{"id":9047,"date":"2025-01-15T09:22:21","date_gmt":"2025-01-15T13:22:21","guid":{"rendered":"https:\/\/tcn.tidbits.com\/?p=10752"},"modified":"2025-01-15T09:22:23","modified_gmt":"2025-01-15T13:22:23","slug":"dont-listen-to-anyone-who-tells-you-to-drag-a-text-file-into-terminal","status":"publish","type":"post","link":"https:\/\/www.macworks.com\/blog\/dont-listen-to-anyone-who-tells-you-to-drag-a-text-file-into-terminal\/","title":{"rendered":"Don\u2019t Listen to Anyone Who Tells You to Drag a Text File into Terminal"},"content":{"rendered":"<p>In macOS 15 Sequoia, Apple made it more difficult to bypass Gatekeeper to run apps that aren\u2019t notarized. (Notarization is one of the ways Apple ensures that apps distributed outside the Mac App Store are unmodified and free from malware.) Cybercriminals have responded to this increase in security with a new social engineering attack. They provide the victim with a disk image, ostensibly to install some desired piece of software, instructing the user to drag a text file into Terminal. Doing so executes a malicious script that installs an \u201cinfostealer\u201d designed to exfiltrate a wide variety of data from your Mac. The simple advice here is to treat any guidance to drop a file into Terminal with extreme suspicion\u2014no legitimate software or developer will ever ask you to do that.<\/p>\n<p><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-10742\" src=\"https:\/\/macworks.com\/blog\/wp-content\/uploads\/2024\/12\/dont-listen-to-anyone-who-tells-you-to-drag-a-text-file-into-terminal-1.jpg\" sizes=\"auto, (min-width: 0px) and (max-width: 480px) 480px, (min-width: 481px) 723px, 100vw\" srcset=\"https:\/\/macworks.com\/blog\/wp-content\/uploads\/2024\/12\/dont-listen-to-anyone-who-tells-you-to-drag-a-text-file-into-terminal-1.jpg 723w, https:\/\/macworks.com\/blog\/wp-content\/uploads\/2024\/12\/dont-listen-to-anyone-who-tells-you-to-drag-a-text-file-into-terminal-2.jpg 480w\" alt=\"\" width=\"723\" height=\"543\" \/><\/p>\n<p>(Featured image based on an original by iStock.com\/Farion_O)<\/p>\n","protected":false},"excerpt":{"rendered":"<p>In macOS 15 Sequoia, Apple made it more difficult to bypass Gatekeeper to run apps that aren\u2019t notarized. (Notarization is one of the ways Apple ensures that apps distributed outside the Mac App Store are unmodified and free from malware.) Cybercriminals have responded to this increase in security with a new social engineering attack. They [&hellip;]<\/p>\n","protected":false},"author":2,"featured_media":9048,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[9,69,106,25,112,185,104],"tags":[],"class_list":["post-9047","post","type-post","status-publish","format-standard","has-post-thumbnail","category-apple","category-apple-consulting-ct","category-apple-support-ct","category-mac","category-mac-support-ct","category-mactech","category-security"],"_links":{"self":[{"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/posts\/9047","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/comments?post=9047"}],"version-history":[{"count":1,"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/posts\/9047\/revisions"}],"predecessor-version":[{"id":9083,"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/posts\/9047\/revisions\/9083"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/media\/9048"}],"wp:attachment":[{"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/media?parent=9047"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/categories?post=9047"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.macworks.com\/blog\/wp-json\/wp\/v2\/tags?post=9047"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}