Apple accidentally notarized the adware malware Shlayer so that it was not blocked for macOS users.
Last year, the Shlayer Trojan attacked one in ten macOS users, as Kaspersky's annual analysis for 2019 shows. At 14 percent, German users were the second most frequently affected by the Shlayer Trojan family internationally.
Commentary from Kaspersky's expert Anton V. Ivanov
“According to our telemetry, Shlayer is the most widespread macOS threat in 2019; Over the past year, our solutions have prevented Shlayer Mac attacks on at least one in ten devices. It is important to emphasize that while Shlayer is a Trojan horse that specializes in installing adware, the malware can be used for many other purposes as well. Shlayer is notorious for its intelligent distribution system, which includes distribution through a partner network and entertainment websites. We were able to identify over 700 different domains where the malware was found. Given this fact and the size of the Shlayer campaigns, it's no surprise that cyber criminals are working to expand the channels for spreading this malware. Fake Adobe Flash updates are a common way of spreading the malware. Adobe Flash Player is rarely used any more, so alleged updates to this program are covert attacks. We advise users to always check the legitimacy of the website offering the download and to install a reliable security solution on the devices. "
Kaspersky tips for protection against Trojan infections
- Installation of programs and updates only from trustworthy sources.
- Examination of entertainment websites with regard to their seriousness through prior research.
- Use a reliable security solution like Kaspersky Security Cloud, which offers advanced protection on Mac, PC and mobile devices.
More on this at Kaspersky.com
About Kaspersky Kaspersky is an international cybersecurity company founded in 1997. Kaspersky's in-depth threat intelligence and security expertise serve as the basis for innovative security solutions and services to protect companies, critical infrastructures, governments and private users worldwide. The company's comprehensive security portfolio includes leading endpoint protection as well as a range of specialized security solutions and services to defend against complex and evolving cyber threats. Kaspersky technologies protect over 400 million users and 250.000 corporate customers. More information about Kaspersky can be found at www.kaspersky.com/