OSX.Dummy depends on substantial help from an unwary victim.
A new strain of MacOS malware is targeting those who like to discuss their cryptocurrency investing in Slack or Discord groups. It depends on a certain level of naiveté on the part of the victim – a level that resulted in the strain being labeled OSX.Dummy.
The social engineering attack presents a request from a user identifying themselves as an administrator of the group. They ask the victim to run a lengthy command in a terminal window, then ignore the 34 Mbyte file that is downloaded. If the victim does both of these things, they find that their Macintosh has been hijacked by a hacker using a C&C server in the Netherlands.
