I didn’t think too much of this, as we’ve been in a similar situation with a broken Sparkle update channel once before (the worst). There was a note in HandBrake’s update dialog that the incremental update was not available, and that I’d have to download an entirely fresh copy from their server. I finally decided, for whatever reason, to do the update.
#APPS LIKE HANDBRAKE FOR MAC INSTALL#
HandBrake had been nagging me for some time to install an update. The other important fact is that I feel like a monumental idiot for having fallen for this. (As a reminder, we never store credit card numbers since we process them with Stripe, and all Panic Sync data is encrypted in such a way that even we can’t see it. Finally, our web server was not compromised.Furthermore, there’s no indication Panic Sync data was accessed.There’s no indication any customer information was obtained by the attacker.Long story short, somebody, somewhere, now has quite a bit of source code to several of our apps.īefore I continue, three important points: In a case of extraordinarily bad luck, even for a guy that has a lot of bad computer luck, I happened to download HandBrake in that three day window, and my work Mac got pwned.
![apps like handbrake for mac apps like handbrake for mac](https://9to5mac.com/wp-content/uploads/sites/6/2018/04/screen-shot-2018-04-11-at-11-30-26.png)
One of the two download servers for HandBrake was serving up a special malware-infested version of the app, that, when launched, would essentially give hackers remote control of your computer.
![apps like handbrake for mac apps like handbrake for mac](https://images.wondershare.com/videoconverter/article/2017/01/14852323523489.jpg)
Last week, for about three days, the macOS video transcoding app HandBrake was compromised.