £280, or AU$540) for unlocking the victim's files – or at least theoretically unlocking them, anyway. One of the other problems with ransomware is there's no guarantee payment to criminals will be the end of the issue, of course.

The attack was flagged up by Palo Alto Networks, who detected the infection of Transmission last Friday morning. Transmission version 2.90 installers were affected, with researchers noting that it's possible the program's official website was compromised, and the software replaced with modified versions loaded with the ransomware.

Upgrade right now

The developers of Transmission immediately posted the following warning on the website: "Everyone running 2.90 on OS X should immediately upgrade to and run 2.92, as they may have downloaded a malware-infected file. This new version will make sure that the 'OSX.KeRanger.A' ransomware is correctly removed from your computer."

Even those who upgraded to version 2.91 should immediately install version 2.92, as although the former version was clean, it didn't have the routines built in to automatically remove the malware.

Upgrading should be seen as an absolute priority, to clean out the infection before any ransomware demand might kick in – apparently the malware waits for three days before it hooks up with its command and control servers and begins its encryption nastiness.

So time is very much of the essence, as if you downloaded the malicious version of Transmission on Friday, it'll be kicking in today.

TOPICS

Darren is a freelancer writing news and features for TechRadar (and occasionally T3) across a broad range of computing topics including CPUs, GPUs, various other hardware, VPNs, antivirus and more. He has written about tech for the best part of three decades, and writes books in his spare time (his debut novel - 'I Know What You Did Last Supper' - was published by Hachette UK in 2013).

Latest in Security
Abstract image of cyber security in action.
MassJacker malware targets those looking for pirated software
Code Skull
US government warns Medusa ransomware has hit hundreds of critical infrastructure targets
An American flag flying outside the US Capitol building against a blue sky
The FCC is creating a security council to bolster US defenses against cyberattacks
Image depicting hands typing on a keyboard, with phishing hooks holding files, passwords and credit cards.
Microsoft warns about a new phishing campaign impersonating Booking.com
Ransomware
Microsoft uncovers sleuthy new XCSSET MacOS malware campaign
Computer Hacked, System Error, Virus, Cyber attack, Malware Concept. Danger Symbol
Meta warns of worrying security flaw hitting open source type software
Latest in News
Jason Sudeikis' Ted Lasso pointing at someone in Ted Lasso season 2
Believe it, baby: Ted Lasso season 4 is officially in development for Apple TV+ – and Jason Sudeikis will reprise his role as the titular soccer coach
Rainbow Six Siege X promotional art.
The Tom Clancy's Rainbow Six Siege X 6v6 mode might finally pull me away from Black Ops 6
A close up of the new web version of Apple Music Classical
Apple Music Classical is now available on the web, but its Mac app is still nowhere in sight
Silent Hill f
Silent Hill f will present players with 'a beautiful yet terrifying choice', and I can't wait to see what it is
Google Chromecast 2
Google is finally rolling out a fix for broken Chromecasts – just as new bugs appear on the Chromecast with Google TV
Garmin Instinct 3 in Neotropic Green
"I'm an idiot": Garmin user reveals how fixing one setting completely changed their training after months of making no progress