News, tips, advice, support for Windows, Office, PCs & more. Tech help. No bull. We're community supported by donations from our Plus Members, and proud of it
Home icon Home icon Home icon Email icon RSS icon
  • BitPaymer ransomware spotted abusing iTunes for Windows bug to bypass antivirus

    Home Forums Code Red – Security/Privacy advisories BitPaymer ransomware spotted abusing iTunes for Windows bug to bypass antivirus

    Tagged: ,

    This topic contains 1 reply, has 2 voices, and was last updated by  anonymous 1 week, 1 day ago.

    • Author
      Posts
    • #1978634 Reply

      b
      AskWoody Plus

      The operators of the BitPaymer ransomware have been spotted using a zero-day in iTunes for Windows as a mechanism to bypass antivirus detection on infected hosts.

      Apple patched the zero-day this week, in both iTunes for Windows and iCloud for Windows. The actual bug resided in the Bonjour updater component that ships with both products.

      Users who used these two apps in the past are also vulnerable.

      That’s because the Bonjour component remains installed on Windows systems even after users uninstall iTunes or iCloud for Windows.

      Sysadmins must scan workstations for the Bonjour component and remove it by hand, or install the latest iTunes for Windows version to make sure the older Bonjour component has been updated.

      Ransomware gang uses iTunes zero-day (at ZDNet)

      (I’ve always thought Bonjour was bad news, and have removed it anywhere I’ve seen it.)

      Knuckle dragger Cannon fodder Chump Daft glutton Idiot Crazy/Ignorant Toxic drinker Blockhead Unwashed mass Seeker/Sucker "Ancient/Obsolete" (Group ASAP) Win10 v.1909

      4 users thanked author for this post.
    • #1979103 Reply

      anonymous

      ? says:
      see:
      https://en.wikipedia.org/wiki/History_of_iTunes#iTunes_12  (scroll to the bottom for 12)
      and:
      https://support.apple.com/en-il/HT210635  (for specifics of security patches)

      thank you underscore b…

      1 user thanked author for this post.
      b

    Please follow the -Lounge Rules- no personal attacks, no swearing, and politics/religion are relegated to the Rants forum.

    Reply To: BitPaymer ransomware spotted abusing iTunes for Windows bug to bypass antivirus

    You can use BBCodes to format your content.
    Your account can't use Advanced BBCodes, they will be stripped before saving.