Categories: Security

Scammers Targeting MacOS With Denial-Of-Service Attacks

Tech support scammers are attempting to scare Apple Mac users into calling for assistance by targeting them with denial-of-service attacks via the Mail app.

For users running an older version of MacOS, simply visiting the malicious site triggers the Mail app to start creating a series of email drafts, eventually causing the computer to run out of memory and freeze.

This follows the discovery of a similar type of attack back in November where a specific HTML5 API (history.pushState) caused user’s browsers to freeze.

Outdated MacOS

As Malwarebytes’ lead malware intelligence analyst Jérôme Segura explaines, the virus will “keep drafting emails (but does not actually send them) incrementally and covering the previous open windows. This is not a spam attempt but rather a typical denial-of-service attack.”

The virus only affects users running an outdated version of MacOS, as Safari detects the attempt to open the Mail app and blocks the unwanted event.

Despite Apple’s generally solid security reputation, hackers have been targeting Mac devices more and more frequently in recent years. In 2015 for example, security researchers warned that cyber criminals could use an iOS vulnerability to hack Apple Pay and the company was also accused of knowing about major zero-day flaws in its iOS and OS X operating systems for at least eight months.

Furthermore, a dangerous piece of OS X malware that can give attackers full access to a compromised Mac was discovered last year and 2016 ended with Apple fixing 68 vulnerabilities in macOS Sierra.

Think you know about the history of the Apple Mac? Try our quiz!

Sam Pudwell

Sam Pudwell joined Silicon UK as a reporter in December 2016. As well as being the resident Cloud aficionado, he covers areas such as cyber security, government IT and sports technology, with the aim of going to as many events as possible.

Recent Posts

SpaceX Polaris Dawn Crew Carry Out First Commercial Spacewalk

Billionaire Jared Isaacman and SpaceX’s Sarah Gillis become first non-professional astronauts to carry out risky…

16 hours ago

Government To Classify UK Data Centres As Critical Infrastructure

Data centres in the UK are to designated as Critical National Infrastructure (CNI), alongside energy…

17 hours ago

Irish Watchdog Launches Inquiry Into Google AI Model

Google's protection of EU users' personal data when training its AI model, is under investigation…

18 hours ago

Robot To Retrieve Fuel From Fukushima Nuclear Plant

Two week mission for robot to retrieve sample of melted fuel debris from inside one…

21 hours ago

OpenAI Valued At $150Bn In Funding Talks – Report

More cash required. Latest funding talks with investors reportedly values AI startup OpenAI at $150…

21 hours ago

LUMI – The Most Powerful Supercomputer In Europe

Silicon tours the facilities housing Europe's most powerful supercomputer, and the fifth most powerful supercomputer…

23 hours ago