Computer Service / Network Integration / Performance Tuning

Home » Handbrake Malware Attack Captures Source Code

Handbrake Malware Attack Captures Source Code

Panic, Inc is a software develop company that makes a suite of apps for the Apple OS X platform.  In May, a mirror download server was compromised, which allowed the legitimate version of the Mac transcoder app Handbrake to be replaced by an infected version.  The OSX.PROTON trojan infecting the app allowed hackers to gain remote access the the subsequently infected computer at Panic Inc.  This enabled them to steal the source code to the library of apps from Panic Inc.

The hackers subsequently issued a ransom demand to Panic Inc, which Panic is not paying.  According to their internal audit, no customer records were obtained in the attack and the source code was the only loss.

Panic has issued a statement advising Mac users to only download their apps from the Mac App Store or the company’s website to avoid installing compromised versions that may be released in the future.

The library of apps includes: Firewatch, an adventure game, Coda, a web editor, FTP app Transmit and SSH client Prompt.  Both Apple  and the FBI are actively involved in tracking the source of the attack and monitoring the App store for signs of infected versions being offered.  Panic asks anyone encountering compromised versions of their apps to contact them immediately with details.

Name of author

Name: Wizard

Short Bio: The Computer Wizard (TCW). TCW was founded by Warren P. Harris in 1994 to service and repair computers in the San Francisco Bay Area. Relocating the business to Plano, Texas in 1999, TCW continued to flourish when an unfortunate loss of data for a wedding Mr. Harris photographed, caused him to research data recovery options. Realizing he would have to either pay someone to recover the photos or find out how to do it himself, the rest, as they say "is history". Approached by a friend who was a Private Investigator in 2006, Mr. Harris studied for his Investigator's license and began honing his skills in Computer Forensics. The company was renamed DFW Computer Integration in 2015.

Leave a Reply