Popular BitTorrent client Transmission found distributing Mac-based malware again
Popular BitTorrent client Transmission has been found distributing malware to infect Mac users, just months after it was used to spread a strand of ransomware called KeRanger, researchers have found. Discovered by experts at cybersecurity firm Eset, the malware called OSX/Keydnap is “built to steal the content of OS X’s keychain and maintain a permanent backdoor”.
Researchers found that a version of the BitTorrent client containing the malware was recently being distributed on Transmission’s official website.
Eset said the malicious file was removed from the web server “literally minutes” after they notified the Transmission team and an investigation was launched.
“According to the signature, the application bundle was signed on August 28th, 2016, but it seems to have been distributed only the next day,” Eset researchers wrote in a We Live Security blog post.“Thus, we advise anyone who downloaded Transmission v2.92 between August 28th and August 29th, 2016, inclusively, to verify if their system is compromised.”
To verify if your system has been compromised, the Eset team recommends that users look for any of the following folders and files: