New Malware Uses Tor to Open Backdoor on Mac OS X Systems
▻http://news.softpedia.com/news/new-malware-uses-tor-to-open-backdoor-on-mac-os-x-systems-506000.sht
The malware’s technical name is Backdoor.MAC.Eleanor, and currently, its creators are distributing it to victims as EasyDoc Converter, a Mac app that allows users to convert files by dragging them over a small window.
In reality, Bitdefender says the app only downloads and runs a malicious script that installs and registers at startup three new components: the Tor hidden service, a PHP Web service, and a Pastern client.
The Tor service will automatically connect the infected computer to the Tor network, and generate a .onion domain through which the attacker can access the user’s system using only a browser.
[...]
The infected computer basically becomes a bot in the crook’s botnet, which can at any time use it to send out massive spam campaigns, steal sensitive data from the infected system, use it as a DDoS bot, or install other malware.
