Mac malware: OSX/Dok


The days of malware being just a problem for Windows users are long gone, with malicious software now appearing for all major operating systems. The latest, and most dangerous to hit the Mac yet, is called OSX/Dok. It targets any and all versions of Mac OS X and will take complete control of your Mac if you let it.

First the good news: in order for Dok to infect a Mac the user needs to open a .zip archive attached to an email. Most people's suspicions will be raised as soon as they see the archive attached to an email they don't recognize. Those that don't are in for some pain.

According to Check Point, Dok is not currently detected on VirusTotal, meaning it won't get picked up by any security software run on your system (this will likely change quickly). Dok also uses a developer ceritificate that is signed and therefore authenticated by Apple, meaning your Mac will allow it to install and Gatekeeper is on no help.

Once successfully installed on your system, Dok enjoys complete access to all communications, even those sent over encrypted SSL. Such access is achieved by quietly redirecting the user's traffic through a malicious proxy server. All traffic can be monitored and the attacker can cherry pick through the details. Once done, the malware deletes itself from the system.

The same advice applies as always: if you have any suspicion at all about an email in your inbox, do not under any circumstances attempt to open the included attachment. 99 percent of the time it's going to be malicious and you'll regret taking the risk. Running a good security suite is also advised.






If you are having computer problems (desktop and laptop) or computer network issues (wired and wireless) we offer computer repair services, it tech support and network troubleshooting in: McAllen, Mission, Edinburg, Pharr, Hidalgo, San Juan, Alton, Palmview, Palmhurst, Weslaco, Penitas, Rio Grande, Donna - Texas.

Find Us on Facebook

Facebook Image

Carbonite Silver Partner