First financial malware for Mac – RSPlug-A



RSPlug dropped on the scene in October of 2007. It was first detected by researchers at Intego. RSPlug’s various incarnations, all forms of the DNSChanger malware, were found disguised as video codecs on sites containing pornographic content. Once on a victim’s Mac, RSPlug changed that machine’s DNS settings so that, while browsing the web, users would redirect to phishing sites or sites containing advertisements for other pornographic sites. DNSChanger featured prominently as the target of the FBI’s 2011 takedown of the malware network, dubbed Operation Ghost Click.

Suggested articles

2020 Cybersecurity Trends to Watch

Mobile becomes a prime phishing attack vector, hackers will increasingly employ machine learning in attacks and cloud will increasingly be seen as fertile ground for compromise.

Top Mobile Security Stories of 2019

Cybercrime increasingly went mobile in 2019, with everything from Apple iPhone jailbreaks and rogue Android apps to 5G and mobile-first phishing dominating the news coverage. Here are Threatpost’s Top 10 mobile security stories of 2019.