New iWorm Worm Specifically Targets OS X – How to Know if Your Mac is Infected

   12/12/2016 |  12/12/2016 |  Leave a comment
zombie reaching
Follow Anne
Latest posts by Author: Anne P. Mitchell (see all)

Security researchers have discovered a new worm that specifically targets OS X on Macs, and which controls them through Reddit.com. Dubbed the “iWorm”, or the “Mac.BackDoor.iWorm”, the iWorm was first publicly reported last week on the Dr. Web anti-virus site. There is a way to check to see if you have the iWorm on your Mac, which we explain below.

Rather than having the infected Mac report directly to a server for its instructions, the criminals behind iWorm issue instructions through posts on Reddit, and the infected Macs check in on Reddit to get their commands.


(Kind of evil genius stuff, if you think about it, as an instruction server can be targeted and taken offline, but nobody is going to take Reddit offline.)

According to the Dr. Web report, so far more than 18,500 Macs are infected with the iWorm. Dr. Web calculates this based on the unique IP addresses from which each infected Mac is connecting.

To determine whether or not your Mac has been infected with the iWorm, follow these steps:

No Paywall Here!
The Internet Patrol is and always has been free. We don't hide our articles behind a paywall, or restrict the number of articles you can read in a month if you don't give us money. That said, it does cost us money to run the site, so if something you read here was helpful or useful, won't you consider donating something to help keep the Internet Patrol free?
Click for amount options
Other Amount:
What info did you find here today?:

 

On your Mac, open Finder, click on “Go”, and select “Go to Folder”:

go to folder in finder

 

This will pop open a window in which to type the path of the folder; what you are looking for is the folder that iWorm creates when it infects your machine. If the folder is there, your Mac is infected.

 

go to folder finder

Here is the directory path to type into that window:

/Library/Application Support/JavaW

Copy and paste that into the window:

how to check for iworm

Hopefully your results will look like this:

detect iworm go to folder

If so, breathe a sigh of relief, and consider that if you were one of those people who never bothered to get anti-virus software because you have a Mac, well, it’s time to rethink that strategy.

While we have not extensively tested the various Mac anti-virus options out there ourselves, we’ve heard really good things about the free Sophos anti-virus protection.

No Paywall Here!
The Internet Patrol is and always has been free. We don't hide our articles behind a paywall, or restrict the number of articles you can read in a month if you don't give us money. That said, it does cost us money to run the site, so if something you read here was helpful or useful, won't you consider donating something to help keep the Internet Patrol free?
Click for amount options
Other Amount:
What info did you find here today?:

More from the Internet Patrol:

Netflix 'Watch Instantly' Not Working with Your iPad? Here's How to Fix It
How to Make an iPhone Answer Automatically on a Bluetooth Headset
Cell Phone Holder for Car Uses CD Slot to Hold iPhone and Smartphones
Don't Install New Facebook Messenger App! Too Late? Here's How to Get Back Your Old Facebook Messen...
HEIC is Apple's New Image Format - Here's How to Deal with It
How to Disable Command-Q to Stop it from Closing Your Apps on Your Mac
Macbook Grinding Away, Freezing, Super Slow, or Out of Space? Mobile Backups May be the Culprit
Think that You Want the New iPhone X (10)? Read This First

Leave a Reply

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.