App maker's code stolen in malware attack

The Mac and iOS software program developer Panic has had the supply code for a number of of its apps stolen.

Panic founder Steven Frank admitted in a blog post that it occurred after he downloaded an contaminated copy of the video encoding software Handbrake.

He mentioned there was no signal that any buyer information was accessed and that Panic’s internet server was not affected.

Customers have been warned to obtain Panic’s apps solely from its web site or the Apple App Retailer.

Panic is the creator of internet modifying and file switch apps Coda and Transmit, and the online game Firewatch.

‘Solely compromised’

On 2 Might Handbrake was hacked, with the Mac model of the app on one of many web site’s obtain servers changed by a malicious copy.

The contaminated app was found and eliminated on 6 Might.

In what Mr Frank known as “a case of terribly unhealthy luck”, he downloaded the malicious model of Handbrake and launched it “with out stopping to surprise why Handbrake would wish admin privileges… when it hadn’t earlier than”.

“And that was that, my Mac was utterly, completely compromised in three seconds or much less.”

The attacker then used his password to entry different non-public recordsdata and replica the supply code for a number of of Panic’s merchandise saved on the contaminated laptop.

Ransom demand

The theft was confirmed when Panic acquired an e mail containing among the recordsdata and demanding a ransom for the return of the whole code.

“We’re engaged on the belief that there is not any level in paying,” Mr Frank wrote, saying that “the attacker has no motive to maintain their finish of the cut price”.

The FBI is investigating the incident and Panic has been working with Apple to make it possible for no malicious or pretend variations of the apps get into the App Retailer.

“I really feel like a monumental fool for having fallen for this,” Mr Frank admitted.

“It is a good reminder although — regardless of how skilled you could be with computer systems, you are human and errors are simply made.”


Printed at Thu, 18 Might 2017 11:44:10 +0000