This malware gives an attacker virtually complete control over an infected Mac, and it attempts to steal a victim’s passwords, cryptocurrency wallets, browsing history and login data, and more.įor more information, including how to find out whether your Mac was infected, see Intego’s main article OSX/Proton Malware is Back! Here’s What Mac Users Need to Know. If an unsuspecting Mac user downloaded and installed one of the infected apps, a new variant of the OSX/Proton malware would be installed as well. This time, Eltima Software was the target-specifically its Mac apps Elmedia Player and Folx (a download manager and BitTorrent client). You may recall that the same thing happened back in May with the popular Handbrake video-encoding software, and in 2016 the Transmission BitTorrent client was compromised on two separate occasions. One of the most significant bits of Mac-specific news in October was the discovery of another legitimate software developer whose download server was distributing compromised (infected) versions of the company’s apps. Eltima Software Infected with OSX/Proton.C Malware October has been another busy month! There’s a new variant of the Proton malware, a Wi-Fi “KRACK” attack affecting Apple devices, warnings about potential attacks against iOS device users, and plenty more. Security News Month in review: Apple security in October 2017