Cross-platform Wirenet Trojan targets Mac and Linux users

Since Windows users constitute the majority of computer users around the world, most malware is designed to target that particular OS and software made for it. Still, every now and then, malware that eschews that oft trodden route turns up.

Researchers from Russian security company Doctor Web have recently unearthed a password-stealing backdoor Trojan that targets specifically Linux and Mac OS X users.

Dubbed Wirenet, the Trojan records passwords entered in Firefox, Chrome, Chromium and Opera (but seemingly not Safari) and passwords stored by open source, cross-platform applications such as email client Thunderbird, Internet suite SeaMonkey, and IM client Pidgin.

It communicates with its control server located at 212.7.208.65 by using the Advanced Encryption Standard, and delivers the goods to it.

The researchers are still in the dark as to the method used for spreading the malware, so they keep investigating. They consider Wirenet to be the first ever Trojan developed exclusively for targeting OS X and Linux users.

More about

Don't miss