I booted up my Macbook Air M1(on MacOS 14.2.1) a few minutes in the past and, whereas LuLu logs, I observed this unusual Curl request:
- curl -s hxxps|://support-sp[.]apple[.]com/sp/
product?cc=XXXX
I barely modified the URL to make it not clickable and obscured the final 4 digits.
Apparently I’m not the primary one to notifce these requests and the final 4 numbers must be related to my Mac serial quantity; the positioning is an official Apple one that offers again informations about your Mac mannequin based mostly on that
Talking to Apple Assist, it’s in all probability not one thing one in every of their device is doing robotically, in order that would depart some third celebration program: the one factor I put in just lately is Logitech Choices+ and re-enabled computerized updates for AltTab and Google Chrome, however I can’t see this habits taking place to anybody else
I don’t actually understand how a lot it counts however a deep scan with the Kaspersky shopper for MacOS discovered nothing
It could simply be some badly carried out telemetry however I want to ensure that and to see if another person is having the identical downside
I want to have an opionion from somebody who’s extra skilled than me on MacOS, plus I used to be questioning: if I make a full wipe of the system, what are the probabilities that some trojan horse, if current, may create persistance utilizing iCloud Drive/some software backup and reinstall itself? May this occur on iOS as nicely?
Thanks prematurely to anybody who will spend the time to assist!
