New Ransomware EvilQuest Targets macOS Users Via Infected Installers
New Ransomware EvilQuest Targets macOS Users Via Infected Installers
July 2, 2020
New Ransomware EvilQuest Targets macOS Users Via Infected Installers
New Ransomware EvilQuest Targets macOS Users Via Infected Installers
July 2, 2020

EvilQuest, a new ransomware, has targeted macOS users who downloaded installers for popular apps via torrent files.

It has been reported that the attack was first spotted by Dinesh Devadoss, a K7 Lab malware researcher, whose findings show that EvilQuest has been quite active since the start of June 2020.

However, malware lab firms like Malwarebytes, have found the ransomware attached to pirated macOS software distributed mainly through torrent sites and warez forums.

EvilQuest asks victims to pay a ransom through the same static Bitcoin (BTC) address in every documented attack, as one of the first signs that EvilQuest has deployed an attack is that macOS Finder freezes. Once file encryption is complete, a text file is generated with ransom instructions.

Brett Callow, the threat analyst and ransomware expert at malware lab Emsisoft, believed that EvilQuest is unlikely to be anything other than a very small-scale threat.

ALSO READ :  DraftKings Files Form S-1 Registration Statement With The US SEC Indicates SBTech Hit By Ransomware Attack

He said:

“The fact that Macs have a relatively small market share means they’re not a particularly attractive target for ransomware groups and they’re unlikely to invest significant resources in targeting Mac users.”

Likewise, findings also show that the average ransom demanded by the attackers is $50 worth in BTC. Victims are usually given a deadline of 72 hours to pay.

Thus, Callow added:

“That said, a threat is a threat and it’s something Mac-users should be aware of. Thankfully, as this ransomware appears to be targeted exclusively via pirated software, it’s very easily avoided simply by not using pirated software. That holds true whether you’re a Mac user or a Windows user: pirated software and cracks are the primary distribution method for the types of ransomware that target home users.”

Source: Cointelegraph | Image: Ncrypter Magazine


Disclaimer

Crypto News Point a news platform of Digital Notice Media Labs is primarily a regular publication of information, commentary and articles focused extensively on fintech, blockchain technology, cryptocurrency, blockchain-based tokens, cryptocurrency market trends, and trading strategies. We do not provide individually tailored investment advice and does not take a subscriber’s or anyone’s circumstances into consideration when discussing investments, nor is Crypto News Point registered as an investment adviser or broker-dealer in any jurisdiction. Information contained herein is not an offer or solicitation to buy, hold, or sell any digital assets.

Affiliate Disclosure: To help support the work we do here at CNP, we often link to products and deals from around the web. Should you buy some of these, we may get a portion of the sale.

We in generally gather content from the major websites. In every article there is always a clear link and attribution to the source publication. If you have any issue with any of our published content taken from your site, kindly let us know so that we can take appropriate action. In any case, the content of the pages of this website is for your general information and use only. It is subject to change without notice.

You May Also like

Ishita Bora

Ishita Bora is a Senior Content Creator at Digital Notice Media Labs with an experience of 1 year. She has completed her Master's Degree in Language and Linguistics in 2019 from Gauhati University, India. Her interest lies in blockchain technology and cryptocurrency space, as she loves writing about blockchain and other blockchain-related articles. Currently, she is working on blockchain-based news, reviews, featured articles, and guides.