Advanced mac cleaner app

broken image
broken image

It looked like an ordinary Advanced Mac Cleaner installer… which is not to say it looked like anything I’d want on my computer, but still, I was determined to do the wrong thing, so I clicked right through and installed it. This resulted in an installer file named “amc_rb_mfm1.pkg” being downloaded, which I proceeded to open. But, of course, I was determined not to be, so I clicked the green button to install the “security update.” If I were being cautious, I would have closed this page immediately, rather than doing anything it said.

broken image

It began here, on a scam page hosted on the official Advanced Mac Cleaner website:

broken image

And it is that strange and malicious app that will be our focus today. Because within this rabbit-hole lay one special nugget of… well, not gold. Although I could go on at length about these products behaviors and why we detect them as PUPs, that is beside the point. PCVARK is responsible for gems like Advanced Mac Cleaner, Mac Adware Cleaner, et al. I began to look into it, and very quickly found myself in a deep rabbit-hole of Mac crapware, all from a major developer of Mac PUPs (potentially unwanted programs), PCVARK. Recently, Jérôme Segura forwarded me a link to a fake virus scam page that seemed to be Mac-related.

 

PreviousNext
Cookie Use
We use cookies to improve browsing experience, security, and data collection. By accepting, you agree to the use of cookies for advertising and analytics. You can change your cookie settings at any time. Learn More
Accept all
Settings
Decline All
Cookie Settings
Necessary Cookies
These cookies enable core functionality such as security, network management, and accessibility. These cookies can’t be switched off.
Analytics Cookies
These cookies help us better understand how visitors interact with our website and help us discover errors.
Preferences Cookies
These cookies allow the website to remember choices you've made to provide enhanced functionality and personalization.
Save