【北邮人】MAC OS X平台Transmission2.90本中被恶意植入了勒索...

最新资讯：

2016.03.07 - 请OS X平台使用Transmission 2.90软件的用户立即更新版本
各位MAC OS X平台用户，如果您使用Transmission软件作为下载工具，请检查您的软件版本。如为2.90版本，请立即升级至2.92版本。2.90版本中被恶意植入了勒索软件，可能导致您的系统内数据被锁。

以下为Transmission软件官网公告原文：

Read Immediately!!!!

Everyone running 2.90 on OS X should immediately upgrade to and run 2.92, as they may have downloaded a malware-infected file. This new version will make sure that the “OSX.KeRanger.A” ransomware (more information available here) is correctly removed from your computer.

Users of 2.91 should also immediately upgrade to and run 2.92. Even though 2.91 was never infected, it did not automatically remove the malware-infected file.

官网下载链接：https://www.transmissionbt.com/download

升级后请按以下说明进入Finder删除疑似感染文件

引用

Everyone running 2.90 on OS X should immediately upgrade to 2.92, as they may have downloaded a malware-infected file. This new version will make sure that the “OSX.KeRanger.A” ransomware (more information available here) is correctly removed from you computer.


1. Using either Terminal or Finder, check whether /Applicaions/Transmission.app/Contents/Resources/ General.rtf or /Volumes/Transmission/Transmission.app/Contents/Resources/ General.rtf exist. If any of these exist, the Transmission application is infected and we suggest deleting this version of Transmission.

2. Using “Activity Monitor” preinstalled in OS X, check whether any process named “kernel_service” is running. If so, double check the process, choose the “Open Files and Ports” and check whether there is a file name like “/Users/<username>/Library/kernel_service”. If so, the process is KeRanger’s main process. We suggest terminating it with “Quit -> Force Quit”.

3. After these steps, we also recommend users check whether the files “.kernel_pid”, “.kernel_time”, “.kernel_complete” or “kernel_service” existing in ~/Library directory. If so, you should delete them.

游客，如果您要查看本帖隐藏内容请回复

我有话说：这里填写你要说的话

---

注意问题：
1、请根据上面格式发帖，非按照格式发帖的一律删除。
2、涉及到相关的链接请在hide字段隐藏起来。
3、每发布一个相关资讯，系统都会自动加上20丝瓜的奖励。

感谢告知！

靠……不是吧，Transmission的程序员都不知道？

多谢告知

谢谢楼主告知~

感谢告知

北邮人貌似见过