Windows malware surprises no one, It has always been the favorite operating system for cybercriminals. The surprising thing (although for some time now not so much), is to discover malware for Linux and Mac.
The new infection for alloperating systems is called CrossRAT, A Trojan that allows remote access to victims' computers, allowing attackers to manipulate the computer at will, from taking screenshots to running any type of application.
The propagation method is based on social engineering through Facebook and WhatsApp, spreading links to infected fake websites.
Since Intec Here are some tips on how to detect if your computer has been infected:
- Windows:The following registration key must be checked 'HKCUSoftwareMicrosoftWindowsCurrentVersionRun’, if they are infected, we'll look at something similar to Java, -Jar or mediamgrs.jar.
- Mac:Check if a file exists Jarin ~/Library. Also check within ~/Library/LaunchAgents if there is a file called mediamgrs.plist.
- Linux:Check the existence of a file mediamgrs.jarwithin /usr/var. Also check the existence of mediamgrs.desktopin ~/.config/autostart.
If in any of the cases you find a positive result, Your computer has been infected and your information is compromised.