HackDig : Dig high-quality web security articles for hackers

Updates on ThiefQuest, the Quickly-Evolving macOS Malware

By Steven Du, Gabrielle Mabutas, and Luis Magisa Right as July of this year began, we noticed an emerging malware dubbed by most as ThiefQuest (also known as EvilQuest), a threat that targets macOS devices, encrypts files, and installs keyloggers in affected systems.  It has been found in pirated versions of macOS shared on popular torrent sites. Development
Publish At:2020-07-18 15:52 | Read:168 | Comments:0 | Tags:Mac Malware macOS ransomware ThiefQuest

Mac ThiefQuest malware may not be ransomware after all

Editor’s note: The original name for the malware, EvilQuest, has been changed due to a legitimate game of the same name from 2012. The new name, ThiefQuest, is also more fitting for our updated understanding of the malware. The ThiefQuest malware, which was discovered last week, may not actually be ransomware according to new findings. The behaviors
Publish At:2020-07-07 14:23 | Read:224 | Comments:0 | Tags:Mac Apple decryption mac mac antivirus mac malware mac ranso

New Mac Ransomware Leveraged Piracy as Means of Distribution

Security researchers detected a new ransomware strain that leveraged piracy as a means of distributing itself to Mac users.On June 29, a Twitter user reached out to Malwarebytes about a malicious Little Snitch installer that was available for download on a Russian forum known for sharing torrent links.A close look at the installer revealed that it used a gen
Publish At:2020-07-01 16:40 | Read:222 | Comments:0 | Tags:IT Security and Data Protection Latest Security News Mac pir

New Mac ransomware spreading through piracy

A Twitter user going by the handle @beatsballert messaged me yesterday after learning of an apparently malicious Little Snitch installer available for download on a Russian forum dedicated to sharing torrent links. A post offered a torrent download for Little Snitch, and was soon followed by a number of comments that the download included malware. RUTrack
Publish At:2020-06-30 12:31 | Read:132 | Comments:0 | Tags:Mac Malwarebytes news Ableton Ableton Live encrypt Findzip F

Apple’s New Plans for the iPhone, iPad, and Mac Unveiled at WWDC 2020

It was a different type of presentation at this year’s WWDC. Gone was the venue packed with thousands of developers and journalists, cheering at the announcements of new features, now relegated to memories for this year because of the coronavirus. Instead, Apple presented a very fast-paced pre-recorded keynote outlining where the company is going with
Publish At:2020-06-24 09:27 | Read:190 | Comments:0 | Tags:Apple iPad iPhone Mac macOS

New Shlayer Mac malware spreads via poisoned search engine results

Shlayer Mac malware is back, the Mac threat is now spreading through new black SEO operations. Researchers spotted a new version of the Shlayer Mac malware that is spreading via poisoned Google search results. Researchers at security firm Intego observed the new variant being spread masqueraded as a fake Adobe Flash Player installer (.DMG disk image) a
Publish At:2020-06-21 09:57 | Read:328 | Comments:0 | Tags:Breaking News Cyber Crime Malware Black Seo Hacking hacking

Tips for using your Mac, iPad, and Apple Watch – Intego Mac Podcast Episode 136

We look at some practical tips for getting more out of your Mac, iPad, and Apple Watch. We take a close look at System Preferences, discuss using the iPad as a second screen for your Mac; and a handful of tips for making the Apple Watch more efficient. Also, Josh and Kirk disagree about Microsoft’s choice to flag two spaces after a period in Word as a
Publish At:2020-05-24 08:19 | Read:315 | Comments:0 | Tags:Intego Mac Security Podcast Apple Watch iPad Mac podcast Sys

New Mac variant of Lazarus Dacls RAT distributed via Trojanized 2FA app

This blog post was authored by Hossein Jazi, Thomas Reed and Jérôme Segura. We recently identified what we believe is a new variant of the Dacls Remote Access Trojan (RAT) associated with North Korea’s Lazarus group, designed specifically for the Mac operating system. Dacls is a RAT that was discovered by Qihoo 360 NetLab in December 2019 as a fu
Publish At:2020-05-18 13:43 | Read:414 | Comments:0 | Tags:Mac Malware Threat analysis APT Dacls Lazarus mac malware ra

New MacOS Dacls RAT Backdoor Shows Lazarus’ Multi-Platform Attack Capability

By Gabrielle Joyce Mabutas With additional insights/analysis from Kazuki Fujisawa A one-time password (OTP) system involves the use of a generated password that can only be used once to log in and access specific online services. Often managed by a third-party provider, this rolling password system aims to reduce unauthorized intrusions to systems via compro
Publish At:2020-05-18 12:48 | Read:253 | Comments:0 | Tags:Mac backdoor Lazarus RAT

iOS Mail bug allows remote zero-click attacks

On Monday, ZecOps released a report about a couple concerning vulnerabilities with the Mail app in iOS. These vulnerabilities would allow an attacker to execute arbitrary code in the Mail app or the maild process that assists the Mail app behind the scenes. Most concerning, though, is the fact that even the most current version of iOS, 13.4.1, is vulnerable.
Publish At:2020-05-03 14:39 | Read:422 | Comments:0 | Tags:Mac Apple Apple mail iOS iOS mail iOS mail bug iOS mail vuln

Mac adware is more sophisticated and dangerous than traditional Mac malware

As the data revealed in our State of Malware report showed, Mac threats are on the rise, but they are not the same type of threats experienced by Windows users. Most notably, more traditional forms of malware, such as ransomware, spyware, and backdoors account for over 27 percent of all Windows threats. That figure is less than 1 percent for Macs. Furthe
Publish At:2020-02-27 15:59 | Read:557 | Comments:0 | Tags:Mac adware bundlore crossrider mac Mac adware mac threats ma

Mac Malware Becomes More Common – Are You A Victim?

Behind the fancy interface and icons, the MacOS operating system which powers Apple computers is significantly different to alternatives like Microsoft Windows. The system has been built from the ground up to increase security and protect users. This design has been incredibly successful, allowing Apple to create the impression that iMacs and MacBooks are in
Publish At:2020-02-17 05:29 | Read:700 | Comments:0 | Tags:Mobile News Security antivirus for mac Mac

Malwarebytes Labs releases 2020 State of Malware Report

Malwarebytes Labs today released the results of our annual study on the state of malware—the 2020 State of Malware Report—and as usual, it’s a doozy. From an increase in enterprise-focused threats to the diversification of sophisticated hacking and stealth techniques, the 2019 threat landscape was shaped by a cybercrime industry that aimed to show i
Publish At:2020-02-11 04:50 | Read:881 | Comments:0 | Tags:Reports 2020 state of malware report adware Android android

Mac threat detections on the rise in 2019

Conventional wisdom has been that, although not invulnerable to cyberthreats (as some old Apple ads would have you believe), Macs are afflicted with considerably fewer infections than Windows PCs. However, when reviewing our 2019 Mac detection telemetry, we noticed a startling upward trend. Indeed, the times, they are a-changin’. To get a sense of h
Publish At:2019-12-16 16:50 | Read:948 | Comments:0 | Tags:Mac browser extensions Mac adware mac malware mac telemetry

New iOS exploit checkm8 allows permanent compromise of iPhones

UPDATE 9/27, 11:00am: Updated for the misconception that the bootrom was actually being modified. Apparently, the “permanent” only refers to the fact that the bug is in the bootrom, where it cannot be patched. UPDATE 9/27, 12:15am: After speaking with @axi0m8, clarified a few other points, including the fact that this cannot be exploited remot
Publish At:2019-09-27 23:20 | Read:1563 | Comments:0 | Tags:Mac Apple apple security apple vulnerability checkm8 exploit

Tools

Tag Cloud