@@EricParkerHave you tried using a custom virtual network adapter ? Because I know that if a malware was to see any intel E100 it would know its in a vm
Honestly, I can't even blame macOS for this one lol. 4 different ominous security dialogue boxes, and the user goes through them without a care in the world. The best antivirus is always the user.
2:33 apple actually fixed(broken) the right click open now. you'll have to go into the privacy settings and allow the app through. also disabling gatekeeper is much harder now. it's either a good thing (from a security standpoint) or a bad thing (from a usability standpoint) it's so stupid.
Well, my mom managed to install MacKeeper (PUP - Adware) by following their instructions to right-click, followed by her password. So from my perspective, it's a good thing.
It's a good thing, but I've already partially disabled gatekeeper on my Mac to avoid having to deal with otherwise bypassing it when downloading some apps, because it can get a bit annoyed if an app doesn't have a valid signature.
Stopping this is simply not possible. Users stupid enough to provide the admin password to some random application in an email will always be lost no matter how good the protection is.
As expensive as a Mac is, I wouldn't be surprised if a virus was made to specifically target its users. Think about it: Macs are often seen as a status symbol, and many of their users are perceived to be wealthier. Cybercriminals know this and might see targeting Mac users as a way to get higher returns, considering the likelihood of accessing more valuable personal and financial information. It's not just about the device; it's about who is using it.
@composters that's right, wealthy people don't waste money on marked up prices, smart people buy devices that will do better and longer for slightly higher price and better quality
This makes sense at a surface level. Yes, people who own a Mac tend to be wealthier than the average computer user. However, the thing is, unless the hacker is developing a Ransomware to hijack someone's computer and force them to pay an amount of money, it's simply NOT worth it to make a virus for Mac. Mac users, on average, may be somewhat wealthy, sure. But they are still a minority compared to Windows users, for example. For a malicious hacker, it's ALWAYS gonna be more worth it to target the bigger demographic.
Makes sense in concept, but there are far fewer Mac users than Windows users. If you were a bad actor making viruses, you'd likely make more money by successfully hitting a lot of working/middle class people, rather than only hitting a couple of wealthy ones.
Anything that runs on the internet with potential vulnerabilities can be hacked or get viruses (local machines that don't connect to the internet can get hacked too but most things are mainly on the internet). Think it's a certain crowd that assumes mac's are free from harm.
I never said that macs can’t get viruses. But they are less vulnerable than windows as most viruses are written for windows. But there are some written for Mac
That's the thing, though. If 1,000,000,000 people drive Fords and 1,000 people drive Nissan. What are you going to hack/steal? It's not that Macs are inherently safe but that you're just less likely to encounter a hack designed for your system. However, when you do, you're just as at risk as anyone else.
@@Unethical.FandubsGames the risk of getting hacked on windows is higher due to more malware being made for it due to windows having most of the users. And with cars the locking system is pretty standard across most cars
"Macs dont get viruses" Tell that to the virus that killed my moms old imac like 8-10 years ago. Thankfully when it destroyed the os it left all the important files on there.
“8-10 years ago” sure it still is about this topic but 10 years ago, and i have a very good feeling that your mother gave all the permissions for the “virus”, is it even a virus if you give access? It is like leaving your doors open and being surprised that someone stole your stuff.
@@tlha Nope it wasn't her. Her ex liked to torrent stuff and didn't seem to know how easy it was to have something happen. Everything was perfectly fine and safe before that.
Although most mac users I know have no anti-virus installed. Then I usually recommend people like my parents to buy Malwarebytes for Mac. In the past it was mainly just adware - PUP such as MacKeeper. But today, it's mostly malware like atomic stealer that steals browser cookies, passwords and crypto wallets. Unfortunately, I'm pretty sure that nothing can currently protect you from more personalised attacks such as Pegasus :/
@@nickvogelius, you referring to the 8 minute statement? To me, a statement would be designed with 2-3 sentences. Now almost 9 minutes of paragraphs. 😉 This shii- a whole lecture.
Using a PowerPC g5 tower was fun, OSX of that time was crazily good too. The only problem started when you speak your mind about the lack of security on it and how except a couple of tools, there was nothing to secure it. The "community" went crazy, you get banned from forums, IRC channels, mocked by Apple developers themselves etc.
Hey my wifi had a bad actor on it what should we do, this happened when someone pressed "Set Chrome as default browser" and then a fake windows defender popup appeared.
If you are using the apostrophe to indicate a plural, it's "macs". If you are using it to indicate missing letters i.e. Macintoshes, then mac's would work. Gotta love English.
Very interesting. Since Windows Vista, admin prompts run in a separate user space in the default settings, so if a rogue programme should attempt to ask for my admin password, it would be somewhat obvious (though it could visually fake the separate user space as well). Now I realised Mac doesn't do that. Windows gets a point here.
When he was looking at the requests the stealer sent how did he identify the server as a c2 server? Is there something that gives it away or was it just because of the context/an inference?
If hacker wants in, they will. Where there's a will there'll be a solution. And if you can afford an Apple product, this means you have more to offer, from a hacker's perspective.
You’ve got not idea what you’re taking about. These type of stealers are meant to be sent out to the highest number of people, in the hopes of catching those dumb enough to follow the instructions. It’s got nothing to do with “targeting wealthy people”. Also, MacBooks aren’t even that expensive. Look at laptops with comparable performance and build quality and you’ll see they’re pretty much evenly matched. I’ve got a MBA M1 which I’ve had since shortly after launch, that thing is still going strong after nearly 4 years.
Have there been any cases of stealers targeting Linux? I'd be very interested to see if there have been any. If not, would Windows stealers work on Linux via Wine? I don't think they would, but I'm still new to using Linux myself so I could be wrong.
Actually, there were Bitcoin wallet stealers on Ubuntu in the Snap store. Windows Stealers would (kinda) run in Wine and unless that is horribly configured, it will steal nothing. I don't even know if WIne has internet access, I never tested this. However, Firefox is native to Linux and stores it's data outside Wine. So, the only way to steal data from Linux would require a lot of work or rather: tricking an user into marking a file as executable and/or running it as root afterwards. Even saying this will raise a red flag in most Linux users.
@@Sypaka nope, you don't need that. Linux users will curl and pipe into sh random garbage off the internet. All it takes is sending them a malicious script and most won't even check it and just pipe it away. Bonus points if you make it look like a URL for a well known script.
Will it be possible to test it under macOS Sequoia. I know Apple has made a lot of dramatic changes to both Gatekeeper and xProtect with the latest version of macOS, in an attempt to beat the latest developments in malware in 2023. And that some malware has already been successful in bypassing Gatekeeper by guiding users to run the software through the terminal.
Didn't work on my first try, I might try again in a bit. I'm actually replacing the weird QS CPU I have with a threadripper soon, so I'll see if that helps.
I don’t think this would work out of the box on newer versions of macOS, the latest version of gatekeeper is much more restrictive and even prevents data access between apps
and in sequoia you can't just right click and press open, it will do the same thing as just double clicking. to run the untrusted software you need to open system preferences now.
Is it possible I can give you a file that hacked me and did major damage to my systems and have you analyze it for a video? Its an info stealer and a trojan and also does stuff like disabled your keyboard and mouse and results in a false ransome notice about paying x amount to a btc wallet so your info is not leaked
correct me if I'm wrong (because I haven't watched the whole video yet) but running `xattr -c` on an item in Terminal is you explicitly telling your system to strip it of the quarantine flag. You're telling your system "yes don't worry about this file" so of course it can run even if it's a virus...
Apple Site: Macs don't get viruses. This video or others: Mac users to Apple: Why did you claim that 'Macs can't get viruses'? Apple Site: We never said that. We merely stated that the chance of encountering one is so abysmal.
The statement “Mac's don't get viruses” refers to viruses as in software that spreads itself from Mac to Mac, without any active help from the user itself. Something that “allegedly” has not happened since Mac OS X (OS 10), whether this is true in a world of Pegasus and similar Israeli spyware is not for me to say. But malware like atomic stealer is not what people are talking about when they make the above remark.
That's a worm not a virus. Technically viruses refer to programs that infect files (not a common occurence these days), but it's a synonym for malware.
@@EricParker Interesting, I have always corrected people using the statement that Mac's don't get viruses, but are still vulnerable to Malware installed by the user itself. By simply telling them that all malware belongs to the category virus.
Thats just moving the goalpost my dear friend. Viruses exploit vulnerabilities to do anything a computer could do. Theoretically no system is immune to viruses. Practically proven by the gaming industry. Gaming consoles have a giant monetary incentive to create an unexploitable system, yet time and time again they are exploited and abused.
I never encountered any but to be honest I haven't used cracked software since I switched to Macs in like 2011. Then again even the last time I actually was stupid enough to get a Windows system infected was when I was a kid/teen :D
as someone who was given a Macbook air M1, yes. macOS is suffering, minus the terminal is actually alright. the user interface is pretty but tortured. I would rather use gnome.
"Macs don't get infected" is like "The WiiU is unhackable". It was once true because nobody could be bothered to do it. Once people actually tried, the door didn't open so much as the doorhandle itself coming off at the slightest touch.
Nah bro It's just painful to watch You need to install a tool or idk what just to use "strings" When you download an app, it opens a window and you need to drag and drop the file inside of the window Like wtf
@@Landee I personally love the drag a drop the .app file to the application folder. And also the fact that you delete applications on Mac by dragging them to the trash. The whole idea of an application being one and the same file. However, this has the disadvantage that applications for Mac often take up a little extra space, as they must contain all language packs, for example.
It also provides a much more structured and clean launch menu(pad) than the Windows start menu, which often contains more than just shortcuts to applications.
@@JęczmienXD1Lol, are you serious? Yapping about your plugin when anyone can sort comments by newest and see there are two comments before this one. Doesn't change the fact that commenting is good for the YT algo.
I bet he's so good at cyber security, he runs a vm inside a vm
If I ever make a video about the crazy anti VM detection things I've done, that's one of them lol.
@@EricParker please do so!
@@EricParkerHave you tried using a custom virtual network adapter ? Because I know that if a malware was to see any intel E100 it would know its in a vm
@@seansingh4421 That one also handy, when you flag your real PC as VM to avoid some nasty malware.
@@krcsirke I just download windbg and call it a day. Malware shits their pamts when they see any debugger
only templeos is safe, protected by the lord himself
FreeDOS is also safe, protected by the sheer amount of 0s on the harddrive
And additionally protects you from CIA glowies
Amen
@@ax23mgh8that one NOTHING protects you from
Don't use the Lord's name in vain.
Honestly, I can't even blame macOS for this one lol. 4 different ominous security dialogue boxes, and the user goes through them without a care in the world. The best antivirus is always the user.
Triage has the password listed as root on their site
Apple: Macs don't get viruses, they get "inability to use computer normally due to user decision errors". Anyway our lawyer team will be in contact.
2:33 apple actually fixed(broken) the right click open now. you'll have to go into the privacy settings and allow the app through. also disabling gatekeeper is much harder now.
it's either a good thing (from a security standpoint) or a bad thing (from a usability standpoint)
it's so stupid.
Well, my mom managed to install MacKeeper (PUP - Adware) by following their instructions to right-click, followed by her password. So from my perspective, it's a good thing.
@@nickvogeliusits a good thing. Not sure what jessicas point is.
It's a good thing, but I've already partially disabled gatekeeper on my Mac to avoid having to deal with otherwise bypassing it when downloading some apps, because it can get a bit annoyed if an app doesn't have a valid signature.
@ dont see the reason with changing how the mac os works out of the box. If you want control over ur system go with linux
they should start adding Eric Parker detection to the stealers
5 work day, unless weekends
just make the payload not activate if it detects a username that is equal to any of the characters from lain
Stopping this is simply not possible. Users stupid enough to provide the admin password to some random application in an email will always be lost no matter how good the protection is.
takeaway from this video: don’t use chrome
As expensive as a Mac is, I wouldn't be surprised if a virus was made to specifically target its users. Think about it: Macs are often seen as a status symbol, and many of their users are perceived to be wealthier. Cybercriminals know this and might see targeting Mac users as a way to get higher returns, considering the likelihood of accessing more valuable personal and financial information. It's not just about the device; it's about who is using it.
true dat, even the best security could get fucked up at layer 8
most wealthy people do not waste their money on marked up devices.
@composters that's right, wealthy people don't waste money on marked up prices, smart people buy devices that will do better and longer for slightly higher price and better quality
This makes sense at a surface level. Yes, people who own a Mac tend to be wealthier than the average computer user. However, the thing is, unless the hacker is developing a Ransomware to hijack someone's computer and force them to pay an amount of money, it's simply NOT worth it to make a virus for Mac. Mac users, on average, may be somewhat wealthy, sure. But they are still a minority compared to Windows users, for example. For a malicious hacker, it's ALWAYS gonna be more worth it to target the bigger demographic.
Makes sense in concept, but there are far fewer Mac users than Windows users. If you were a bad actor making viruses, you'd likely make more money by successfully hitting a lot of working/middle class people, rather than only hitting a couple of wealthy ones.
I don't like Apple but I can't blame them for this one. Don't open file attachments from strangers isn't a new concept lol
I use rocks and sticks for my OS so everything should be fine
There's a windstorm coming your way ur done for
Anything that runs on the internet with potential vulnerabilities can be hacked or get viruses (local machines that don't connect to the internet can get hacked too but most things are mainly on the internet). Think it's a certain crowd that assumes mac's are free from harm.
that password box looks extremely sus
I never said that macs can’t get viruses. But they are less vulnerable than windows as most viruses are written for windows. But there are some written for Mac
That's the thing, though.
If 1,000,000,000 people drive Fords and 1,000 people drive Nissan. What are you going to hack/steal?
It's not that Macs are inherently safe but that you're just less likely to encounter a hack designed for your system. However, when you do, you're just as at risk as anyone else.
@@Unethical.FandubsGames the risk of getting hacked on windows is higher due to more malware being made for it due to windows having most of the users. And with cars the locking system is pretty standard across most cars
what happened to the Atstolfo client video?
removed due to inaccuracies.
@@EricParker ow k that's fine, also I love your videos :)
@@EricParker NOOOOOOOOOOOOOOOOOOOOOOOOOO
What was it about. The Minecraft client? It’s malware?
@@憂鬱な冒険家 yes it was malware
"Macs dont get viruses" Tell that to the virus that killed my moms old imac like 8-10 years ago. Thankfully when it destroyed the os it left all the important files on there.
“8-10 years ago” sure it still is about this topic but 10 years ago, and i have a very good feeling that your mother gave all the permissions for the “virus”, is it even a virus if you give access? It is like leaving your doors open and being surprised that someone stole your stuff.
@@tlha Nope it wasn't her. Her ex liked to torrent stuff and didn't seem to know how easy it was to have something happen.
Everything was perfectly fine and safe before that.
Macs DO get viruses.
All malware can be referred to as viruses, so Yes "Mac's Do get viruses". However, that is not what the statement refers to.
@@nickvogelius Ik, but many people thought that macs don't get viruses.
Although most mac users I know have no anti-virus installed. Then I usually recommend people like my parents to buy Malwarebytes for Mac. In the past it was mainly just adware - PUP such as MacKeeper. But today, it's mostly malware like atomic stealer that steals browser cookies, passwords and crypto wallets. Unfortunately, I'm pretty sure that nothing can currently protect you from more personalised attacks such as Pegasus :/
Viruses do get macs
@@nickvogelius, you referring to the 8 minute statement? To me, a statement would be designed with 2-3 sentences. Now almost 9 minutes of paragraphs. 😉
This shii- a whole lecture.
Using a PowerPC g5 tower was fun, OSX of that time was crazily good too. The only problem started when you speak your mind about the lack of security on it and how except a couple of tools, there was nothing to secure it. The "community" went crazy, you get banned from forums, IRC channels, mocked by Apple developers themselves etc.
Hey my wifi had a bad actor on it what should we do, this happened when someone pressed "Set Chrome as default browser" and then a fake windows defender popup appeared.
Isn't "mac's" an error? Shouldn't it be "macs"?
If you are using the apostrophe to indicate a plural, it's "macs". If you are using it to indicate missing letters i.e. Macintoshes, then mac's would work. Gotta love English.
@@bernardus4646apple still use macintosh name? i thought they abandoned this brand since 2000..
I was taught the apostrophe was possessive, like you do that to signify what belongs to whom
Very interesting. Since Windows Vista, admin prompts run in a separate user space in the default settings, so if a rogue programme should attempt to ask for my admin password, it would be somewhat obvious (though it could visually fake the separate user space as well). Now I realised Mac doesn't do that. Windows gets a point here.
When he was looking at the requests the stealer sent how did he identify the server as a c2 server? Is there something that gives it away or was it just because of the context/an inference?
If hacker wants in, they will. Where there's a will there'll be a solution.
And if you can afford an Apple product, this means you have more to offer, from a hacker's perspective.
You’ve got not idea what you’re taking about. These type of stealers are meant to be sent out to the highest number of people, in the hopes of catching those dumb enough to follow the instructions. It’s got nothing to do with “targeting wealthy people”.
Also, MacBooks aren’t even that expensive. Look at laptops with comparable performance and build quality and you’ll see they’re pretty much evenly matched.
I’ve got a MBA M1 which I’ve had since shortly after launch, that thing is still going strong after nearly 4 years.
Have there been any cases of stealers targeting Linux? I'd be very interested to see if there have been any. If not, would Windows stealers work on Linux via Wine? I don't think they would, but I'm still new to using Linux myself so I could be wrong.
Actually, there were Bitcoin wallet stealers on Ubuntu in the Snap store. Windows Stealers would (kinda) run in Wine and unless that is horribly configured, it will steal nothing. I don't even know if WIne has internet access, I never tested this. However, Firefox is native to Linux and stores it's data outside Wine.
So, the only way to steal data from Linux would require a lot of work or rather: tricking an user into marking a file as executable and/or running it as root afterwards. Even saying this will raise a red flag in most Linux users.
@@Sypaka nope, you don't need that. Linux users will curl and pipe into sh random garbage off the internet. All it takes is sending them a malicious script and most won't even check it and just pipe it away. Bonus points if you make it look like a URL for a well known script.
@@theairaccumulator7144 Oh, wow, yeah I forgot.
what is the thing at 3:00
Will it be possible to test it under macOS Sequoia. I know Apple has made a lot of dramatic changes to both Gatekeeper and xProtect with the latest version of macOS, in an attempt to beat the latest developments in malware in 2023. And that some malware has already been successful in bypassing Gatekeeper by guiding users to run the software through the terminal.
Didn't work on my first try, I might try again in a bit. I'm actually replacing the weird QS CPU I have with a threadripper soon, so I'll see if that helps.
I don’t think this would work out of the box on newer versions of macOS, the latest version of gatekeeper is much more restrictive and even prevents data access between apps
and in sequoia you can't just right click and press open, it will do the same thing as just double clicking. to run the untrusted software you need to open system preferences now.
Would be interesting to download the zip that it uploaded and see what all it inside it.
Terms and conditions........exe lol
Is it possible I can give you a file that hacked me and did major damage to my systems and have you analyze it for a video? Its an info stealer and a trojan and also does stuff like disabled your keyboard and mouse and results in a false ransome notice about paying x amount to a btc wallet so your info is not leaked
correct me if I'm wrong (because I haven't watched the whole video yet) but running `xattr -c` on an item in Terminal is you explicitly telling your system to strip it of the quarantine flag. You're telling your system "yes don't worry about this file" so of course it can run even if it's a virus...
There is out any stealer that try steal from Firefox or any browser that somehow related to Firefox?
Apple Site: Macs don't get viruses.
This video or others:
Mac users to Apple: Why did you claim that 'Macs can't get viruses'?
Apple Site: We never said that. We merely stated that the chance of encountering one is so abysmal.
need more demos of macs
What happened to the astoflo video?
MacOS 15 added more security features so the malware might not work at all.
I used to hear it a lot... Anyway, I just found your channel trough the NK OS
The statement “Mac's don't get viruses” refers to viruses as in software that spreads itself from Mac to Mac, without any active help from the user itself. Something that “allegedly” has not happened since Mac OS X (OS 10), whether this is true in a world of Pegasus and similar Israeli spyware is not for me to say. But malware like atomic stealer is not what people are talking about when they make the above remark.
That's a worm not a virus. Technically viruses refer to programs that infect files (not a common occurence these days), but it's a synonym for malware.
@@EricParker Interesting, I have always corrected people using the statement that Mac's don't get viruses, but are still vulnerable to Malware installed by the user itself. By simply telling them that all malware belongs to the category virus.
Thats just moving the goalpost my dear friend. Viruses exploit vulnerabilities to do anything a computer could do. Theoretically no system is immune to viruses. Practically proven by the gaming industry.
Gaming consoles have a giant monetary incentive to create an unexploitable system, yet time and time again they are exploited and abused.
Mac's DON'T get viruses. Users do.
This applies to all osses! The best antivirus is common sense and some knowledge about ways people can hack you
Computers don't get viruses at all no matter the operating system. Users get viruses. Computers get malware
@@danandlaundry yes)
literally yes.
Yeah Mac’s do get viruses but they don’t get viruses very often
is there tutorial how to do vm of macos
Why are you on Monterey, ur 3 years behind
they have got viruses since 2001
To be fair, that’s just dumb. Not like a typical windows drive by download which encrypts your computer right away
I never encountered any but to be honest I haven't used cracked software since I switched to Macs in like 2011. Then again even the last time I actually was stupid enough to get a Windows system infected was when I was a kid/teen :D
now try with lockdown mode
apple fanboys are real quiet since this video drops.
is your PFP From serial experiments lain? I LOVE THAT ANIME
This is why windows is better. At least you get to choose the manufacturer of your hardware you want to get a virus on.
You gonna make a new video on astolfo?
i love you're malware videos
That's why real life are better than technology days
you can get viruses in real life as well
Nah the real world has an equal amount of shit, it's just a different kind
yes they do
Ive always heard Mac users suffer enough without viruses. Mostly from my dad.
as someone who was given a Macbook air M1, yes.
macOS is suffering, minus the terminal is actually alright. the user interface is pretty but tortured. I would rather use gnome.
@@JessicaFEREM xD The user interface are kind of what I love most about macOS... I do however miss their old Aqua interface.
@@nickvogelius linux users just hate everything good (and not opensource, even if they never read code)
@@sas408 Bro nobody likes Mac except iSheep. If Windows and Linux users can agree on one thing it is that Mac is garbage
There's no perfect operating system, nearly every OS in the plant has an exploit (unless it's templeOS lol).
Kind of hard to hack an OS with no network stack lol
eric peaker
dont call me buddy weirdo
so true bestie...
*pegs*you*
@@x-mishl what the meow ;-;
artifyber pfp jumpscare
Hello Eric!
It's pronounced cURL
Good video!
Temple OS is yet again undefeated
There is no such thing as coincidence
Love the video!
you sound like andrew tate
Mac is either more or less secure depending how vulnerable the device or system is
"Macs don't get infected" is like "The WiiU is unhackable". It was once true because nobody could be bothered to do it. Once people actually tried, the door didn't open so much as the doorhandle itself coming off at the slightest touch.
I'll take youtubers who don't know the difference between a virus and a trojan for 500, Alex
big up new vid
Bazinga
Macs DO get virus if u security dumdum
mac is lowkey trash. Winodws, Linux, Android, Chromeos ALL OF THEM are better. I'd rather use FREEBSD than macos.
They generally no.
who uses mac anyways
me
My mom
people who think macs don't get viruses
If ur not using linux ur a grandma
Many people
Yeep
mac look so trash lmao
It's because he is running it inside a VM, otherwise it's beautiful
Nah bro
It's just painful to watch
You need to install a tool or idk what just to use "strings"
When you download an app, it opens a window and you need to drag and drop the file inside of the window
Like wtf
@@Landeeyep, and to uninstall you simply send it to trash. And that’s beautiful, you don’t have weird sketchy installers like in windows.
@@Landee I personally love the drag a drop the .app file to the application folder. And also the fact that you delete applications on Mac by dragging them to the trash. The whole idea of an application being one and the same file. However, this has the disadvantage that applications for Mac often take up a little extra space, as they must contain all language packs, for example.
It also provides a much more structured and clean launch menu(pad) than the Windows start menu, which often contains more than just shortcuts to applications.
Я пукнул с подливой, аж обои на стене в горошек стали ☺️
i was the 1000th person to like this video!
🥇 First
why does it matter if ur first just shut up and watch the video
@@tails20342Comments are quite important on TH-cam, so in a way, it does matter.
why yall yapping about this he was 2nd cuz i have plugin to see exacly date of comments and first comment was 7 sec before him
@@JęczmienXD1Lol, are you serious? Yapping about your plugin when anyone can sort comments by newest and see there are two comments before this one.
Doesn't change the fact that commenting is good for the YT algo.
@@GoGoGoRunRunRun yeah its for range but comments like "first" "peoples who liked the video:emoji:" are yk