Security News > 2016 > March > KeRanger Mac ransomware is a rewrite of Linux Encoder (Help Net Security)
2016-03-09 17:34
KeRanger, the recently discovered first functional Mac ransomware, is a copy of Linux Encoder, the crypto-ransomware first unearthed and analyzed in November 2015 by Dr. Web researchers. “The encryption functions are identical and have same names: encrypt_file, recursive_task, currentTimestamp and createDaemon to only mention a few. The encryption routine is identical to the one employed in Linux.Encoder,” explained Catalin Cosoi, Chief Security Strategist at Bitdefender. Bitdefender researchers have previously found encryption flaws in the first … More →
News URL
http://feedproxy.google.com/~r/HelpNetSecurity/~3/oVgfHodv92o/
Related news
- Deepen your knowledge of Linux security (source)
- New 'Helldown' Ransomware Variant Expands Attacks to VMware and Linux Systems (source)
- Oracle Linux 9 Update 5 brings security updates, OpenJDK 17, .NET 9.0 (source)
- 'Alarming' security bugs lay low in Linux's needrestart utility for 10 years (source)