Mac Malware Janicab Conceals File-Extension Using RLO
Security researchers at F-Secure recently stumbled on a malicious program called Backdoor:Python/Janicab.A that attacks Mac-computers. Interestingly, the malware involves one file, which conceals it and utilizes RLO (right-to-left override) that helps disguise its own extension. The trick gained popularity amongst Windows malware namely the Mahdi and Bredolab Trojans.
» SPAMfighter News - 24-07-2013