This morning a unique campaign targeting Macs has caught our attention. This attempt contained a .zip file carrying a Mac (OSX) trojan known as Aptordoc (OSX.Dok).
All of these emails contained the OSX Aptordoc trojan, however, some also had a Windows trojan downloader known as W97M.Dropper (Mal/DocLnk-B) attached, also like the example pictured below. These messages were destined to our Switzerland clients with the .ch domain extension.
Mac can be susceptible to malicious attacks
There is a common misconception that Macs cannot be infected.
While we see less attempts targeting Macs, they are definitely susceptible to malicious attacks such as this. Below is and example of the current malicious email that is making the rounds. Under the example image is a rough unedited Google Translation to English.
Unedited Google Translation:
Display Name: Canton Police Zurich
Subject: Unsuccessful contact attempt
My name is Walter Seeholzer, I am an inspector from the Zurich Criminal Investigation Department.
We have tried to get in touch with you to ask you some questions, but unfortunately we have been unsuccessful.
This document contains a list of questions as well as my telephone number.
Your personal data will not be shared with third parties outside the Group without your express consent.
All these data-receiving agencies ensure compliance with data protection and data security.
For the online ordering or the purchase of certain services and products, the registration and registration of your personal data is indispensable.
This is the only way you can access your MCC or estv can provide you with the invoices.