Spreading via poisoned Google search results, this new version of Mac’s No. 1 threat comes with added stealth.
A fresh variant of the Shlayer Mac OSX malware with advanced stealth capabilities has been spotted in the wild, actively using poisoned Google search results in order to find its victims.
According to researchers at Intego, the malware, like many malware samples before it, is purporting to be an Adobe Flash Player installer. However, it has its own unique characteristics: It takes a crafty road to infection once it’s downloaded, all in the name of evading detection.
To start with, the masquerading “installer” is downloaded as a .DMG disk image, according to Intego’s analysis.