Thursday , September 24 2020
Home / Apple / Tech / Apple accidentally approved malware disguised as Flash, new report finds

Apple accidentally approved malware disguised as Flash, new report finds

Apple accidentally approved common malware disguised as an update for Adobe Flash Player to run on macOS, according to a new report.

According to security researcher Patrick Wardle, Apple approved an app that contained code used by a well-known malware called Shlayer. Shlayer is a trojan downloader that spreads through fake applications, bombarding users with an influx of adware. Shlayer is the “most common threat” to Macs, cybersecurity and anti-virus firm Kaspersky said in 2019.

Wardle says this is the first time he knows of that Apple mistakenly notarized malware following the debut of its new notarization process. Apple announced the macOS notarizing process in 2019, requiring every app to be reviewed by Apple and signed by a developer before it can run on macOS, even if they’re being distributed outside the Mac App Store.

After discovering the malware, Wardle contacted Apple and the company disabled the developer account associated with the app and revoked its certification. The attackers reportedly managed to notarize the malware again, but Apple told TechCrunch that both the old and new malware had their notarization revoked.

This Article was first published on theverge.com

About IT News Ug

Check Also

Epic says Apple ‘cherry picked’ info about Fortnite’s popularity in new filing

Fortnite says Apple made false statements in a filing opposing a preliminary injunction

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.

//graizoah.com/afu.php?zoneid=2572107