Don’t Listen to Anyone Who Tells You to Drag a Text File into Terminal

ByEmily Dolloff

In macOS 15 Sequoia, Apple made it more difficult to bypass Gatekeeper to run apps that aren’t notarized. (Notarization is one of the ways Apple ensures that apps distributed outside the Mac App Store are unmodified and free from malware.) Cybercriminals have responded to this increase in security with a new social engineering attack. They provide the victim with a disk image, ostensibly to install some desired piece of software, instructing the user to drag a text file into Terminal. Doing so executes a malicious script that installs an “infostealer” designed to exfiltrate a wide variety of data from your Mac. The simple advice here is to treat any guidance to drop a file into Terminal with extreme suspicion—no legitimate software or developer will ever ask you to do that.

(Featured image based on an original by iStock.com/Farion_O)

Social Media: Thing #17 to never do: Follow instructions to drop a text file into Terminal. It’s a great way to install malware and let cybercriminals steal your passwords, financial information, and more.

Similar Posts

  • _Dear Friends,_

    I have become super aware of mosquitos with all the news about the Zika virus. For some reason biting insects just love me whether they are super tiny no-see-ums here in the Keys or slightly larger ones in Vermont they seem to be attracted to me. The first thing that I noticed about the mosquitos down here is that they are tiny compared to the ones that come out every year in Vermont. Seriously though, this Zika virus seems like a very serious health epidemic with the World Health Organization calling it a crisis. They have a pretty serious mosquito control program down here with guys that go door to door to look for standing water and spraying year around.

    Apple announced their holiday quarter financials and they beat the estimates on the street and posted the most revenue and profit ever for Apple and in a truly remarkable factoid, the most profit generated in a quarter by any public corporation, EVER. I will talk about the financial results below but let’s just say if Apple has reached a plateau it sure is a lofty one! Just to contrast that a bit against the other guys, Samsung reported a 40% decline in profits. They posted about a $15.8 billion profit for the entire year which Apple crushed in a single three month period!

    This week’s Kibbles & Bytes exclusive features the “**Apple Certified Reconditioned 21 inch iMac**.”:http://www.smalldog.com/wag900002135/special-apple-certified-reconditioned-21-5in-imac-2-7ghz-w-applecare-for-1099 This iMac is configured with a 2.7GHZ i5 processor 8GB of ram and a 1 TB hard drive. This model has the latest 802.11ac wireless protocol and comes with the same 1 year warranty as new iMacs. We are bundling it with Applecare so instead of a 1 year warranty you get 3 years and instead of 90 day days of free Apple technical support you get 3 years too. Kibbles & Bytes readers can purchase this special bundle for “**$1099!**”:http://www.smalldog.com/wag900002135/special-apple-certified-reconditioned-21-5in-imac-2-7ghz-w-applecare-for-1099 That’s the lowest price ever for a warrantied iMac with Applecare!

  • A first look at Mojave

    I swore I was going to wait for the third developer beta to upgrade my Mac to Mojave but I could not resist….

  • Reminders (Finally) Adds Time Zone Support

    Apple’s latest operating systems have eliminated a longstanding annoyance for frequent travelers: the lack of time zone support in Reminders. If you had…

  • Never Paste Unknown Text into Terminal!

    Here’s a new scam to watch for. A client reported running across a suspicious website masquerading as a human verification test. Instead of…