Hey there, FixMeFans and StartMeStars! We’re back with another edition of our weekly cybersecurity roundup where we deliver the most recent comings and goings of the cybersecurity world.
This week we’re dealing with new Mac malware that’s been deemed the ‘worst hack in years’, and how Russian hackers have claimed responsibility for hacking the DC police department.
While Macs tend to more secure than their PC counterparts, this doesn’t mean that they’re completely virus-free. A new Mac vulnerability has been spotted, with researchers describing it as one of the worst security issues to have ever hit the Apple operating system.
This malware is designed to be misclassified by Apple’s operating system, meaning that it can skip all the checks done by Apple’s security mechanisms like Gatekeeper and File Quarantine. However, in order for the malware to take action, the victim has to download or run an app that’s not in the App Store or allowed by Apple – though once the app is downloaded, it won’t be stopped by any of Apple’s security features.
How to protect yourself? Security experts’ first recommendation is to not open anything from anybody. The second recommendation is to update your Mac as soon as possible in order to patch the vulnerability. The malware affects all recent versions of macOS, but Apple has since released a patch that prevents the attacks.
If you’re concerned that your Mac might be infected with any sort of malware, we’ve got you covered. Try the FixMeStick to help remove any possible threats that might be hiding on your computer!
You can read more about the malware here!
Earlier this week, the Washington D.C. police department announced that its computer network had been breached and that a Russian-speaking ransomware group claimed to have downloaded more than 250 gigabytes of sensitive data. This event only adds to the string of police and government-targeted attacks that have occurred over the past year.
While details regarding the attack are slowly being revealed, currently Russian cybercriminal group Babuk has claimed responsibility for the attack. They stated that they managed to download over 250 gigabytes of data. The police department has not offered any details on if it had been hit by ransomware or if any police operations were affected. While Babuk has threatened to leak the sensitive information—including the identity of police informants to criminal gangs—unless an undisclosed ransom amount is paid.
Babuk ransomware gained infamy after it hit a NBA franchise, the Houston Rockets, with a ransomware attack and claimed to have stolen internal business data. Since February, Babuk has been linked to several attacks throughout Germany, Hong Kong, and Sweden. Unlike other ransomware attacks—where the hackers threaten to simply delete the data—Babuk engages in extortion where it threatens to leak sensitive data if its demands are not met.
To help protect yourself against ransomware, we always recommend backing up your files in case your computer becomes infected.
Curious? You can read more about the situation here.
That’s all for this week’s roundup folks! We hope you’re staying safe with all that’s going on, especially when it comes to your cybersecurity!