[ctdonath2]

Sounds like this one is “legitimate” malware, insofar as it’s a normal-ish app running with Apple credentials that still manages to seriously abuse users.

Of course the system isn’t perfectly secure, and can be maliciously manipulated.

What’s important: it got caught fast, the signing authority (required for installation) was quickly revoked, and subsequent versions (auto-update?) undo/ward-off most of the damage which still won’t hit for 2+ days.

Of note: Apple is increasing pressure to “sandbox” apps so they can’t do such damaging things _at_all_. There’s no reason why a Torrent app should have access to any files other than what the user explicitly authorizes.

[martin_fierro]

There’s no reason why a Torrent app should have access to any files other than what the user explicitly authorizes.

Hear, hear.

[soycd]

>There’s no reason why a Torrent app should have access to any files other than what the user explicitly authorizes

As a lifelong root programmer, we will always find a way to perform the task. I prefer hook to crook.

[Swordmaker]

Of note: Apple is increasing pressure to “sandbox” apps so they can’t do such damaging things _at_all_. There’s no reason why a Torrent app should have access to any files other than what the user explicitly authorizes.

I read somewhere that a good percentage of torrent users run their machines in Administrator mode. Not smart at all.