jb… a weblog by Jonathan Buys

The Case of the Stolen Source Code


So, I managed to download within the three day window during which the infection was unknown, managed to hit the one download mirror that was compromised, managed to run it and breeze right through an in-retrospect-sketchy authentication dialog, without stopping to wonder why HandBrake would need admin privileges, or why it would suddenly need them when it hadn’t before. I also likely bypassed the Gatekeeper warning without even thinking about it, because I run a handful of apps that are still not signed by their developers. And that was that, my Mac was completely, entirely compromised in 3 seconds or less.

This is how you handle a compromise in your systems. Full transparency, an explanation of how it happened, how they are handling the issue, and how their customers can stay safe. Panic, once again, doing the right thing.