The IT Nerd

There’s a new and potentially dangerous Mac malware strain that is making the rounds today. What makes it potentially dangerous is that it is capable of executing commands, stealing passwords, taking screenshots, accessing files and hijacking DNS settings among other capabilities. It’s called MaMi, after a string in the program code, the flaw was highlighted by Mac security expert Patrick Wardle in a blog post.

At present, it isn’t detectable by any antivirus product. But hopefully that will change now that word about its existence is out there. It’s also unknown how precisely it attacks users. But it should be easy to spot. Users should should first check whether the DNS servers on a Mac are set to 82.163.143.135 and 82.163.142.137. This would indicate an infection. Wardle said that to remove DNS servers, open the System Preferences application, click the ‘Network’ Icon, then the ‘Advanced’ button, and finally the ‘DNS’ button. Select each server, then click the ‘-‘ button to delete. But there are further steps that you need to take and Wardle’s blog post will walk you through them.

This should serve as a reminder that Macs are not immune from threats like these. Thus you need to take precautions just like you would with a Windows PC. Meaning, install antivirus software (Yes, this malware at present isn’t detectable by anything, but having something installed is better than nothing installed) and exercising good judgement when surfing online. That way you avoid being pwned.

This entry was posted on January 16, 2018 at 10:02 am and is filed under Commentary with tags Apple. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.