EasyDoc Eleanor Malware Onion Bots

John jnn at synfin.org
Wed Jul 13 06:44:52 PDT 2016

On July 13, 2016 6:46:20 AM EDT, Zenaan Harkness <zen at freedbms.net> wrote:
>On Wed, Jul 13, 2016 at 06:33:19AM -0400, John Newman wrote:
>> > On Jul 6, 2016, at 2:52 PM, grarpamp <grarpamp at gmail.com> wrote:
>> > 
>> >
>> >
>> > 
>> > Security firm Bitdefender has issued an alert about a malicious app
>> > that hands over control of Macs to criminals via Tor. The software,
>> > called EasyDoc Converter.app, is supposed to be a file converter
>> > doesn't do its advertised functions. Instead it drops complex
>> > onto the system that subverts the security of the system, allowing
>> > to be used as part of a botnet or to spy on the owner. "This type
>> > malware is particularly dangerous as it's hard to detect and offers
>> > the attacker full control of the compromised system," said Tiberius
>> > Axinte, Technical Leader, Bitdefender Antimalware Lab. "For
>> > someone can lock you out of your laptop, threaten to blackmail you
>> > restore your private files or transform your laptop into a botnet
>> > attack other devices. The possibilities are endless." The malware,
>> > dubbed Backdoor.MAC.Eleanor, sets up a hidden Tor service and
>> > PHP-capable web server on the infected computer, generating a
>> > domain that the attacker can use to connect to the Mac and control
>> > Once installed, the malware grants full access to the file system
>> > can run scripts given to it by its masters.A report on AppleInsider
>> > says that malware can also control the FaceTime camera on a
>> > computer. But thankfully, Apple's Gatekeeper security prevents the
>> > unsigned app from being installed.
>> This is why I install only a limited number of apps from (hopefully
>non subverted) known good sources on hackintosh & MacBook.  Some UNIX
>stuff from homebrew, transmission, chrome, iterm and a couple others..
>of course even this isn't anywhere near perfect
>> "Easydoc converter.app" name fucking sounds fishy (and worthless)...
>> More and more malware finally starting to target osx (err macOS, or
>whatever it's called these days)..
>Just as well your operating system, drivers and desktop software are
>open source too - you'd be at the mercy of a corporation's walled

Aye true enough. I use Linux and freebsd as other primary OSs but am for instance using the nvidia supplied x11 driver, which has a binary blob in it... Performs so much better than nouveau though!!

Otherwise it's all free - xfce, Firefox and chromium... 

I still remember when Linux journal advertised commercial X11 for Linux that came with motif & cde... heh, I was still a bright eyed kid 


Sent from my Android device with K-9 Mail. Please excuse my brevity.

More information about the cypherpunks mailing list