Security News > 2020 > August > Apple Accidentally Notarizes Shlayer Malware Used in Adware Campaign

Apple Accidentally Notarizes Shlayer Malware Used in Adware Campaign
2020-08-31 19:45

Apple accidentally approved one of the most popular Mac malware threats - OSX.Shlayer - as part of its security notarization process.

Security researchers Peter Dantini and Patrick Wardle recently discovered that Apple inadvertently notarized malicious payloads that were utilized in a recent adware campaign.

While the campaign seems like a fairly run-of-the-mill adware attack, what's different is that Apple's notarization requirements do not trigger a warning notification telling the user that the developer cannot be verified, and that it is unknown whether the app is free from malware.

The adware payloads were fully notarized in this campaign, meaning the malicious payloads were submitted to Apple prior to distribution.

"Malicious software constantly changes, and Apple's notarization system helps us keep malware off the Mac and allow us to respond quickly when it's discovered," an Apple spokesperson told Threatpost.


News URL

https://threatpost.com/apple-accidentally-notarizes-shlayer-malware/158818/

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Apple 138 568 4105 1576 2442 8691