downloaded-handbrake-on-mac-your-computer-could-be-infected-by-trojans

Downloaded HandBrake On Mac? Your Computer Could Be Infected By Trojans

HandBrake video transcoder is a free tool which converts video from nearly any format to a selection of modern, widely supported codecs for Mac.  It is very popular and has a user-friendly interface.

But the company’s reputation has taken a toll as several installation files of this app have been infiltrated by Trojans, according to the owners.

handbrake-on-mac

Yes, you heard it correctly! If you have downloaded HandBrake between May 2 to May 6, your Mac might be infected with a version of OSX.PROTON trojan malware.

HandBrake’s creators said: “Anyone who installed HandBrake for Mac needs to verify their system is not infected with a Trojan. You have a 50/50 chance if you’ve downloaded HandBrake during this period.”

See Also: Microsoft Word Macro Malware attacks MacOS

OSX.Proton is a Trojan horse that opens a backdoor, steals  important information, and downloads potentially malicious files onto the compromised computer. Moreover, it can send screenshots of your system to the hackers. It has potential to let the hacker take over the machine as well.

How to check: If You Are Infected

To know whether your Mac is infected, open the OS X Activity Monitor. Check for a process named “activity_agent” if you find it then, you’re infected.

check-you-are-infected

Similarly, go to the Downloads folder, search for  HandBrake.dmg file. If you get the below checksums, in case, your system is hacked:

SHA1: 0935a43ca90c6c419a49e4f8f1d75e68cd70b274

SHA256: 013623e5e50449bbdf6943549d8224a122aa6c42bd3300a1bd2b743b01ae6793

Don’t get sad! Apple has now released a new signature to prevent this types of infections in future.

Steps to remove the Spyware:

Now, you know that your Mac is infected, you must be wondering how to remove it. Here, we have the solution to it:

remove-the-spyware

  • Open the ‘Terminal’ on your Mac. You can type Terminal in Spotlight and search for it.
  • Enter the following commands:
  • launchctl unload                                             ~/Library/LaunchAgents/fr.handbrake.activity_agent.plist
  • rm -rf ~/Library/RenderFiles/activity_agent.app
  • if ~/Library/VideoFrameworks/ contains proton.zip, remove the folder

Once you have followed the steps, you need to delete all files HandBrake.app installs. We strongly recommend changing all the passwords along with the login credentials for your Mac. These steps will help you in getting rid of this infection on your Mac.

See Also: Your Mac Is Not as Secure as You Think – Here Are the Reasons

With all said and done, the cybercriminals have not spared any of the apps or medium to hack your privacy. Hence the only thing that could protect your personal data and privacy is by being extremely careful!

Srishti Sisodia

Srishti Sisodia is a technical content journalist at Systweak Software. Apart from being a capable engineer, her affinity for inscription draws her towards writing interesting content about contemporary technologies and progressions. She is an avid reader and a fare connoisseur. She relishes different cuisines and when it comes to baking, she takes the cake!

Leave a Reply

Your email address will not be published. Required fields are marked *

five × three =