Airo Blog

September 13th, 2020

BundloreX – High sierra is not that arid yet…

Recently, we’ve spotted a new BundloreX instance injecting search settings after the machine being online for sometime - roughly 1-2 days
Injection is performed via Chrome profile; by that few main goals are achieved. Let’s get the motivation through the full attack chain.

Read more

June 8th, 2020

Hotger – Malware that wipes out the Mac’s disk space.

Recently, we’ve spotted a malware that hijacks a user’s search over Chrome,Safari, Firefox all together (MacOS 10.15.4). But hey, we dealt with that enough. The interesting thing here is something completely different - the malware appears to bite into the machine's memory hard. After a few weeks of the Mac running, we’ve been prompted with “low memory on machine”.

Read more

January 5th, 2020

Airo Scores Perfect Rating From AV-Test

Scoring full marks across each category of Performance, Usability and Detection, Airo’s 100% malware detection rate is almost unheard of in the antivirus industry. Most antivirus products on the market take at least 5 or 6 tests to achieve anything close to a 100% malware detection rate, while Airo’s advanced technology captured everything on the first time.

Read more

January 1st, 2020

DNS Hijacking: A New Method of MitM Attack Observed in the Wild.

Recently we spotted a new malware, in the form of a malicious profile file. The first of its kind on MacOS traffic: DNS hijacker.
This malware inserts a profile file that adds a new network interface as a fake VPN connection layer which later on, modifies the DNS IP address. These settings are being used to hijack Google search queries and redirect them into a monetised search page which hosts the Malware....

Read more

November 20th, 2019

Mac Malware Skyrockets in 2019

Mac-specific attacks saw an explosion in 2019, as trigger-happy hackers turned their eyes to macOS. This is after 2018’s record-breaking number of malware attacks which, according to AV-Test, saw 93,996 attempts on macOS.

Read more

July 8th, 2019

VoiceFive, a Comscore Company Distributes a Man-In-The-Middle Proxy Spyware Compromising Users Security & ALL SSL Traffic

A spyware by VoiceFive, a Comscore company, is using man-in-the- practice, by which it gains access to users’ sensitive data, and creates a security vulnerability to MACOS machines.

Read more

May 29th, 2019

MITM Proxy: New Search Hijack Method on Mojave

A sneak peek into a MITM Proxy employed by SearchProxy on Mac.

Read more

May 28th, 2019

Shlayer Adware Analysis: Infection Mechanism & Evasion Techniques

Shlayer Adware Analysis Part #1

Read more

May 27th, 2019

The 7 Most Common Mac Malware Threats. By AiroAV

Let AiroAV introduce you to its 7 malware (or other malicious behaviors) threats in Mac

Read more

May 11th, 2019

Analysis by AiroAV: BundloreX Adware evades macOS Mojave. Again.

The adware BundloreX silently overrides users’ system, browser and search settings, and continually inject unauthorized ads. Let’s take a look at how it works.

Read more

April 30th, 2019

InstallCore Obfuscation Analysis

In this blog post we present an obfuscation analysis for the latest variant of “InstallCore” PUP/PUA Adware that we encountered in the wild. The Adware acts as installer and deploys multiple apps in the user’s computer.

Read more

March 24th, 2019

Mac Security: not what you think.
The misconception about Mac security.

Are Macs more secure than other operating systems? Do hackers attack only organizations? Can apps downloaded from the App store be malicious? Are unicorns real? Airo Labs debunk some myths and fictions about Mac security.

Read more

February 18th, 2019

Airo Labs expose: (another) Apple support scam generated by an Adware

Airo Lab research discovered a sophisticated fraud involving fake Apple support services, tricking consumers into exposing their personal details and buying products they don't need.

Read more

February 11th, 2019

What is a phishing attack, and how to guard yourself against it?

Phishing is a malicious social engineering technique that tricks victims into making security mistakes; providing their sensitive information to an unreliable attacker.

Read more

December 15th, 2018

Hijacking Safari; by any means necessary.

Airo Labs Research uncovered ‘Searchitnow’ and ‘MacOSDefender’: Adware designed specifically to evade new security measures in macOS Mojave.

Read more

November 25th, 2018

The 6 Most Annoying Things for Mac Users

We love our Macs. We spend more time with them than we spend with our children, our wives or even our TVs. However, we all know that every close...

Read more

November 1st, 2018

5 BIG Mac threats you should be aware of

While you mistakenly think that Mac systems are completely secure, today’s Mac and iOS threats have stepped up an extra gear. In the last couple of...

Read more

November 1st, 2018

Is Your Mac Taken Advantage Of By Malicious Crypto Miners?

Here are some things you must know about...

Read more

Subscribe to our blog

Get Airo

Try Airo AV and Airo Web Protection

Try Airo