‘iWorm’ Botnet Malware infects over 17,000 Mac machines
Recently a piece of Zombie Botnet software has been uncovered that specifically targets Mac OS X users and has infected over 17,000 machines.
The company that uncovered the Botnet had this to say:
“Criminals developed this malware using C++ and Lua. It should also be noted that the backdoor makes extensive use of encryption in its routines. During installation it is extracted into /Library/Application Support/JavaW, after which the dropper generates a p-list file so that the backdoor is launched automatically,“
The Botnet uses an intriguing method of spreading via a search service of Reddit posts to a Minecraft server list subreddit to collect the IP addresses for its command and control (CnC) network.
The Botnet fully know as Mac.BackDoor.iWorm is likely to be used to send spam emails, flood websites or even mine Bitcoins. The infected machines most prominently appears to be from the US with Canada running second with 1,235 infected accounts.