UMikhal Marek "Igciwane" elisebenzayo lohlobo lwe-ransomware lifike ku-Mac okokuqala ngqa. Lokhu kutheleleka kusebenza ngokubhala ngemfihlo idatha yomsebenzisi, futhi umsebenzisi kufanele akhokhe "isihlengo" kubahlaseli ukuze athole idatha yakhe. Inkokhelo ngokuvamile yenziwa ngama-bitcoins, okuyisiqinisekiso sokungatholakali kwabahlaseli. Umthombo wokutheleleka kwakuyiklayenti lomthombo ovulekile wenethiwekhi ye-bittorrent transmission kunguqulo 2.90.
Iqiniso elingemnandi ukuthi ucezu olunonya lwekhodi olubizwa OSX.KeRanger.A ingene ngqo kuphakheji yokufaka esemthethweni. Ngakho-ke isifaki besinesitifiketi saso sikanjiniyela esayiniwe futhi ngaleyo ndlela sakwazi ukudlula i-Gatekeeper, ukuvikela okuthembekile kwesistimu ye-OS X.
Ngemuva kwalokho, akukho okungavimba ukwakhiwa kwamafayela adingekayo, ukukhiywa kwamafayela omsebenzisi, kanye nokusungulwa kokuxhumana phakathi kwekhompyutha enegciwane namaseva abahlaseli ngenethiwekhi ye-Tor. Abasebenzisi baphinde baqondiswa kabusha ku-Tor ukuze bakhokhe imali ye-bitcoin eyodwa ukuze bavule amafayela, ne-bitcoin eyodwa okwamanje ibiza u-$400.
Kuhle ukusho, nokho, ukuthi idatha yomsebenzisi ibethelwa kufika ezinsukwini ezintathu ngemuva kokufaka iphakheji. Kuze kube yileso sikhathi, akukho nkomba yokuba khona kwegciwane futhi lingatholwa kuphela Ku-Activity Monitor, lapho inqubo ebizwa ngokuthi "kernel_service" isebenza uma kwenzeka ukutheleleka. Ukuze uthole uhlelo olungayilungele ikhompuyutha, bheka futhi amafayela alandelayo ku-Mac yakho (uma uwathola, i-Mac yakho kungenzeka ukuthi inegciwane):
/Applications/Transmission.app/Contents/Resources/General.rtf
/Volumes/Transmission/Transmission.app/Contents/Resources/General.rtf
Ukusabela kwe-Apple akuthathanga isikhathi eside futhi nesitifiketi sikanjiniyela sase singavumelekile. Ngakho-ke lapho umsebenzisi manje esefuna ukusebenzisa isifaki esinegciwane, uzoxwayiswa kakhulu ngengozi engaba khona. Isistimu ye-antivirus ye-XProtect nayo ibuyekeziwe. Uphinde wasabela kulokhu kusatshiswa Iwebhusayithi yokudlulisa, lapho kuthunyelwe khona isexwayiso mayelana nesidingo sokubuyekeza iklayenti lesifufula sibe yinguqulo engu-2.92, elungisa inkinga futhi isuse uhlelo olungayilungele ikhompuyutha ku-OS X. Kodwa-ke, isifaki esinonya besisatholakala cishe amahora angama-48, kusukela ngoMashi 4 kuya ku-5.
Kubasebenzisi abacabange ukuxazulula le nkinga ngokubuyisela idatha nge-Time Machine, izindaba ezimbi yiqiniso lokuthi i-KeRanger, njengoba ibizwa kanjalo i-ransomware, iphinde ihlasele amafayela asekelwe. Uma kushiwo lokho, abasebenzisi abafake isifaki esihlukumezayo kufanele balondolozwe ngokufaka inguqulo yakamuva ye-Transmission kusuka kuwebhusayithi yephrojekthi.
Labo ababuyekezele ku-2.90 ngohlelo lokusebenza abekho engcupheni...
Labo abancela ezifuleni abafanele lutho ngaphandle kwe-ransomware...
Hewu
Futhi futhi ukulahlwa kobuwula ngempama :(
Ubucabanga ukuthi iphrothokholi yesifufula ingasetshenziswa futhi iphinde isetshenziselwe ukusabalalisa i-sw?
Hmmm, lapho ngilanda ukusatshalaliswa kwe-Linux, kungcono kakhulu nge-Torrent, okuyiyona ndlela inqubo enikeziwe eyakhelwe yona kwasekuqaleni, iqiniso lokuthi iyahlukunyezwa ingenye indaba...